Firefox Experiment Lets Users Customize Browser's UI Colors

The Mozilla team has rolled out a new Test Pilot experiment that lets users customize some of their browser's user interface element colors. [...]

https://www.bleepingcomputer.com/news/software/firefox-experiment-lets-users-customize-browsers-ui-colors/

ScreenPad - A Touchscreen that Replaces the Touchpad in the Asus Zenbook Pro

At the Computex Tapei conference, Asus announced a new Zenbook Pro laptop that replaces the touchpad with a interactive touch screen called a ScreenPad. ScreenPads are high resolution displays that not only acts as a touchpad, but also allow you to launch applications and display information directly on the display. [...]

https://www.bleepingcomputer.com/news/hardware/screenpad-a-touchscreen-that-replaces-the-touchpad-in-the-asus-zenbook-pro/

Washington State Sues Facebook and Google Over Election Ads

Washington State Attorney General Bob Ferguson filed two lawsuits on Monday against Facebook and Google on the grounds of breaking local campaign finance laws. [...]

https://www.bleepingcomputer.com/news/government/washington-state-sues-facebook-and-google-over-election-ads/

Microsoft to Offer 12TB Virtual Machines in the Near Future

Microsoft has announced a monster single-instance Azure VM that supports up to 12 Terabytes of memory being made available in the near future. This is the largest memory configuration for a single VM in the public cloud and is part of their M-Series of virtual machines. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-to-offer-12tb-virtual-machines-in-the-near-future/

Years of Police Dashcam Video Lost in Atlanta Ransomware Incident

The Atlanta Police Department has lost years worth of police car dashcam videos following the March ransomware attack that affected most of the city's IT infrastructure. [...]

https://www.bleepingcomputer.com/news/security/years-of-police-dashcam-video-lost-in-atlanta-ransomware-incident/

CrowdStrike to Pay Up to $1 Million Warranty If Its Clients Suffer a Data Breach

US cyber-security firm CrowdStrike announced yesterday a new warranty program for its customers, offering to cover up to $1 million in expenses if a customer protected by its top-tier endpoint protection solution (aka fancy word for antivirus program) suffers a security breach. [...]

https://www.bleepingcomputer.com/news/security/crowdstrike-to-pay-up-to-1-million-warranty-if-its-clients-suffer-a-data-breach/

Malware Infection at HR Company Triggers Flurry of Data Breach Notifications

A security breach at one of the world's largest human resources providers, Australian company PageUp, has resulted in tens of companies that were using their services notifying employees and applicants today that their personal data might have been stolen last month. [...]

https://www.bleepingcomputer.com/news/security/malware-infection-at-hr-company-triggers-flurry-of-data-breach-notifications/

Prowli Malware Operation Infected Over 40,000 Servers, Modems, and IoT Devices

Cyber-criminals have managed to assemble a gigantic botnet of over 40,000 infected web servers, modems, and other IoT devices, which they used for cryptocurrency mining, and for redirecting users to malicious sites. [...]

https://www.bleepingcomputer.com/news/security/prowli-malware-operation-infected-over-40-000-servers-modems-and-iot-devices/

VPNFilter Can Also Infect ASUS, D-Link, Huawei, Ubiquiti, UPVEL, and ZTE Devices

The VPNFilter malware that infected over 500,000 routers and NAS devices across 54 countries during the past few months is much worse than previously thought. [...]

https://www.bleepingcomputer.com/news/security/vpnfilter-can-also-infect-asus-d-link-huawei-ubiquiti-upvel-and-zte-devices/

Microsoft Agrees to Rename GVFS Project Over Gnome Confusion

Microsoft agreed to hold a vote for a new name for their GVFS project after over a year of complaints from developers and users that it was causing confusion with the long-standing Gnome GVfs package. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-agrees-to-rename-gvfs-project-over-gnome-confusion/

Windows 10 Insider Build 17686 Released. Here's Whats New!

