Google, Microsoft, and Mozilla Put Their Backing Behind New WebAuthn API
Three major browser makers —Google, Microsoft, and Mozilla—have put their official backing behind a new W3C API called Web Authentication (WebAuthn) that is advertised as a reliable alternative to passwordless online authentication. [...]
https://www.bleepingcomputer.com/news/security/google-microsoft-and-mozilla-put-their-backing-behind-new-webauthn-api/
Three major browser makers —Google, Microsoft, and Mozilla—have put their official backing behind a new W3C API called Web Authentication (WebAuthn) that is advertised as a reliable alternative to passwordless online authentication. [...]
https://www.bleepingcomputer.com/news/security/google-microsoft-and-mozilla-put-their-backing-behind-new-webauthn-api/
BleepingComputer
Google, Microsoft, and Mozilla Put Their Backing Behind New WebAuthn API
Three major browser makers —Google, Microsoft, and Mozilla—have put their official backing behind a new W3C API called Web Authentication (WebAuthn) that is advertised as a reliable alternative to passwordless online authentication.
OpenSnitch Is a Host-Based Firewall for Linux Desktops
Simone Margaritelli, the VP of Research at Zimperium, has created a Linux port of Little Snitch, a popular macOS firewall application. Named OpenSnitch, the Linux port works on the same principles of the Mac version, being a host-based firewall that notifies users when apps attempt to initiate new outgoing network connections. [...]
https://www.bleepingcomputer.com/news/linux/opensnitch-is-a-host-based-firewall-for-linux-desktops/
Simone Margaritelli, the VP of Research at Zimperium, has created a Linux port of Little Snitch, a popular macOS firewall application. Named OpenSnitch, the Linux port works on the same principles of the Mac version, being a host-based firewall that notifies users when apps attempt to initiate new outgoing network connections. [...]
https://www.bleepingcomputer.com/news/linux/opensnitch-is-a-host-based-firewall-for-linux-desktops/
BleepingComputer
OpenSnitch Is a Host-Based Firewall for Linux Desktops
Simone Margaritelli, the VP of Research at Zimperium, has created a Linux port of Little Snitch, a popular macOS firewall application. Named OpenSnitch, the Linux port works on the same principles of the Mac version, being a host-based firewall that notifies…
Fortnite 3.5 out Tomorrow With Port-a-Fort Hinted As Included
Tomorrow, April 11th at 4AM ET, the 3.5 update for Fortnite is being released. While it has not been officially announced what will be included in the update, a Tweet by the official Fortnite Twitter account hinted that we will at least be getting the Port-a-Fort. [...]
https://www.bleepingcomputer.com/news/gaming/fortnite-35-out-tomorrow-with-port-a-fort-hinted-as-included/
Tomorrow, April 11th at 4AM ET, the 3.5 update for Fortnite is being released. While it has not been officially announced what will be included in the update, a Tweet by the official Fortnite Twitter account hinted that we will at least be getting the Port-a-Fort. [...]
https://www.bleepingcomputer.com/news/gaming/fortnite-35-out-tomorrow-with-port-a-fort-hinted-as-included/
BleepingComputer
Fortnite 3.5 out Tomorrow With Port-a-Fort Hinted As Included
Tomorrow, April 11th at 4AM ET, the 3.5 update for Fortnite is being released. While it has not been officially announced what will be included in the update, a Tweet by the official Fortnite Twitter account hinted that we will at least be getting the Port…
Microsoft Half-Patches Old Outlook Vulnerability
Microsoft has published a patch for an Outlook vulnerability first reported in late 2016, but the patch has been deemed incomplete and additional workarounds are needed, according to the security researcher who discovered it. [...]
https://www.bleepingcomputer.com/news/security/microsoft-half-patches-old-outlook-vulnerability/
Microsoft has published a patch for an Outlook vulnerability first reported in late 2016, but the patch has been deemed incomplete and additional workarounds are needed, according to the security researcher who discovered it. [...]
https://www.bleepingcomputer.com/news/security/microsoft-half-patches-old-outlook-vulnerability/
BleepingComputer
Microsoft Half-Patches Old Outlook Vulnerability
Microsoft has published a patch for an Outlook vulnerability first reported in late 2016, but the patch has been deemed incomplete and additional workarounds are needed, according to the security researcher who discovered it.
