DuckDuckGo Is Now Receiving More Than 30 Million Searches in a Single Day

The privacy-focused search engine DuckDuckGo is now performing more than 30 million searches in a single day. DuckDuckGo has experienced rapid growth and yesterday the company announced that it grew by 50% in a single year. [...]

https://www.bleepingcomputer.com/news/technology/duckduckgo-is-now-receiving-more-than-30-million-searches-in-a-single-day/

Ad Clicker Hiding as Google Photos App Found in Microsoft Store

A malicious app called "Album by Google Photos" was found in the Microsoft Store today that pretends to be from Google. This app pretends to be part of Google Photos, but is actually an ad clicker that repeatedly opens hidden advertisements in Windows 10. [...]

https://www.bleepingcomputer.com/news/security/ad-clicker-hiding-as-google-photos-app-found-in-microsoft-store/

Android Apps Pretend to Mine Unmineable CryptoCurrencies to Just Show Ads

Scammers are creating fake Android cryptocurrency mining apps and promoting them on the Google Store. The kicker is that these apps claim to mine cryptocurrency that can't be mined in the first place. [...]

https://www.bleepingcomputer.com/news/security/android-apps-pretend-to-mine-unmineable-cryptocurrencies-to-just-show-ads/

Sony Playstation 4 Crashes from Messages with Symbols, Fix the Problem

PlayStation 4 owners are at risk of having their console freeze on them in the middle of a game due to an issue with parsing symbols in messages received from fellow gamers. [...]

https://www.bleepingcomputer.com/news/gaming/sony-playstation-4-crashes-from-messages-with-symbols-fix-the-problem/

Pentagon Data Breach Exposes up to 30,000 Travel Records

The travel records for up to 30,000 U.S. military and civilian workers have reportedly been leaked through a commercial vendor used by the Pentagon. [...]

https://www.bleepingcomputer.com/news/security/pentagon-data-breach-exposes-up-to-30-000-travel-records/

Known Problems & Fixes for October 2018 Windows 10 Updates

It has been almost two weeks since Microsoft released updates for Windows 10 as part of their October 2018 Patch Tuesday and what a long two weeks it has been. In this article we will take a look at the known bugs and how to resolve them. [...]

https://www.bleepingcomputer.com/news/microsoft/known-problems-and-fixes-for-october-2018-windows-10-updates/

Tens of Millions of U.S. Voter Records for Sale

An advertisement on a forum trading data breach information offers to sell personally identifiable details and voting history of millions of US residents. The estimated size of the cache is in excess of 35 million records. [...]

https://www.bleepingcomputer.com/news/security/tens-of-millions-of-us-voter-records-for-sale/

GPU-Z Can Now Detect Fake NVIDIA Graphics Cards

Sellers have been modifying lower end NVIDIA graphics cards and selling them more powerful cards online. In a recent version of the GPU-Z graphics card information utility, TechPowerUp has added the ability to now detect these fake NVIDIA cards.  [...]

https://www.bleepingcomputer.com/news/software/gpu-z-can-now-detect-fake-nvidia-graphics-cards/

New Technique Recycles Exploit Chain to Keep Antivirus Silent

In a new malware campaign, cybercriminals modified a known exploit chain to push Agent Tesla info stealer without triggering detection from common antivirus products. [...]

https://www.bleepingcomputer.com/news/security/new-technique-recycles-exploit-chain-to-keep-antivirus-silent/

U.S. Gov Agencies Fail to Fully Embrace DMARC Email Security Policy

[...]

https://www.bleepingcomputer.com/news/security/us-gov-agencies-fail-to-fully-embrace-dmarc-email-security-policy/

Google’s Android Apps Are No Longer Free for European Smartphone Makers

Google has announced changes in how European smartphone and tablet makers can use Google's Android apps in response to the EU's $5 billion fine. Going forward, EU manufacturers will now have to pay Google a license fee to bundle Google's suite of mobile apps. [...]

https://www.bleepingcomputer.com/news/google/google-s-android-apps-are-no-longer-free-for-european-smartphone-makers/

TLS 1.0 and TLS 1.1 Being Retired in 2020 by All Major Browsers

In a coordinated announcement, Microsoft, Google, Apple, and Mozilla have stated that they will be retiring the TLS 1.0 and TLS 1.1 secure communication protocols beginning in 2020. [...]

https://www.bleepingcomputer.com/news/security/tls-10-and-tls-11-being-retired-in-2020-by-all-major-browsers/

Windows 10 October 2018 Update Build 17763.104 Released to Insiders With Fixes

The update has finally a bug in Task Manager that causes incorrect reporting of CPU usage. It's one of the known issues that Insiders reported during the testing of October 2018 Update but for some reason, it wasn't fixed before the public launch. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-october-2018-update-build-17763104-released-to-insiders-with-fixes/

Vending Machine App Hacked for Unlimited Credit

A hacker enticed by the payment method used by the vending machines located on a university campus found a way to get free credit after looking at the inner workings of the machine's accompanying mobile app. [...]

https://www.bleepingcomputer.com/news/security/vending-machine-app-hacked-for-unlimited-credit/

Abandoned Tweet Counter Hijacked With Malicious Script

An abandoned Tweet counter that was still being loaded by 800+ sites was hijacked with a malicious script that caused visitors to be redirected to scam sites. [...]

https://www.bleepingcomputer.com/news/security/abandoned-tweet-counter-hijacked-with-malicious-script/

New GreyEnergy Malware Targets ICS, Tied with BlackEnergy and TeleBots

A new advanced threat actor is now on the public map of adversaries that target systems in the critical infrastructure sector. The name is GreyEnergy and it shows similarities with the BlackEnergy group. [...]

https://www.bleepingcomputer.com/news/security/new-greyenergy-malware-targets-ics-tied-with-blackenergy-and-telebots/

Hacker: I'm logged in. New LibSSH Vulnerability: OK! I believe you.

Newly released versions of the libssh library fix an authentication bypass flaw that grants access to the server by just telling it that the procedure was a success. [...]

https://www.bleepingcomputer.com/news/security/hacker-im-logged-in-new-libssh-vulnerability-ok-i-believe-you/

SEO Poisoning Campaign Targeting U.S. Midterm Election Keywords

A new SEO poisoning campaign has been discovered that is targeting keywords associated with the U.S. midterm elections. Users who are enticed to visit these pages will then be redirected to a variety of scam sites, adult sites, and sites pushing unwanted software. [...]

https://www.bleepingcomputer.com/news/security/seo-poisoning-campaign-targeting-us-midterm-election-keywords/

Windows 10 Build 18262 Released to Insiders with Task Manager Improvements

Today, Microsoft is rolling out Windows 10 Build 18262 to the Windows Insiders in the Fast and Skip Ahead rings. This build comes with improvements for Task Manager and Narrator. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-build-18262-released-to-insiders-with-task-manager-improvements/

Mozilla Adding Native Windows 10 Share Support to Firefox 64

Mozilla is adding a native Windows 10 Share experience to Firefox 64. This allows users to share web sites using a variety of applications that are installed in Windows 10. [...]

https://www.bleepingcomputer.com/news/security/mozilla-adding-native-windows-10-share-support-to-firefox-64/

GandCrab Devs Release Decryption Keys for Syrian Victims

In a post to an underground hacking and cybercrime forum, the GandCrab developers have released the decryption keys for Syrian victims. The release of these decryption keys was in response to a Tweet where a Syrian victim asked for help after images of his deceased children were encrypted. [...]

https://www.bleepingcomputer.com/news/security/gandcrab-devs-release-decryption-keys-for-syrian-victims/