Firefox 64 To Add a Report Abuse Option When Removing Extensions

According to a bugzilla post, Mozilla is also looking to add a Report Abuse option when a user removes an extension. Unfortunately, though, it is not being added at this time and being saved for the future. [...]

https://www.bleepingcomputer.com/news/security/firefox-64-to-add-a-report-abuse-option-when-removing-extensions/

Microsoft Office 365 Customers Get Protection Against Malicious Macros

Microsoft extends support for its Antimalware Scan Interface (AMSI) to Office 365 client applications, offering protection against script-based threats at runtime. [...]

https://www.bleepingcomputer.com/news/security/microsoft-office-365-customers-get-protection-against-malicious-macros/

Fallout Exploit Kit Pushing the SAVEfiles Ransomware

Last week the Fallout Exploit kit was distributing the GandCrab ransomware. This week, it has started to distribute a new ransomware called SAVEfiles, for lack of a better name, through malvertising campaigns. [...]

https://www.bleepingcomputer.com/news/security/fallout-exploit-kit-pushing-the-savefiles-ransomware/

Windows 10 Build 17760 (RS5) Released to Insiders in the Fast Ring

Microsoft is busy this week squashing bugs as they pump out two October 2018 Update candidates in the same week. Today Microsoft has released Windows 10 Build 17760 (Redstone 5) for Insiders in the Fast Ring. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-build-17760-rs5-released-to-insiders-in-the-fast-ring/

The Week in Ransomware - September 14th 2018 - Kraken, Dharma, & Matrix

Was a quiet week for new variants, but a bunch of long-running ransomware infections released new variants this week. We had a few from Scarab, a new Dharma variant, and a new Matrix ransomware variant.  [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-september-14th-2018-kraken-dharma-and-matrix/

Windows Systems Vulnerable to FragmentSmack DoS Bug

Microsoft released a security advisory on a denial-of-service vulnerability that renders multiple versions of Windows completely unresponsive and has no mitigation factors. [...]

https://www.bleepingcomputer.com/news/security/windows-systems-vulnerable-to-fragmentsmack-dos-bug/

Chrome 69 Shows the WWW & M Subdomains Again, but It’s Only Temporary

Google has made it so you can see the WWW and M subdomains in Chrome 69 again, but have stated that they will strip WWW again in Chrome 70. [...]

https://www.bleepingcomputer.com/news/security/chrome-69-shows-the-www-and-m-subdomains-again-but-it-s-only-temporary/

New CSS Attack Restarts an iPhone or Freezes a Mac

A new attack has been discovered that will cause iOS to restart or respring and macOS to freeze simply by visiting a web page that contains certain CSS & HTML. Windows and Linux users are not affected by this bug. [...]

https://www.bleepingcomputer.com/news/security/new-css-attack-restarts-an-iphone-or-freezes-a-mac/

Windows Systems Vulnerable to FragmentSmack, 90s-Like DoS Bug

Microsoft released a security advisory about a denial-of-service vulnerability that could render multiple versions of Windows completely unresponsive and has no mitigation factors, the company says. [...]

https://www.bleepingcomputer.com/news/security/windows-systems-vulnerable-to-fragmentsmack-90s-like-dos-bug/

Microsoft Is Updating Office Desktop on Windows With New Features for Insiders

Microsoft has released a new update for Office Insiders in both Fast and Slow channels. The latest preview build of Office desktop app comes with new features, improvements, and as well as fixes. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-is-updating-office-desktop-on-windows-with-new-features-for-insiders/

New Brrr Dharma Ransomware Variant Released

A new variant of the Dharma Ransomware was released this week that appends the .brrr extension to encrypted files. This variant was first discovered by Jakub Kroustek who tweeted a link to the sample on VirusTotal. [...]

https://www.bleepingcomputer.com/news/security/new-brrr-dharma-ransomware-variant-released/

Linus Torvalds Apologizes, Takes Break to Patch Behavior

In a mailing list message on Sunday, Linus Torvalds apologizes for a lifelong of outbursts and snappy retorts at developers that may have driven them away from the Linux project. [...]

https://www.bleepingcomputer.com/news/linux/linus-torvalds-apologizes-takes-break-to-patch-behavior/

CloudFlare's IPFS Gateway Makes it Easy to Create Distributed Web Sites

CloudFlare has introduced a new gateway that allows you to easily access content stored on IPFS, or the InterPlanetary File System, through a web browser and without having to install a client. [...]

https://www.bleepingcomputer.com/news/technology/cloudflares-ipfs-gateway-makes-it-easy-to-create-distributed-web-sites/

CCleaner Disregarding Settings and Forcing Update to 5.46

Reports are coming in that Piriform is forcing CCleaner to update to the latest 5.46 version even when users had configured the program to not perform automatic updates. To make matters worse, once the users were upgraded to the latest version, their privacy settings are reset to default, which is to send usage data. [...]

https://www.bleepingcomputer.com/news/software/ccleaner-disregarding-settings-and-forcing-update-to-546/

Xiaomi MIUI Now Showing Ads in Settings App on Their Phones

Xiaomi has been showing ads in the File Manager and app lock screen page for quite a while now. Now it appears that the company is also displaying ads in the settings app. [...]

https://www.bleepingcomputer.com/news/software/xiaomi-miui-now-showing-ads-in-settings-app-on-their-phones/

New Botnet Hides in Blockchain DNS Mist and Removes Cryptominer

A new botnet captured the attention of security researchers through its harmless behavior and the use of an original communication channel with its command and control center. [...]

https://www.bleepingcomputer.com/news/security/new-botnet-hides-in-blockchain-dns-mist-and-removes-cryptominer/

Windows 10 Cumulative Update KB4464218 and KB4464217 Released

Today, Windows 10 April 2018 Update and Windows 10 Fall Creators Update are receiving another new patch with minor bug fixes. The latest patch for Windows 10 April 2018 Update advances the build number to 17134.286 and if you're on Windows 10 Fall Creators Update, you'll be getting Build 16299.666. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-cumulative-update-kb4464218-and-kb4464217-released/

iOS 12 Patches Memory Bugs, Safari 12 Fixes Data Leaks

A new round of security updates is available from Apple, fixing bugs in Safari, watchOS, tvOS, and iOS. Some of the vulnerabilities were disclosed ahead of these releases, creating a window of opportunity for ill-intended users. [...]

https://www.bleepingcomputer.com/news/security/ios-12-patches-memory-bugs-safari-12-fixes-data-leaks/

Database with 11 Million Email Records Exposed

A huge customer database containing 11 million records that include personal details, has been discovered on Monday sitting online, unprotected. [...]

https://www.bleepingcomputer.com/news/security/database-with-11-million-email-records-exposed/

Cloudflare Makes DNSSEC Activation Easy

A boost is expected in the near future in the adoption of the DNSSEC technology that establishes trust in the Domain Name System (DNS) - the mechanism responsible for translating website names into machine-intelligible data. [...]

https://www.bleepingcomputer.com/news/security/cloudflare-makes-dnssec-activation-easy/

Critical Peekaboo Bug in NVR Allows RCE, PoC Available

A critical vulnerability in software from a global vendor of video surveillance equipment puts at risk the security of video feeds from over 100 camera brands and more than 2,500 camera models. [...]

https://www.bleepingcomputer.com/news/security/critical-peekaboo-bug-in-nvr-allows-rce-poc-available/