AMD Releases Spectre v2 Microcode Updates for CPUs Going Back to 2011
AMD has released CPU microcode updates for processors affected by the Spectre variant 2 (CVE-2017-5715) vulnerability. The company has forwarded these microcode updates to PC and motherboard makers to include them in BIOS updates. [...]
https://www.bleepingcomputer.com/news/hardware/amd-releases-spectre-v2-microcode-updates-for-cpus-going-back-to-2011/
AMD has released CPU microcode updates for processors affected by the Spectre variant 2 (CVE-2017-5715) vulnerability. The company has forwarded these microcode updates to PC and motherboard makers to include them in BIOS updates. [...]
https://www.bleepingcomputer.com/news/hardware/amd-releases-spectre-v2-microcode-updates-for-cpus-going-back-to-2011/
BleepingComputer
AMD Releases Spectre v2 Microcode Updates for CPUs Going Back to 2011
AMD has released CPU microcode updates for processors affected by the Spectre variant 2 (CVE-2017-5715) vulnerability. The company has forwarded these microcode updates to PC and motherboard makers to include them in BIOS updates.
Microsoft Removes Antivirus Registry Key Check for All Windows Versions
Microsoft has decided to remove a mandatory "registry key requirement" it introduced in the aftermath of the Meltdown and Spectre vulnerability disclosure. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-removes-antivirus-registry-key-check-for-all-windows-versions/
Microsoft has decided to remove a mandatory "registry key requirement" it introduced in the aftermath of the Meltdown and Spectre vulnerability disclosure. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-removes-antivirus-registry-key-check-for-all-windows-versions/
BleepingComputer
Microsoft Removes Antivirus Registry Key Check for All Windows Versions
Microsoft has decided to remove a mandatory "registry key requirement" it introduced in the aftermath of the Meltdown and Spectre vulnerability disclosure.
Four out of Five Ransomware Victims Would Pay the Ransom Again
Around four out of five ransomware victims who paid a ransom demand to recover their files said they would pay the ransom again to recover data if no backup files are available. [...]
https://www.bleepingcomputer.com/news/security/four-out-of-five-ransomware-victims-would-pay-the-ransom-again/
Around four out of five ransomware victims who paid a ransom demand to recover their files said they would pay the ransom again to recover data if no backup files are available. [...]
https://www.bleepingcomputer.com/news/security/four-out-of-five-ransomware-victims-would-pay-the-ransom-again/
BleepingComputer
Four out of Five Ransomware Victims Would Pay the Ransom Again
Around four out of five ransomware victims who paid a ransom demand to recover their files said they would pay the ransom again to recover data if no backup files are available.
New AV1 Video Codec Is Actually Fast, Facebook Benchmark Reveals
The recently released AV1 video codec works better than expected, according to Facebook engineers, after putting the new technology through a benchmark test that tried to mimic Facebook's real-life production environment as close as possible. [...]
https://www.bleepingcomputer.com/news/technology/new-av1-video-codec-is-actually-fast-facebook-benchmark-reveals/
The recently released AV1 video codec works better than expected, according to Facebook engineers, after putting the new technology through a benchmark test that tried to mimic Facebook's real-life production environment as close as possible. [...]
https://www.bleepingcomputer.com/news/technology/new-av1-video-codec-is-actually-fast-facebook-benchmark-reveals/
BleepingComputer
New AV1 Video Codec Is Actually Fast, Facebook Benchmark Reveals
The recently released AV1 video codec works better than expected, according to Facebook engineers, after putting the new technology through a benchmark test that tried to mimic Facebook's real-life production environment as close as possible.
