Prowli Malware Operation Infected Over 40,000 Servers, Modems, and IoT Devices
Cyber-criminals have managed to assemble a gigantic botnet of over 40,000 infected web servers, modems, and other IoT devices, which they used for cryptocurrency mining, and for redirecting users to malicious sites. [...]
https://www.bleepingcomputer.com/news/security/prowli-malware-operation-infected-over-40-000-servers-modems-and-iot-devices/
Cyber-criminals have managed to assemble a gigantic botnet of over 40,000 infected web servers, modems, and other IoT devices, which they used for cryptocurrency mining, and for redirecting users to malicious sites. [...]
https://www.bleepingcomputer.com/news/security/prowli-malware-operation-infected-over-40-000-servers-modems-and-iot-devices/
BleepingComputer
Prowli Malware Operation Infected Over 40,000 Servers, Modems, and IoT Devices
Cyber-criminals have managed to assemble a gigantic botnet of over 40,000 infected web servers, modems, and other IoT devices, which they used for cryptocurrency mining, and for redirecting users to malicious sites.
VPNFilter Can Also Infect ASUS, D-Link, Huawei, Ubiquiti, UPVEL, and ZTE Devices
The VPNFilter malware that infected over 500,000 routers and NAS devices across 54 countries during the past few months is much worse than previously thought. [...]
https://www.bleepingcomputer.com/news/security/vpnfilter-can-also-infect-asus-d-link-huawei-ubiquiti-upvel-and-zte-devices/
The VPNFilter malware that infected over 500,000 routers and NAS devices across 54 countries during the past few months is much worse than previously thought. [...]
https://www.bleepingcomputer.com/news/security/vpnfilter-can-also-infect-asus-d-link-huawei-ubiquiti-upvel-and-zte-devices/
BleepingComputer
VPNFilter Can Also Infect ASUS, D-Link, Huawei, Ubiquiti, UPVEL, and ZTE Devices
The VPNFilter malware that infected over 500,000 routers and NAS devices across 54 countries during the past few months is much worse than previously thought.
Microsoft Agrees to Rename GVFS Project Over Gnome Confusion
Microsoft agreed to hold a vote for a new name for their GVFS project after over a year of complaints from developers and users that it was causing confusion with the long-standing Gnome GVfs package. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-agrees-to-rename-gvfs-project-over-gnome-confusion/
Microsoft agreed to hold a vote for a new name for their GVFS project after over a year of complaints from developers and users that it was causing confusion with the long-standing Gnome GVfs package. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-agrees-to-rename-gvfs-project-over-gnome-confusion/
BleepingComputer
Microsoft Agrees to Rename GVFS Project Over Gnome Confusion
Microsoft agreed to hold a vote for a new name for their GVFS project after over a year of complaints from developers and users that it was causing confusion with the long-standing Gnome GVfs package.
Windows 10 Insider Build 17686 Released. Here's Whats New!
Today Microsoft released Windows 10 Insider Preview Build 17686 (Redstone 5) to insiders in the fast and skip ahead rings. This build adds local experience, privacy, and Windows Mixed Reality improvements. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-17686-released-heres-whats-new/
Today Microsoft released Windows 10 Insider Preview Build 17686 (Redstone 5) to insiders in the fast and skip ahead rings. This build adds local experience, privacy, and Windows Mixed Reality improvements. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-17686-released-heres-whats-new/
BleepingComputer
Windows 10 Insider Build 17686 Released. Here's Whats New!
Today Microsoft released Windows 10 Insider Preview Build 17686 (Redstone 5) to insiders in the fast and skip ahead rings. This build adds local experience, privacy, and Windows Mixed Reality improvements.
