New DemonBot Botnet Pulls the YARN in Hadoop Servers

Attackers looking to increase the denial-service-power of their botnet have set their sights on servers with vulnerable Hadoop installations, compromising them via publicly available exploits. [...]

https://www.bleepingcomputer.com/news/security/new-demonbot-botnet-pulls-the-yarn-in-hadoop-servers/

The Few Privileged North Koreans Are Savvy Scammers

Despite North Korea's isolation from the rest of the world, the country's ruling elite use the internet to escape economic sanctions and to find and tackle new money-making opportunities, legal or not. [...]

https://www.bleepingcomputer.com/news/cryptocurrency/the-few-privileged-north-koreans-are-savvy-scammers/

Trivial Bug in X..Org Gives Root Permission on Linux and BSD Systems

A vulnerability that is trivial to exploit allows privilege escalation to root level on Linux and BSD distributions using X.Org server, the open source implementation of the X Window System that offers the graphical environment. [...]

https://www.bleepingcomputer.com/news/security/trivial-bug-in-xorg-gives-root-permission-on-linux-and-bsd-systems/

The Week in Ransomware - October 26th 2018 - Decryptors, RaaS, and More

We have had quite a bit of interesting news this week regarding ransomware. First we had the Kraken Cryptor deciding to connect to BleepingComputer.com during different stages of the encryption process, then we had a decryptor released by Bitdefender for GandCrab v1, v4, and v5, and finally a new FilesLocker rasnomware as a service. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-october-26th-2018-decryptors-raas-and-more/

Bushido-Powered DDoS Service Whipped Up from Leaked Code

Security researchers found a new DDoS-for-hire service that offers easy and cheap access to sufficient power to knock down most targets. [...]

https://www.bleepingcomputer.com/news/security/bushido-powered-ddos-service-whipped-up-from-leaked-code/

Exposed Docker APIs Continue to Be Used for Cryptojacking

Trend Micro has recently spotted an attacker that is scanning for exposed Docker Engine APIs and utilizing them to deploy containers that download and execute a coin miner. These containers then use scripts to spread to other systems. [...]

https://www.bleepingcomputer.com/news/security/exposed-docker-apis-continue-to-be-used-for-cryptojacking/

Microsoft Sandboxes Windows Defender

As the infosec community talked about potential cyber attacks leveraging vulnerabilities in antivirus products, Microsoft took notes and started to work on a solution. The company announced that its Windows Defender can run in a sandbox. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-sandboxes-windows-defender/

Windows 10 Bug Allowed UWP Apps Full Access to File System

A bug in Windows 10 allowed UWP apps (Universal Windows Platform) to have access to the entire file system in Windows without permission from the user. This could have allowed a malicious app to access any data stored on the computer without the knowledge or consent of the user. [...]

https://www.bleepingcomputer.com/news/security/windows-10-bug-allowed-uwp-apps-full-access-to-file-system/

Mirai Botnet Operator Ordered to Pay $8.6 Million

One author of the original Mirai botnet received this Friday a new sentence for launching distributed denial-of-service attacks prior to the infamous assaults two years ago. [...]

https://www.bleepingcomputer.com/news/security/mirai-botnet-operator-ordered-to-pay-86-million/

Mac CryptoCurrency Price Tracker Caught Installing Backdoors

A Trojan pretending to be a macOS cryptocurrency ticker called CoinTicker is installing two backdoors on the macs of unsuspecting users. [...]

https://www.bleepingcomputer.com/news/security/mac-cryptocurrency-price-tracker-caught-installing-backdoors/

Compression File Formats of the past Come Haunting in Spam Campaigns

Some ancient filetypes are making a comeback due to unwanted attention from cybercriminals looking for more effective ways to hide malware distributed through spam campaigns. [...]

https://www.bleepingcomputer.com/news/security/compression-file-formats-of-the-past-come-haunting-in-spam-campaigns/

Majority of Top 30 Sites Don't Offer Wide Range of 2FA Options

The Dashlane password management company has released research showing that the majority of the top 30 consumer sites do not offer a complete range of two factor authentication (2FA) options for login authentication. Of the top 30 sites, only 8 offered all of the tested for 2FA options. [...]

https://www.bleepingcomputer.com/news/security/majority-of-top-30-sites-dont-offer-wide-range-of-2fa-options/

Millions of Voter Records Up for Sale Ahead of the US Midterm Elections

As the US midterm elections close in, the underground markets appear to be flush with voter databases available for affordable prices. [...]

https://www.bleepingcomputer.com/news/security/millions-of-voter-records-up-for-sale-ahead-of-the-us-midterm-elections/

CommonRansom Ransomware Demands RDP Access to Decrypt Files

A new ransomware called CommonRansom was discovered that has a very bizarre request. In order to decrypt a computer after a payment is made, they require the victim to open up Remote Desktop Services on the affected computer and send them admin credentials in order to decrypt the victim's files. [...]

https://www.bleepingcomputer.com/news/security/commonransom-ransomware-demands-rdp-access-to-decrypt-files/

Windows 10 Build 17763.107 Released to Insiders With Fixes for October Update

According to the changelog, Microsoft has finally fixed a bug where the system won't display a confirmation prompt when users extract a file from a zip archive to a location where the file with the same name exists. Microsoft recently acknowledged the issue and today's update has finally addressed it. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-build-17763107-released-to-insiders-with-fixes-for-october-update/

Apple Fixes Creepy FaceTime Vulnerability, Crash Bug in macOS, and More

Today Apple released updates for core products that include iOS 12.1, Safari 12.0.1, iCloud for Windows, iTunes, watchOS 5.1, tvOS 12.1, and macOS. [...]

https://www.bleepingcomputer.com/news/security/apple-fixes-creepy-facetime-vulnerability-crash-bug-in-macos-and-more/

Telegram Desktop Saves Conversations Locally in Plain Text

The desktop variant for Telegram secure messaging app fails to protect chat content locally, offering access to plain text conversations and media that otherwise travel encrypted.. [...]

https://www.bleepingcomputer.com/news/security/telegram-desktop-saves-conversations-locally-in-plain-text/

Google's reCAPTCHA v3 Promises No Break For Bot Checking

Google launched the third version of its reCAPTCHA program that sets apart humans and bots when they land on websites, with the promise of eliminating user interaction. [...]

https://www.bleepingcomputer.com/news/google/googles-recaptcha-v3-promises-no-break-for-bot-checking/

Emotet Trojan Begins Stealing Victim's Email Using New Module

The Emotet malware is typically used as a banking trojan and more recently for distributing other malware, but has now become more versatile via a module that allows it to steal a victim's actual emails going back six months. [...]

https://www.bleepingcomputer.com/news/security/emotet-trojan-begins-stealing-victims-email-using-new-module/

Windows 10 Build 18272 Released to Insiders With Improvements

Windows 10 19H1 preview build 18272 is rolling out to the Windows Insiders in the Fast and Skip Ahead rings. Windows 10 Build 18272 comes with several improvements and fixes but there are no major changes. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-build-18272-released-to-insiders-with-improvements/

Complete Works Of Shakespeare Hidden Inside Twitter Thumbnail Image

A security researcher has demonstrated how he could hide the Complete Works of Shakespeare into an image and use Twitter to distribute it using stegenography. [...]

https://www.bleepingcomputer.com/news/security/complete-works-of-shakespeare-hidden-inside-twitter-thumbnail-image/