Over 65,000 Home Routers Are Proxying Bad Traffic for Botnets, APTs
Botnet operators and cyber-espionage groups (APTs) are abusing the Universal Plug and Play (UPnP) protocol that comes with all modern routers to proxy bad traffic and hide their real location from investigators. [...]
https://www.bleepingcomputer.com/news/security/over-65-000-home-routers-are-proxying-bad-traffic-for-botnets-apts/
Botnet operators and cyber-espionage groups (APTs) are abusing the Universal Plug and Play (UPnP) protocol that comes with all modern routers to proxy bad traffic and hide their real location from investigators. [...]
https://www.bleepingcomputer.com/news/security/over-65-000-home-routers-are-proxying-bad-traffic-for-botnets-apts/
BleepingComputer
Over 65,000 Home Routers Are Proxying Bad Traffic for Botnets, APTs
Botnet operators and cyber-espionage groups (APTs) are abusing the Universal Plug and Play (UPnP) protocol that comes with all modern routers to proxy bad traffic and hide their real location from investigators.
Malware Distribution Campaign Has Been Raging for More Than Four Months
An organized and highly dynamic malware distribution campaign has been leveraging thousands of hacked websites to redirect users to web pages peddling fake software updates in an attempt to infect them with malware. [...]
https://www.bleepingcomputer.com/news/security/malware-distribution-campaign-has-been-raging-for-more-than-four-months/
An organized and highly dynamic malware distribution campaign has been leveraging thousands of hacked websites to redirect users to web pages peddling fake software updates in an attempt to infect them with malware. [...]
https://www.bleepingcomputer.com/news/security/malware-distribution-campaign-has-been-raging-for-more-than-four-months/
BleepingComputer
Malware Distribution Campaign Has Been Raging for More Than Four Months
An organized and highly dynamic malware distribution campaign has been leveraging thousands of hacked websites to redirect users to web pages peddling fake software updates in an attempt to infect them with malware.
Researchers Create Malware That Steals Data via Power Lines
A team of academics has successfully developed and tested malware that can exfiltrate data from air-gapped computers via power lines. The team —from the Ben-Gurion University of the Negev in Israel— named their data exfiltration technique PowerHammer. [...]
https://www.bleepingcomputer.com/news/security/researchers-create-malware-that-steals-data-via-power-lines/
A team of academics has successfully developed and tested malware that can exfiltrate data from air-gapped computers via power lines. The team —from the Ben-Gurion University of the Negev in Israel— named their data exfiltration technique PowerHammer. [...]
https://www.bleepingcomputer.com/news/security/researchers-create-malware-that-steals-data-via-power-lines/
BleepingComputer
Researchers Create Malware That Steals Data via Power Lines
A team of academics has successfully developed and tested malware that can exfiltrate data from air-gapped computers via power lines. The team —from the Ben-Gurion University of the Negev in Israel— named their data exfiltration technique PowerHammer.
Cyber-Espionage Groups Are Increasingly Leveraging Routers in Their Attacks
Cyber-espionage groups —also referred to as advanced persistent threats (APTs)— are using hacked routers more and more during their attacks, according to researchers at Kaspersky Lab. [...]
https://www.bleepingcomputer.com/news/security/cyber-espionage-groups-are-increasingly-leveraging-routers-in-their-attacks/
Cyber-espionage groups —also referred to as advanced persistent threats (APTs)— are using hacked routers more and more during their attacks, according to researchers at Kaspersky Lab. [...]
https://www.bleepingcomputer.com/news/security/cyber-espionage-groups-are-increasingly-leveraging-routers-in-their-attacks/
BleepingComputer
Cyber-Espionage Groups Are Increasingly Leveraging Routers in Their Attacks
Cyber-espionage groups —also referred to as advanced persistent threats (APTs)— are using hacked routers more and more during their attacks, according to researchers at Kaspersky Lab.
