CCleaner Professional Adds Software Updater Feature
Piriform has released CCleaner v5.55 today, which for Professional users now includes a Software Updater feature that will check if installed 3rd party applications are running the latest version. [...]
https://www.bleepingcomputer.com/news/security/ccleaner-professional-adds-software-updater-feature/
Piriform has released CCleaner v5.55 today, which for Professional users now includes a Software Updater feature that will check if installed 3rd party applications are running the latest version. [...]
https://www.bleepingcomputer.com/news/security/ccleaner-professional-adds-software-updater-feature/
BleepingComputer
CCleaner Professional Adds Software Updater Feature
Piriform has released CCleaner v5.55 today, which for Professional users now includes a Software Updater feature that will check if installed 3rd party applications are running the latest version.
Unsecured API Leads to 'Yelp for Conservatives' App Data Leak
The API of the 63Red Safe mobile app known as "Yelp for conservatives" was found by French security researcher Robert Baptiste wide open, with no authentication needed to access and view the data stored within the app's database. [...]
https://www.bleepingcomputer.com/news/security/unsecured-api-leads-to-yelp-for-conservatives-app-data-leak/
The API of the 63Red Safe mobile app known as "Yelp for conservatives" was found by French security researcher Robert Baptiste wide open, with no authentication needed to access and view the data stored within the app's database. [...]
https://www.bleepingcomputer.com/news/security/unsecured-api-leads-to-yelp-for-conservatives-app-data-leak/
BleepingComputer
Unsecured API Leads to 'Yelp for Conservatives' App Data Leak
The API of the 63Red Safe mobile app known as "Yelp for conservatives" was found by French security researcher Robert Baptiste wide open, with no authentication needed to access and view the data stored within the app's database.
Microsoft March 2019 Patch Tuesday Includes Fixes for 64 Vulnerabilities
Today is Microsoft's March 2019 Patch Tuesday, which means it is time to get those security updates installed. Included in this month's are fixed for two vulnerabilities that are known to be actively exploited in the wild. [...]
https://www.bleepingcomputer.com/news/security/microsoft-march-2019-patch-tuesday-includes-fixes-for-64-vulnerabilities/
Today is Microsoft's March 2019 Patch Tuesday, which means it is time to get those security updates installed. Included in this month's are fixed for two vulnerabilities that are known to be actively exploited in the wild. [...]
https://www.bleepingcomputer.com/news/security/microsoft-march-2019-patch-tuesday-includes-fixes-for-64-vulnerabilities/
BleepingComputer
Microsoft March 2019 Patch Tuesday Includes Fixes for 64 Vulnerabilities
Today is Microsoft's March 2019 Patch Tuesday, which means it is time to get those security updates installed. Included in this month's are fixed for two vulnerabilities that are known to be actively exploited in the wild.
Windows 7 Gets SHA-2 Support To Enable Future Updates
An update was released today that adds SHA-2 code signing support to Windows 7 SP1 and Windows Server 2008 R2 SP1. If this update is not installed, these Windows operating systems will no longer be able to receive Windows updates starting on July 16th, 2019. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-7-gets-sha-2-support-to-enable-future-updates/
An update was released today that adds SHA-2 code signing support to Windows 7 SP1 and Windows Server 2008 R2 SP1. If this update is not installed, these Windows operating systems will no longer be able to receive Windows updates starting on July 16th, 2019. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-7-gets-sha-2-support-to-enable-future-updates/
BleepingComputer
Windows 7 Gets SHA-2 Support To Enable Future Updates
An update was released today that adds SHA-2 code signing support to Windows 7 SP1 and Windows Server 2008 R2 SP1. If this update is not installed, these Windows operating systems will no longer be able to receive Windows updates starting on July 16th, 2019.