Today Microsoft released Windows 10 Insider Preview Build 17686 (Redstone 5) to insiders in the fast and skip ahead rings. This build adds local experience, privacy, and Windows Mixed Reality improvements. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-17686-released-heres-whats-new/

US Piles New Charges on Marcus Hutchins (aka MalwareTech)

The US government has filed new charges against Marcus Hutchins, the security researcher known as MalwareTech who stopped the WannaCry ransomware outbreak last year. [...]

https://www.bleepingcomputer.com/news/legal/us-piles-new-charges-on-marcus-hutchins-aka-malwaretech/

Sofacy APT Has Subtly Changed Tactics

A well-known Russian cyber-espionage group has subtly changed its modus operandi, moving to what security researchers from Palo Alto Networks are calling "parallel attacks." [...]

https://www.bleepingcomputer.com/news/security/sofacy-apt-has-subtly-changed-tactics/

Adobe Patches Flash Zero-Day

Adobe has issued a security update for Flash Player today to patch a zero-day vulnerability exploited by attackers in the wild. [...]

https://www.bleepingcomputer.com/news/security/adobe-patches-flash-zero-day/

Patches Available for Dangerous Bugs in Popular Brand of IP Cameras

Chinese firm Foscam has published firmware updates to address three vulnerabilities in multiple models of IP-based cameras. The flaws, when exploited, allow an attacker to take control of vulnerable cameras, and especially those left connected online via a public IP address. [...]

https://www.bleepingcomputer.com/news/security/patches-available-for-dangerous-bugs-in-popular-brand-of-ip-cameras/

Google Changing the Look of Their Sign-In Screens

Google has announced that they are changing the look of their sign-in screens on June 14th 2018. These changes are purely cosmetic, but as some may be concerned that they are at the wrong site or are being phished, it is important to recognize what is being changed. [...]

https://www.bleepingcomputer.com/news/google/google-changing-the-look-of-their-sign-in-screens/

LOL: BabaYaga WordPress Malware Updates Your Site

Security researchers have spotted a malware strain targeting WordPress sites that includes some pretty clever self-preservation techniques, such as removing competing malware and updating the victim's site. [...]

https://www.bleepingcomputer.com/news/security/lol-babayaga-wordpress-malware-updates-your-site/

Firmware Vulnerabilities Disclosed in Supermicro Server Products

Security researchers have uncovered vulnerabilities affecting the firmware of Supermicro server products. Discovered by the Eclypsium team, these vulnerabilities affect both older and newer models of Supermicro products, but the vendor is working on addressing the issues. [...]

https://www.bleepingcomputer.com/news/security/firmware-vulnerabilities-disclosed-in-supermicro-server-products/

Facebook Bug Causes 14 Million Users Posts to be Shared Publicly

Facebook just can't get it together as we learn about another major privacy breach on their platform. This time it was caused by an internal bug that set 14 million Facebook user's posts to be posted publicly. [...]

https://www.bleepingcomputer.com/news/security/facebook-bug-causes-14-million-users-posts-to-be-shared-publicly/

You Can File Complaints About Cryptojacking With the FTC

The US Federal Trade Commission (FTC) is now open to taking complaints from US users about cryptojacking —the practice of using JavaScript code to mine cryptocurrencies inside users' browsers without notifying them in advance or requesting permission. [...]

https://www.bleepingcomputer.com/news/security/you-can-file-complaints-about-cryptojacking-with-the-ftc/

Malspam Campaigns Using IQY Attachments to Bypass AV Filters and Install RATs

Malspam campaigns, such as ones being distributed by Necurs, are utilizing a new attachment type that is doing a good job in bypassing antivirus and mail filters.  These IQY attachments are called Excel Web Query files and when opened will attempt to pull data from external sources.  [...]

https://www.bleepingcomputer.com/news/security/malspam-campaigns-using-iqy-attachments-to-bypass-av-filters-and-install-rats/