$3.3 Million Stolen From Coinsecure Bitcoin Exchange, Inside Job Suspected
The CEO of Coinsecure, an India-based cryptocurrency exchange, has accused his CSO of stealing 438 Bitcoin —around $3.3 million at today's exchange rate— from the exchange's main wallet. [...]
https://www.bleepingcomputer.com/news/security/33-million-stolen-from-coinsecure-bitcoin-exchange-inside-job-suspected/
The CEO of Coinsecure, an India-based cryptocurrency exchange, has accused his CSO of stealing 438 Bitcoin —around $3.3 million at today's exchange rate— from the exchange's main wallet. [...]
https://www.bleepingcomputer.com/news/security/33-million-stolen-from-coinsecure-bitcoin-exchange-inside-job-suspected/
BleepingComputer
$3.3 Million Stolen From Coinsecure Bitcoin Exchange, Inside Job Suspected
The CEO of Coinsecure, an India-based cryptocurrency exchange, has accused his CSO of stealing 438 Bitcoin —around $3.3 million at today's exchange rate— from the exchange's main wallet.
Mozilla Has Started Gradually Enabling TLS 1.3 in Firefox
Mozilla has begun to roll out a system addon that enables TLS 1.3 in Firefox. Based on bug reports, this addon was launched on April 3rd, 2017 and is being delivered as a silent update to Firefox that will enable TLS 1.3 for 50% of the users who install it. [...]
https://www.bleepingcomputer.com/news/software/mozilla-has-started-gradually-enabling-tls-13-in-firefox/
Mozilla has begun to roll out a system addon that enables TLS 1.3 in Firefox. Based on bug reports, this addon was launched on April 3rd, 2017 and is being delivered as a silent update to Firefox that will enable TLS 1.3 for 50% of the users who install it. [...]
https://www.bleepingcomputer.com/news/software/mozilla-has-started-gradually-enabling-tls-13-in-firefox/
BleepingComputer
Mozilla Has Started Gradually Enabling TLS 1.3 in Firefox
Mozilla has begun to roll out a system addon that enables TLS 1.3 in Firefox. Based on bug reports, this addon was launched on April 3rd, 2017 and is being delivered as a silent update to Firefox that will enable TLS 1.3 for 50% of the users who install it.
Windows Insider RS5 Build 17643 Adds Sets and Office 365 Integration
Yesterday Microsoft released Windows 10 Insider Preview Build 17643 to insiders on the Redstone 5 Skip Ahead ring. In this build Microsoft adds Sets+Office 365 integration and Microsoft Edge, Data Sense, and Magnifier improvements. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-insider-rs5-build-17643-adds-sets-and-office-365-integration/
Yesterday Microsoft released Windows 10 Insider Preview Build 17643 to insiders on the Redstone 5 Skip Ahead ring. In this build Microsoft adds Sets+Office 365 integration and Microsoft Edge, Data Sense, and Magnifier improvements. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-insider-rs5-build-17643-adds-sets-and-office-365-integration/
BleepingComputer
Windows Insider RS5 Build 17643 Adds Sets and Office 365 Integration
Yesterday Microsoft released Windows 10 Insider Preview Build 17643 to insiders on the Redstone 5 Skip Ahead ring. In this build Microsoft adds Sets+Office 365 integration and Microsoft Edge, Data Sense, and Magnifier improvements.
Compile Error Halts Some GandCrab Ransomware Infections
A script compile error has temporarily stopped the infection chain of a malspam campaign trying to infect users with the GandCrab ransomware. [...]
https://www.bleepingcomputer.com/news/security/compile-error-halts-some-gandcrab-ransomware-infections/
A script compile error has temporarily stopped the infection chain of a malspam campaign trying to infect users with the GandCrab ransomware. [...]
https://www.bleepingcomputer.com/news/security/compile-error-halts-some-gandcrab-ransomware-infections/
BleepingComputer
Compile Error Halts Some GandCrab Ransomware Infections
A script compile error has temporarily stopped the infection chain of a malspam campaign trying to infect users with the GandCrab ransomware.
