JNEC.a Ransomware Spread by WinRAR Ace Exploit
A new ransomware called JNEC.a spreads through an exploit for the recently reported code execution ACE vulnerability in WinRAR. After encrypting a computer, it will generate a Gmail address that victims need to create in order to receive the file decryption key once they pay the ransom. [...]
https://www.bleepingcomputer.com/news/security/jneca-ransomware-spread-by-winrar-ace-exploit/
A new ransomware called JNEC.a spreads through an exploit for the recently reported code execution ACE vulnerability in WinRAR. After encrypting a computer, it will generate a Gmail address that victims need to create in order to receive the file decryption key once they pay the ransom. [...]
https://www.bleepingcomputer.com/news/security/jneca-ransomware-spread-by-winrar-ace-exploit/
BleepingComputer
JNEC.a Ransomware Spread by WinRAR Ace Exploit
A new ransomware called JNEC.a spreads through an exploit for the recently reported code execution ACE vulnerability in WinRAR. After encrypting a computer, it will generate a Gmail address that victims need to create in order to receive the file decryptionβ¦
New HTTPS Interception Tools Available from Cloudflare
Cloudfare announced the release of two new tools designed to make it simpler to check if TLS connections to a website have been intercepted, to detect vulnerable clients and potentially notify them when their security is compromised or degraded. [...]
https://www.bleepingcomputer.com/news/security/new-https-interception-tools-available-from-cloudflare/
Cloudfare announced the release of two new tools designed to make it simpler to check if TLS connections to a website have been intercepted, to detect vulnerable clients and potentially notify them when their security is compromised or degraded. [...]
https://www.bleepingcomputer.com/news/security/new-https-interception-tools-available-from-cloudflare/
BleepingComputer
New HTTPS Interception Tools Available from Cloudflare
Cloudfare announced the release of two new tools designed to make it simpler to check if TLS connections to a website have been intercepted, to detect vulnerable clients and potentially notify them when their security is compromised or degraded.
89% of EU Government Sites Infiltrated by Ad Tracking Scripts
Third-party advertising technology trackers from 112 companies were found on 89% of official government websites of EU member states by Cookiebot, a cookie and online tracking consent solution, after scanning 184,683 pages. [...]
https://www.bleepingcomputer.com/news/security/89-percent-of-eu-government-sites-infiltrated-by-ad-tracking-scripts/
Third-party advertising technology trackers from 112 companies were found on 89% of official government websites of EU member states by Cookiebot, a cookie and online tracking consent solution, after scanning 184,683 pages. [...]
https://www.bleepingcomputer.com/news/security/89-percent-of-eu-government-sites-infiltrated-by-ad-tracking-scripts/
BleepingComputer
89% of EU Government Sites Infiltrated by Ad Tracking Scripts
Third-party advertising technology trackers from 112 companies were found on 89% of official government websites of EU member states by Cookiebot, a cookie and online tracking consent solution, after scanning 184,683 pages.
Google+ Gives Final Warning to Backup Data Before It's Deleted
Google has started sending out a new round of emails warning users that they need to backup their Google+ data before April 2, 2019 or it will be deleted. [...]
https://www.bleepingcomputer.com/news/google/google-gives-final-warning-to-backup-data-before-its-deleted/
Google has started sending out a new round of emails warning users that they need to backup their Google+ data before April 2, 2019 or it will be deleted. [...]
https://www.bleepingcomputer.com/news/google/google-gives-final-warning-to-backup-data-before-its-deleted/
BleepingComputer
Google+ Gives Final Warning to Backup Data Before It's Deleted
Google has started sending out a new round of emails warning users that they need to backup their Google+ data before April 2, 2019 or it will be deleted.
Microsoft Edge Insider Closer to Release With New Installers
Over the past couple of days, a new installer for the Chromium-based Microsoft Edge Insider build was released, which may mean we are getting closer to the public preview. While we still cannot install the browser, we are getting closer and this article will discuss what we know about the setup and how it works. [...]
https://www.bleepingcomputer.com/news/security/microsoft-edge-insider-closer-to-release-with-new-installers/
Over the past couple of days, a new installer for the Chromium-based Microsoft Edge Insider build was released, which may mean we are getting closer to the public preview. While we still cannot install the browser, we are getting closer and this article will discuss what we know about the setup and how it works. [...]
https://www.bleepingcomputer.com/news/security/microsoft-edge-insider-closer-to-release-with-new-installers/
BleepingComputer
Microsoft Edge Insider Closer to Release With New Installers
Over the past couple of days, a new installer for the Chromium-based Microsoft Edge Insider build was released, which may mean we are getting closer to the public preview. While we still cannot install the browser, we are getting closer and this article willβ¦
Fraud, Cyber Attacks, and Phishing Follow Christchurch Attack
Opportunistic actors are seeking to turn a quick profit from the tragic events last week in Christchurch, New Zealand, by engaging in online scams or by spreading malware embedded in content related to the gruesome attack. [...]
https://www.bleepingcomputer.com/news/security/fraud-cyber-attacks-and-phishing-follow-christchurch-attack/
Opportunistic actors are seeking to turn a quick profit from the tragic events last week in Christchurch, New Zealand, by engaging in online scams or by spreading malware embedded in content related to the gruesome attack. [...]
https://www.bleepingcomputer.com/news/security/fraud-cyber-attacks-and-phishing-follow-christchurch-attack/
BleepingComputer
Fraud, Cyber Attacks, and Phishing Follow Christchurch Attack
Opportunistic actors are seeking to turn a quick profit from the tragic events last week in Christchurch, New Zealand, by engaging in online scams or by spreading malware embedded in content related to the gruesome attack.