US Piles New Charges on Marcus Hutchins (aka MalwareTech)
The US government has filed new charges against Marcus Hutchins, the security researcher known as MalwareTech who stopped the WannaCry ransomware outbreak last year. [...]
https://www.bleepingcomputer.com/news/legal/us-piles-new-charges-on-marcus-hutchins-aka-malwaretech/
The US government has filed new charges against Marcus Hutchins, the security researcher known as MalwareTech who stopped the WannaCry ransomware outbreak last year. [...]
https://www.bleepingcomputer.com/news/legal/us-piles-new-charges-on-marcus-hutchins-aka-malwaretech/
BleepingComputer
US Piles New Charges on Marcus Hutchins (aka MalwareTech)
The US government has filed new charges against Marcus Hutchins, the security researcher known as MalwareTech who stopped the WannaCry ransomware outbreak last year.
Sofacy APT Has Subtly Changed Tactics
A well-known Russian cyber-espionage group has subtly changed its modus operandi, moving to what security researchers from Palo Alto Networks are calling "parallel attacks." [...]
https://www.bleepingcomputer.com/news/security/sofacy-apt-has-subtly-changed-tactics/
A well-known Russian cyber-espionage group has subtly changed its modus operandi, moving to what security researchers from Palo Alto Networks are calling "parallel attacks." [...]
https://www.bleepingcomputer.com/news/security/sofacy-apt-has-subtly-changed-tactics/
BleepingComputer
Sofacy APT Has Subtly Changed Tactics
A well-known Russian cyber-espionage group has subtly changed its modus operandi, moving to what security researchers from Palo Alto Networks are calling "parallel attacks."
Adobe Patches Flash Zero-Day
Adobe has issued a security update for Flash Player today to patch a zero-day vulnerability exploited by attackers in the wild. [...]
https://www.bleepingcomputer.com/news/security/adobe-patches-flash-zero-day/
Adobe has issued a security update for Flash Player today to patch a zero-day vulnerability exploited by attackers in the wild. [...]
https://www.bleepingcomputer.com/news/security/adobe-patches-flash-zero-day/
BleepingComputer
Adobe Patches Flash Zero-Day
Adobe has issued a security update for Flash Player today to patch a zero-day vulnerability exploited by attackers in the wild.
Patches Available for Dangerous Bugs in Popular Brand of IP Cameras
Chinese firm Foscam has published firmware updates to address three vulnerabilities in multiple models of IP-based cameras. The flaws, when exploited, allow an attacker to take control of vulnerable cameras, and especially those left connected online via a public IP address. [...]
https://www.bleepingcomputer.com/news/security/patches-available-for-dangerous-bugs-in-popular-brand-of-ip-cameras/
Chinese firm Foscam has published firmware updates to address three vulnerabilities in multiple models of IP-based cameras. The flaws, when exploited, allow an attacker to take control of vulnerable cameras, and especially those left connected online via a public IP address. [...]
https://www.bleepingcomputer.com/news/security/patches-available-for-dangerous-bugs-in-popular-brand-of-ip-cameras/
BleepingComputer
Patches Available for Dangerous Bugs in Popular Brand of IP Cameras
Chinese firm Foscam has published firmware updates to address three vulnerabilities in multiple models of IP-based cameras. The flaws, when exploited, allow an attacker to take control of vulnerable cameras, and especially those left connected online viaβ¦
Google Changing the Look of Their Sign-In Screens
Google has announced that they are changing the look of their sign-in screens on June 14th 2018. These changes are purely cosmetic, but as some may be concerned that they are at the wrong site or are being phished, it is important to recognize what is being changed. [...]
https://www.bleepingcomputer.com/news/google/google-changing-the-look-of-their-sign-in-screens/
Google has announced that they are changing the look of their sign-in screens on June 14th 2018. These changes are purely cosmetic, but as some may be concerned that they are at the wrong site or are being phished, it is important to recognize what is being changed. [...]