SimBad Adware Found in 210 Android Apps With Over 150M Installs
Google has removed 210 Android apps with a combined total of 150 million installs that allowed attackers to display ads and open web sites once a device has been started. [...]
https://www.bleepingcomputer.com/news/security/simbad-adware-found-in-210-android-apps-with-over-150m-installs/
Google has removed 210 Android apps with a combined total of 150 million installs that allowed attackers to display ads and open web sites once a device has been started. [...]
https://www.bleepingcomputer.com/news/security/simbad-adware-found-in-210-android-apps-with-over-150m-installs/
BleepingComputer
SimBad Adware Found in 210 Android Apps With Over 150M Installs
Google has removed 210 Android apps with a combined total of 150 million installs that allowed attackers to display ads and open web sites once a device has been started.
Wordpress 5.1.1 Fixes XSS Vulnerability Leading to Website Takeovers
The WordPress team fixed a software flaw introduced in the 5.1 release that could allow potential attackers to perform stored cross-site scripting (XSS) attacks with the help of maliciously crafted comments on WordPress websites with the comments module enabled. [...]
https://www.bleepingcomputer.com/news/security/wordpress-511-fixes-xss-vulnerability-leading-to-website-takeovers/
The WordPress team fixed a software flaw introduced in the 5.1 release that could allow potential attackers to perform stored cross-site scripting (XSS) attacks with the help of maliciously crafted comments on WordPress websites with the comments module enabled. [...]
https://www.bleepingcomputer.com/news/security/wordpress-511-fixes-xss-vulnerability-leading-to-website-takeovers/
BleepingComputer
Wordpress 5.1.1 Fixes XSS Vulnerability Leading to Website Takeovers
The WordPress team fixed a software flaw introduced in the 5.1 release that could allow potential attackers to perform stored cross-site scripting (XSS) attacks with the help of maliciously crafted comments on WordPress websites with the comments module enabled.
Chinese IT Services Giant Harvests Contacts, Tracks Users
Servers controlled by Chinese IT and services giant Hangzhou Shunwang Technology collect phone contact lists, geolocation, and QQ messenger login info through a data-stealing component present in up to a dozen Android apps available from major third-party stores in the country. [...]
https://www.bleepingcomputer.com/news/security/chinese-it-services-giant-harvests-contacts-tracks-users/
Servers controlled by Chinese IT and services giant Hangzhou Shunwang Technology collect phone contact lists, geolocation, and QQ messenger login info through a data-stealing component present in up to a dozen Android apps available from major third-party stores in the country. [...]
https://www.bleepingcomputer.com/news/security/chinese-it-services-giant-harvests-contacts-tracks-users/
BleepingComputer
Chinese IT Services Giant Harvests Contacts, Tracks Users
Servers controlled by Chinese IT and services giant Hangzhou Shunwang Technology collect phone contact lists, geolocation, and QQ messenger login info through a data-stealing component present in up to a dozen Android apps available from major third-partyβ¦
Windows 10 Build 18356 Bug Opting Users Out of Insider Program
Some Windows 10 devices are being automatically opted out of the Windows Insider Program because of a bug in the new Windows 10 Insider Preview Build 18356 (19H1) released yesterday to Insiders in the Fast ring. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-build-18356-bug-opting-users-out-of-insider-program/
Some Windows 10 devices are being automatically opted out of the Windows Insider Program because of a bug in the new Windows 10 Insider Preview Build 18356 (19H1) released yesterday to Insiders in the Fast ring. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-build-18356-bug-opting-users-out-of-insider-program/
BleepingComputer
Windows 10 Build 18356 Bug Opting Users Out of Insider Program
Some Windows 10 devices are being automatically opted out of the Windows Insider Program because of a bug in the new Windows 10 Insider Preview Build 18356 (19H1) released yesterday to Insiders in the Fast ring.