Google Chrome to Boost User Privacy by Improving Cookies Handling Procedure
Google engineers plan to improve user privacy and security by putting a short lifespan on cookies delivered via HTTP connections. Google hopes that the move will force website developers and advertisers to send cookies via HTTPS, which "provides significant confidentiality protections against [pervasive monitoring] attacks." [...]
https://www.bleepingcomputer.com/news/security/google-chrome-to-boost-user-privacy-by-improving-cookies-handling-procedure/
Google engineers plan to improve user privacy and security by putting a short lifespan on cookies delivered via HTTP connections. Google hopes that the move will force website developers and advertisers to send cookies via HTTPS, which "provides significant confidentiality protections against [pervasive monitoring] attacks." [...]
https://www.bleepingcomputer.com/news/security/google-chrome-to-boost-user-privacy-by-improving-cookies-handling-procedure/
BleepingComputer
Google Chrome to Boost User Privacy by Improving Cookies Handling Procedure
Google engineers plan to improve user privacy and security by putting a short lifespan on cookies delivered via HTTP connections. Google hopes that the move will force website developers and advertisers to send cookies via HTTPS, which "provides significant…
Exploitation of Drupalgeddon2 Flaw Starts After Publication of PoC Code
The exploitation of a very dangerous Drupal vulnerability has started after the publication of proof-of-concept (PoC) code. [...]
https://www.bleepingcomputer.com/news/security/exploitation-of-drupalgeddon2-flaw-starts-after-publication-of-poc-code/
The exploitation of a very dangerous Drupal vulnerability has started after the publication of proof-of-concept (PoC) code. [...]
https://www.bleepingcomputer.com/news/security/exploitation-of-drupalgeddon2-flaw-starts-after-publication-of-poc-code/
BleepingComputer
Exploitation of Drupalgeddon2 Flaw Starts After Publication of PoC Code
The exploitation of a very dangerous Drupal vulnerability has started after the publication of proof-of-concept (PoC) code.
Copy & Paste Keyboard Shortcuts Coming to Windows 10 Console Bash Prompt
A highly requested feature is the ability to use copy and paste keyboard shortcuts when in a Windows 10 Bash prompt. As of Windows Insider build 17643, this feature is now available as a setting in the Windows Command Prompt. [...]
https://www.bleepingcomputer.com/news/microsoft/copy-and-paste-keyboard-shortcuts-coming-to-windows-10-console-bash-prompt/
A highly requested feature is the ability to use copy and paste keyboard shortcuts when in a Windows 10 Bash prompt. As of Windows Insider build 17643, this feature is now available as a setting in the Windows Command Prompt. [...]
https://www.bleepingcomputer.com/news/microsoft/copy-and-paste-keyboard-shortcuts-coming-to-windows-10-console-bash-prompt/
BleepingComputer
Copy & Paste Keyboard Shortcuts Coming to Windows 10 Console Bash Prompt
A highly requested feature is the ability to use copy and paste keyboard shortcuts when in a Windows 10 Bash prompt. As of Windows Insider build 17643, this feature is now available as a setting in the Windows Command Prompt.
"Early Bird" Code Injection Technique Helps Malware Stay Undetected
Security researchers have discovered at least three malware strains using a new code injection technique that allowed them to avoid antivirus detection. [...]
https://www.bleepingcomputer.com/news/security/early-bird-code-injection-technique-helps-malware-stay-undetected/
Security researchers have discovered at least three malware strains using a new code injection technique that allowed them to avoid antivirus detection. [...]
https://www.bleepingcomputer.com/news/security/early-bird-code-injection-technique-helps-malware-stay-undetected/
BleepingComputer
"Early Bird" Code Injection Technique Helps Malware Stay Undetected
Security researchers have discovered at least three malware strains using a new code injection technique that allowed them to avoid antivirus detection.
Researchers Catch Android OEMs Lying About Security Patches
A large number of Android manufacturers (OEMs) are skipping security patches but are lying to users about it, according to the team at Security Research Lab (SRL), a Berlin-based cyber-security firm. [...]
https://www.bleepingcomputer.com/news/security/researchers-catch-android-oems-lying-about-security-patches/
A large number of Android manufacturers (OEMs) are skipping security patches but are lying to users about it, according to the team at Security Research Lab (SRL), a Berlin-based cyber-security firm. [...]
https://www.bleepingcomputer.com/news/security/researchers-catch-android-oems-lying-about-security-patches/
BleepingComputer
Researchers Catch Android OEMs Lying About Security Patches
A large number of Android manufacturers (OEMs) are skipping security patches but are lying to users about it, according to the team at Security Research Lab (SRL), a Berlin-based cyber-security firm.