https://www.bleepingcomputer.com/news/google/google-changing-the-look-of-their-sign-in-screens/
BleepingComputer
Google Changing the Look of Their Sign-In Screens
Google has announced that they are changing the look of their sign-in screens on June 14th 2018. These changes are purely cosmetic, but as some may be concerned that they are at the wrong site or are being phished, it is important to recognize what is beingβ¦
LOL: BabaYaga WordPress Malware Updates Your Site
Security researchers have spotted a malware strain targeting WordPress sites that includes some pretty clever self-preservation techniques, such as removing competing malware and updating the victim's site. [...]
https://www.bleepingcomputer.com/news/security/lol-babayaga-wordpress-malware-updates-your-site/
Security researchers have spotted a malware strain targeting WordPress sites that includes some pretty clever self-preservation techniques, such as removing competing malware and updating the victim's site. [...]
https://www.bleepingcomputer.com/news/security/lol-babayaga-wordpress-malware-updates-your-site/
BleepingComputer
LOL: BabaYaga WordPress Malware Updates Your Site
Security researchers have spotted a malware strain targeting WordPress sites that includes some pretty clever self-preservation techniques, such as removing competing malware and updating the victim's site.
Firmware Vulnerabilities Disclosed in Supermicro Server Products
Security researchers have uncovered vulnerabilities affecting the firmware of Supermicro server products. Discovered by the Eclypsium team, these vulnerabilities affect both older and newer models of Supermicro products, but the vendor is working on addressing the issues. [...]
https://www.bleepingcomputer.com/news/security/firmware-vulnerabilities-disclosed-in-supermicro-server-products/
Security researchers have uncovered vulnerabilities affecting the firmware of Supermicro server products. Discovered by the Eclypsium team, these vulnerabilities affect both older and newer models of Supermicro products, but the vendor is working on addressing the issues. [...]
https://www.bleepingcomputer.com/news/security/firmware-vulnerabilities-disclosed-in-supermicro-server-products/
BleepingComputer
Firmware Vulnerabilities Disclosed in Supermicro Server Products
Security researchers have uncovered vulnerabilities affecting the firmware of Supermicro server products. Discovered by the Eclypsium team, these vulnerabilities affect both older and newer models of Supermicro products, but the vendor is working on addressingβ¦
Facebook Bug Causes 14 Million Users Posts to be Shared Publicly
Facebook just can't get it together as we learn about another major privacy breach on their platform. This time it was caused by an internal bug that set 14 million Facebook user's posts to be posted publicly. [...]
https://www.bleepingcomputer.com/news/security/facebook-bug-causes-14-million-users-posts-to-be-shared-publicly/
Facebook just can't get it together as we learn about another major privacy breach on their platform. This time it was caused by an internal bug that set 14 million Facebook user's posts to be posted publicly. [...]
https://www.bleepingcomputer.com/news/security/facebook-bug-causes-14-million-users-posts-to-be-shared-publicly/
BleepingComputer
Facebook Bug Causes 14 Million Users Posts to be Shared Publicly
Facebook just can't get it together as we learn about another major privacy breach on their platform. This time it was caused by an internal bug that set 14 million Facebook user's posts to be posted publicly.
You Can File Complaints About Cryptojacking With the FTC
The US Federal Trade Commission (FTC) is now open to taking complaints from US users about cryptojacking βthe practice of using JavaScript code to mine cryptocurrencies inside users' browsers without notifying them in advance or requesting permission. [...]
https://www.bleepingcomputer.com/news/security/you-can-file-complaints-about-cryptojacking-with-the-ftc/
The US Federal Trade Commission (FTC) is now open to taking complaints from US users about cryptojacking βthe practice of using JavaScript code to mine cryptocurrencies inside users' browsers without notifying them in advance or requesting permission. [...]
https://www.bleepingcomputer.com/news/security/you-can-file-complaints-about-cryptojacking-with-the-ftc/
BleepingComputer
You Can File Complaints About Cryptojacking With the FTC
The US Federal Trade Commission (FTC) is now open to taking complaints from US users about cryptojacking βthe practice of using JavaScript code to mine cryptocurrencies inside users' browsers without notifying them in advance or requesting permission.