Facebook and Instagram Down in Global Outage
Users worldwide are reporting that they are unable to access both Facebook and Instagram. When attempting to do so, they are given errors or maintenance messages stating that the services are aware of the problem and are working on restoring access. [...]
https://www.bleepingcomputer.com/news/technology/facebook-and-instagram-down-in-global-outage/
Users worldwide are reporting that they are unable to access both Facebook and Instagram. When attempting to do so, they are given errors or maintenance messages stating that the services are aware of the problem and are working on restoring access. [...]
https://www.bleepingcomputer.com/news/technology/facebook-and-instagram-down-in-global-outage/
BleepingComputer
Facebook and Instagram Down in Global Outage
Users worldwide are reporting that they are unable to access both Facebook and Instagram. When attempting to do so, they are given errors or maintenance messages stating that the services are aware of the problem and are working on restoring access.
Microsoft Releases Windows 10 Build 18855 (20H1) to Skip Ahead Users With Bug Fixes
Microsoft has released Windows 10 Insider Preview Build 18855 for Insiders in the Skip Ahead ring. This 20H1 build is mostly bug fixes, but does include one cool feature. It will now restore the contents of Notepad windows after a restart from installing Windows Updates [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-build-18855-20h1-to-skip-ahead-users-with-bug-fixes/
Microsoft has released Windows 10 Insider Preview Build 18855 for Insiders in the Skip Ahead ring. This 20H1 build is mostly bug fixes, but does include one cool feature. It will now restore the contents of Notepad windows after a restart from installing Windows Updates [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-build-18855-20h1-to-skip-ahead-users-with-bug-fixes/
BleepingComputer
Microsoft Releases Windows 10 Build 18855 (20H1) to Skip Ahead Users With Bug Fixes
Microsoft has released Windows 10 Insider Preview Build 18855 for Insiders in the Skip Ahead ring. This 20H1 build is mostly bug fixes, but does include one cool feature. It will now restore the contents of Notepad windows after a restart from installingβ¦
DMSniff Point-of-Sale Malware Silently Attacked SMBs For Years
A new Point-of-Sale (POS) malware which uses a domain generation algorithm to create command-and-control domains on the fly was detected in attacks against small and medium-sized businesses for the past four years according to a team of security researchers from Flashpoint. [...]
https://www.bleepingcomputer.com/news/security/dmsniff-point-of-sale-malware-silently-attacked-smbs-for-years/
A new Point-of-Sale (POS) malware which uses a domain generation algorithm to create command-and-control domains on the fly was detected in attacks against small and medium-sized businesses for the past four years according to a team of security researchers from Flashpoint. [...]
https://www.bleepingcomputer.com/news/security/dmsniff-point-of-sale-malware-silently-attacked-smbs-for-years/
BleepingComputer
DMSniff Point-of-Sale Malware Silently Attacked SMBs For Years
A Point-of-Sale (POS) malware which uses a domain generation algorithm to create command-and-control domains on the fly was detected in attacks against small and medium-sized businesses for the past four years according to a team of security researchers fromβ¦
39% of All CounterStrike 1.6 Servers Used to Infect Players
When playing a video game, most people do not worry about getting infected by the their game client. New research, though, shows that's exactly what is happening when 39% of all existing Counter-Strike 1.6 game servers were trying to infect players through vulnerabilities in the game client. [...]
https://www.bleepingcomputer.com/news/security/39-percent-of-all-counterstrike-16-servers-used-to-infect-players/
When playing a video game, most people do not worry about getting infected by the their game client. New research, though, shows that's exactly what is happening when 39% of all existing Counter-Strike 1.6 game servers were trying to infect players through vulnerabilities in the game client. [...]
https://www.bleepingcomputer.com/news/security/39-percent-of-all-counterstrike-16-servers-used-to-infect-players/
BleepingComputer
39% of All CounterStrike 1.6 Servers Used to Infect Players
When playing a video game, most people do not worry about getting infected by the their game client. New research, though, shows that's exactly what is happening when 39% of all existing Counter-Strike 1.6 game servers were trying to infect players throughβ¦
Microsoft Edge Insider Addons Store Discovered, 84 Extensions
As we get closer to Microsoft being ready to publicly reveal their Chromium-based Microsoft Edge Insider browser, an Edge Insider Addons store has been found that contains 84 extensions that will be available for the new browser. [...]
https://www.bleepingcomputer.com/news/security/microsoft-edge-insider-addons-store-discovered-84-extensions/
As we get closer to Microsoft being ready to publicly reveal their Chromium-based Microsoft Edge Insider browser, an Edge Insider Addons store has been found that contains 84 extensions that will be available for the new browser. [...]
https://www.bleepingcomputer.com/news/security/microsoft-edge-insider-addons-store-discovered-84-extensions/
BleepingComputer
Microsoft Edge Insider Addons Store Discovered, 84 Extensions
As we get closer to Microsoft being ready to publicly reveal their Chromium-based Microsoft Edge Insider browser, an Edge Insider Addons store has been found that contains 84 extensions that will be available for the new browser.
Beware of Bitcoin Investment Emails Pushing Clipboard Hijackers
A new malspam campaign is under that contains an attachment that when executed will install a Windows clipboard hijacker that attempts to steal Bitcoins from its victims. [...]
https://www.bleepingcomputer.com/news/security/beware-of-bitcoin-investment-emails-pushing-clipboard-hijackers/
A new malspam campaign is under that contains an attachment that when executed will install a Windows clipboard hijacker that attempts to steal Bitcoins from its victims. [...]
https://www.bleepingcomputer.com/news/security/beware-of-bitcoin-investment-emails-pushing-clipboard-hijackers/
BleepingComputer
Beware of Bitcoin Investment Emails Pushing Clipboard Hijackers
A new malspam campaign is under that contains an attachment that when executed will install a Windows clipboard hijacker that attempts to steal Bitcoins from its victims.
Pakistani Government Site Compromised, Logs Visitor Keystrokes
A Pakistani government site used as a tracking platform for passport applications has been compromised to deliver a ScanBox framework payload which captures the visitors' machine information and logs their keystrokes. [...]
https://www.bleepingcomputer.com/news/security/pakistani-government-site-compromised-logs-visitor-keystrokes/
A Pakistani government site used as a tracking platform for passport applications has been compromised to deliver a ScanBox framework payload which captures the visitors' machine information and logs their keystrokes. [...]
https://www.bleepingcomputer.com/news/security/pakistani-government-site-compromised-logs-visitor-keystrokes/
BleepingComputer
Pakistani Government Site Compromised, Logs Visitor Keystrokes
A Pakistani government site used as a tracking platform for passport applications has been compromised to deliver a ScanBox framework payload which captures the visitors' machine information and logs their keystrokes.
Malicious Javascript Active on FILA UK and Other Websites
Payment card data of thousands of online shoppers has been stolen at checkout via malicious JavaScript code cybercriminals embedded in seven websites and which continues to collect and deliver the information the crooks. [...]
https://www.bleepingcomputer.com/news/security/malicious-javascript-active-on-fila-uk-and-other-websites/
Payment card data of thousands of online shoppers has been stolen at checkout via malicious JavaScript code cybercriminals embedded in seven websites and which continues to collect and deliver the information the crooks. [...]
https://www.bleepingcomputer.com/news/security/malicious-javascript-active-on-fila-uk-and-other-websites/
BleepingComputer
Malicious Javascript Active on FILA UK and Other Websites
Payment card data of thousands of online shoppers has been stolen at checkout via malicious JavaScript code cybercriminals embedded in seven websites and which continues to collect and deliver the information the crooks.