Malspam Campaigns Using IQY Attachments to Bypass AV Filters and Install RATs
Malspam campaigns, such as ones being distributed by Necurs, are utilizing a new attachment type that is doing a good job in bypassing antivirus and mail filters. These IQY attachments are called Excel Web Query files and when opened will attempt to pull data from external sources. [...]
https://www.bleepingcomputer.com/news/security/malspam-campaigns-using-iqy-attachments-to-bypass-av-filters-and-install-rats/
Malspam campaigns, such as ones being distributed by Necurs, are utilizing a new attachment type that is doing a good job in bypassing antivirus and mail filters. These IQY attachments are called Excel Web Query files and when opened will attempt to pull data from external sources. [...]
https://www.bleepingcomputer.com/news/security/malspam-campaigns-using-iqy-attachments-to-bypass-av-filters-and-install-rats/
BleepingComputer
Malspam Campaigns Using IQY Attachments to Bypass AV Filters and Install RATs
Malspam campaigns, such as ones being distributed by Necurs, are utilizing a new attachment type that is doing a good job in bypassing antivirus and mail filters. These IQY attachments are called Excel Web Query files and when opened will attempt to pullβ¦
Cisco Removes Backdoor Account, Fourth in the Last Four Months
For the fourth time in as many months, Cisco has removed hardcoded credentials that were left inside one of its products, which an attacker could have exploited to gain access to devices and inherently to customer networks. [...]
https://www.bleepingcomputer.com/news/security/cisco-removes-backdoor-account-fourth-in-the-last-four-months/
For the fourth time in as many months, Cisco has removed hardcoded credentials that were left inside one of its products, which an attacker could have exploited to gain access to devices and inherently to customer networks. [...]
https://www.bleepingcomputer.com/news/security/cisco-removes-backdoor-account-fourth-in-the-last-four-months/
BleepingComputer
Cisco Removes Backdoor Account, Fourth in the Last Four Months
For the fourth time in as many months, Cisco has removed hardcoded credentials that were left inside one of its products, which an attacker could have exploited to gain access to devices and inherently to customer networks.
InvisiMole Is a Complex Spyware That Can Take Pictures and Record Audio
Security researchers from ESET have discovered a complex piece of spyware that was used sparingly in the last five years to infect and spy on a very small number of targets in Russia and Ukraine. [...]
https://www.bleepingcomputer.com/news/security/invisimole-is-a-complex-spyware-that-can-take-pictures-and-record-audio/
Security researchers from ESET have discovered a complex piece of spyware that was used sparingly in the last five years to infect and spy on a very small number of targets in Russia and Ukraine. [...]
https://www.bleepingcomputer.com/news/security/invisimole-is-a-complex-spyware-that-can-take-pictures-and-record-audio/
BleepingComputer
InvisiMole Is a Complex Spyware That Can Take Pictures and Record Audio
Security researchers from ESET have discovered a complex piece of spyware that was used sparingly in the last five years to infect and spy on a very small number of targets in Russia and Ukraine.
Yahoo Messenger Now Joins the List of Discarded Chat Programs
Yahoo announced today that its Yahoo Messenger chat program is being discontinued on Juy 17th 2018. They are now directing users towards their Squirrel chat app that is currently in beta. [...]
https://www.bleepingcomputer.com/news/business/yahoo-messenger-now-joins-the-list-of-discarded-chat-programs/
Yahoo announced today that its Yahoo Messenger chat program is being discontinued on Juy 17th 2018. They are now directing users towards their Squirrel chat app that is currently in beta. [...]
https://www.bleepingcomputer.com/news/business/yahoo-messenger-now-joins-the-list-of-discarded-chat-programs/
BleepingComputer
Yahoo Messenger Now Joins the List of Discarded Chat Programs
Yahoo announced today that its Yahoo Messenger chat program is being discontinued on Juy 17th 2018. They are now directing users towards their Squirrel chat app that is currently in beta.
Hackers Crashed a Bank’s Computers While Attempting a SWIFT Hack
Hackers have used a disk-wiping malware to sabotage hundreds of computers at a bank in Chile to distract staff while they were attempting to steal money via the bank's SWIFT money transferring system. [...]
https://www.bleepingcomputer.com/news/security/hackers-crashed-a-bank-s-computers-while-attempting-a-swift-hack/
Hackers have used a disk-wiping malware to sabotage hundreds of computers at a bank in Chile to distract staff while they were attempting to steal money via the bank's SWIFT money transferring system. [...]
https://www.bleepingcomputer.com/news/security/hackers-crashed-a-bank-s-computers-while-attempting-a-swift-hack/
BleepingComputer
Hackers Crashed a Bankβs Computers While Attempting a SWIFT Hack
Hackers have used a disk-wiping malware to sabotage hundreds of computers at a bank in Chile to distract staff while they were attempting to steal money via the bank's SWIFT money transferring system.
The Week in Ransomware - June 8th 2018 - CryBrazil, CryptConsole, and Magniber
This week we have seen a lot of CryptConsole variants, Magniber activity, & smaller variants released. Ransomware continues to decline as developers move toward more profitable miners and information stealing Trojans. Ransomware is not going away, instead of mass malspam campaigns, ransomware is moving to more targeted attacks. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-june-8th-2018-crybrazil-cryptconsole-and-magniber/
This week we have seen a lot of CryptConsole variants, Magniber activity, & smaller variants released. Ransomware continues to decline as developers move toward more profitable miners and information stealing Trojans. Ransomware is not going away, instead of mass malspam campaigns, ransomware is moving to more targeted attacks. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-june-8th-2018-crybrazil-cryptconsole-and-magniber/
BleepingComputer
The Week in Ransomware - June 8th 2018 - CryBrazil, CryptConsole, and Magniber
This week we have seen a lot of CryptConsole variants, Magniber activity, & smaller variants released. Ransomware continues to decline as developers move toward more profitable miners and information stealing Trojans. Ransomware is not going away, insteadβ¦
F-Secure Fixes Serious Vulnerability in Antivirus Products
F-Secure has fixed a severe vulnerability in its home and enterprise antivirus products that could have allowed an attacker to execute malicious code on the user's machine and take over affected PCs [...]
https://www.bleepingcomputer.com/news/security/f-secure-fixes-serious-vulnerability-in-antivirus-products/
F-Secure has fixed a severe vulnerability in its home and enterprise antivirus products that could have allowed an attacker to execute malicious code on the user's machine and take over affected PCs [...]
https://www.bleepingcomputer.com/news/security/f-secure-fixes-serious-vulnerability-in-antivirus-products/
BleepingComputer
F-Secure Fixes Serious Vulnerability in Antivirus Products
F-Secure has fixed a severe vulnerability in its home and enterprise antivirus products that could have allowed an attacker to execute malicious code on the user's machine and take over affected PCs
Microsoft Store Brings Remote App Install to Windows 10 With "Install on my devices"
Microsoft has added a new feature to the web version of the Microsoft Store called called "Install on my devices" that allows you to install an app on Windows 10 devices where you have an account. Similar to Google Play, this allows you to install apps on devices from the web, even if your not accessing the store from Windows 10. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-store-brings-remote-app-install-to-windows-10-with-install-on-my-devices/
Microsoft has added a new feature to the web version of the Microsoft Store called called "Install on my devices" that allows you to install an app on Windows 10 devices where you have an account. Similar to Google Play, this allows you to install apps on devices from the web, even if your not accessing the store from Windows 10. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-store-brings-remote-app-install-to-windows-10-with-install-on-my-devices/
BleepingComputer
Microsoft Store Brings Remote App Install to Windows 10 With "Install on my devices"
Microsoft has added a new feature to the web version of the Microsoft Store called called "Install on my devices" that allows you to install an app on Windows 10 devices where you have an account. Similar to Google Play, this allows you to install apps onβ¦