Multi-Factor Auth Bypassed in Office 365 and G Suite IMAP Attacks
Massive IMAP-based password-spraying attacks successfully breached Microsoft Office 365 and G Suite accounts protected with multi-factor authentication (MFA) according to an analysis by Proofpoint. [...]
https://www.bleepingcomputer.com/news/security/multi-factor-auth-bypassed-in-office-365-and-g-suite-imap-attacks/
Massive IMAP-based password-spraying attacks successfully breached Microsoft Office 365 and G Suite accounts protected with multi-factor authentication (MFA) according to an analysis by Proofpoint. [...]
https://www.bleepingcomputer.com/news/security/multi-factor-auth-bypassed-in-office-365-and-g-suite-imap-attacks/
BleepingComputer
Multi-Factor Auth Bypassed in Office 365 and G Suite IMAP Attacks
Massive IMAP-based password-spraying attacks successfully breached Microsoft Office 365 and G Suite accounts, circumventing multi-factor authentication (MFA) according to an analysis by Proofpoint.
Unsecured Database Exposed 33 Million Job Profiles in China
An unsecured database containing the resumes and personal information of approximately 33 million people seeking jobs in China has been exposed online. [...]
https://www.bleepingcomputer.com/news/security/unsecured-database-exposed-33-million-job-profiles-in-china/
An unsecured database containing the resumes and personal information of approximately 33 million people seeking jobs in China has been exposed online. [...]
https://www.bleepingcomputer.com/news/security/unsecured-database-exposed-33-million-job-profiles-in-china/
BleepingComputer
Unsecured Database Exposed 33 Million Job Profiles in China
An unsecured database containing the resumes and personal information of approximately 33 million people seeking jobs in China has been exposed online.
Intel Fixes High Severity Vulnerabilities in Graphics Driver for Windows
Intel fixed 20 security vulnerabilities in the Intel Graphics Driver for Windows which would lead to escalation of privilege, denial of service, or information disclosure if exploited by attackers with local access to the system under attack. [...]
https://www.bleepingcomputer.com/news/security/intel-fixes-high-severity-vulnerabilities-in-graphics-driver-for-windows/
Intel fixed 20 security vulnerabilities in the Intel Graphics Driver for Windows which would lead to escalation of privilege, denial of service, or information disclosure if exploited by attackers with local access to the system under attack. [...]
https://www.bleepingcomputer.com/news/security/intel-fixes-high-severity-vulnerabilities-in-graphics-driver-for-windows/
BleepingComputer
Intel Fixes High Severity Vulnerabilities in Graphics Driver for Windows
Intel fixed 20 security vulnerabilities in the Intel Graphics Driver for Windows which would lead to escalation of privilege, denial of service, or information disclosure if exploited by attackers with local access to the system under attack.
Students Hack School System to Change Grades and Attendance
Like a modern day WarGames, students in Michigan have hacked into a school district's computer system and changed grades and attendance records. [...]
https://www.bleepingcomputer.com/news/security/students-hack-school-system-to-change-grades-and-attendance/
Like a modern day WarGames, students in Michigan have hacked into a school district's computer system and changed grades and attendance records. [...]
https://www.bleepingcomputer.com/news/security/students-hack-school-system-to-change-grades-and-attendance/
BleepingComputer
Students Hack School System to Change Grades and Attendance
Like a modern day WarGames, students in Michigan have hacked into a school district's computer system and changed grades and attendance records.
Google Now Lets G Suite Admins Disable Insecure Phone 2FA
Google added a new Admin console option for G Suite admins designed to help them disable telephony options as two-factor authentication (2FA) methods for G Suite accounts in their domain, preventing users from using SMS and voice codes when authenticating. [...]
https://www.bleepingcomputer.com/news/security/google-now-lets-g-suite-admins-disable-insecure-phone-2fa/
Google added a new Admin console option for G Suite admins designed to help them disable telephony options as two-factor authentication (2FA) methods for G Suite accounts in their domain, preventing users from using SMS and voice codes when authenticating. [...]
https://www.bleepingcomputer.com/news/security/google-now-lets-g-suite-admins-disable-insecure-phone-2fa/
BleepingComputer
Google Now Lets G Suite Admins Disable Insecure Phone 2FA
Google added a new Admin console option for G Suite admins designed to help them disable telephony options as two-factor authentication (2FA) methods for G Suite accounts in their domain, preventing users from using SMS and voice codes when authenticating.