Assessing Internal Network with JavaScript, Despite Same-Origin Policy
Researchers are warning about a hacking technique that enables attacks on the local network using JavaScript on a public website. Using the victim's browser as a proxy, the code can reach internal hosts and do reconnaissance activity or even compromise vulnerable services. [...]
https://www.bleepingcomputer.com/news/security/assessing-internal-network-with-javascript-despite-same-origin-policy/
Researchers are warning about a hacking technique that enables attacks on the local network using JavaScript on a public website. Using the victim's browser as a proxy, the code can reach internal hosts and do reconnaissance activity or even compromise vulnerable services. [...]
https://www.bleepingcomputer.com/news/security/assessing-internal-network-with-javascript-despite-same-origin-policy/
BleepingComputer
Assessing Internal Network with JavaScript, Despite Same-Origin Policy
Researchers are warning about a hacking technique that enables attacks on the local network using JavaScript on a public website. Using the victim's browser as a proxy, the code can reach internal hosts and do reconnaissance activity or even compromise vulnerableβ¦
LockerGoga Ransomware Sends Norsk Hydro Into Manual Mode
One of the largest aluminum producers in the world, Nork Hydro, has been forced to switch to manual operations due to a cyber attack that is allegedly pushing LockerGoga ransomware. [...]
https://www.bleepingcomputer.com/news/security/lockergoga-ransomware-sends-norsk-hydro-into-manual-mode/
One of the largest aluminum producers in the world, Nork Hydro, has been forced to switch to manual operations due to a cyber attack that is allegedly pushing LockerGoga ransomware. [...]
https://www.bleepingcomputer.com/news/security/lockergoga-ransomware-sends-norsk-hydro-into-manual-mode/
BleepingComputer
LockerGoga Ransomware Sends Norsk Hydro Into Manual Mode
One of the largest aluminum producers in the world, Norsk Hydro, has been forced to switch to partial manual operations due to a cyber attack that is allegedly pushing LockerGoga ransomware.
Business Email Compromise (BEC) Attacks Moving to Mobile
As text messaging has become a common form of communication within a business, Business Email Compromise (BEC) scammers have started to go mobile by utilizing SMS messaging to direct their targets. [...]
https://www.bleepingcomputer.com/news/security/business-email-compromise-bec-attacks-moving-to-mobile/
As text messaging has become a common form of communication within a business, Business Email Compromise (BEC) scammers have started to go mobile by utilizing SMS messaging to direct their targets. [...]
https://www.bleepingcomputer.com/news/security/business-email-compromise-bec-attacks-moving-to-mobile/
BleepingComputer
Business Email Compromise (BEC) Attacks Moving to Mobile
As text messaging has become a common form of communication within a business, Business Email Compromise (BEC) scammers have started to go mobile by utilizing SMS messaging to direct their targets.
80% of the Top Exploited Vulnerabilities Targeted Microsoft in 2018
Eight out of the top ten vulnerabilities exploited by cybercriminals as part of phishing, exploit kits, or RAT attacks during 2018 targeted Microsoft's software products, continuing a trend started in 2017. [...]
https://www.bleepingcomputer.com/news/security/80-percent-of-the-top-exploited-vulnerabilities-targeted-microsoft-in-2018/
Eight out of the top ten vulnerabilities exploited by cybercriminals as part of phishing, exploit kits, or RAT attacks during 2018 targeted Microsoft's software products, continuing a trend started in 2017. [...]
https://www.bleepingcomputer.com/news/security/80-percent-of-the-top-exploited-vulnerabilities-targeted-microsoft-in-2018/
BleepingComputer
80% of the Top Exploited Vulnerabilities Targeted Microsoft in 2018
Eight out of the top ten vulnerabilities exploited by cybercriminals as part of phishing, exploit kits, or RAT attacks during 2018 targeted Microsoft's software products, continuing a trend started in 2017.
Microsoft Antimalware Crashing With Error 0x800106ba on Windows 7 & 8
According to multiple user reports, the Windows Defender Antivirus, Microsoft Endpoint Protection, and Microsoft Security Essentials antimalware solutions are crashing randomly with a 0x800106ba error code on computers running Windows 7, Windows 8, and Windows Server 2003, 2008 and 2012. [...]
https://www.bleepingcomputer.com/news/security/microsoft-antimalware-crashing-with-error-0x800106ba-on-windows-7-and-8/
According to multiple user reports, the Windows Defender Antivirus, Microsoft Endpoint Protection, and Microsoft Security Essentials antimalware solutions are crashing randomly with a 0x800106ba error code on computers running Windows 7, Windows 8, and Windows Server 2003, 2008 and 2012. [...]
https://www.bleepingcomputer.com/news/security/microsoft-antimalware-crashing-with-error-0x800106ba-on-windows-7-and-8/
BleepingComputer
Microsoft Antimalware Crashing With Error 0x800106ba on Windows 7 & 8
According to multiple user reports, the Windows Defender Antivirus, Microsoft Endpoint Protection, and Microsoft Security Essentials antimalware solutions are crashing randomly with a 0x800106ba error code on computers running Windows 7, Windows 8.1, andβ¦
Windows 10 Insider Preview Build 18361 (19H1) Still Has Some Bugs to Fix
Microsoft has released Windows 10 Insider Preview Build 18361 (19H1) to Insiders in the Fast ring. As we get closer to its final release in April, these builds will mostly be bug fixes. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-preview-build-18361-19h1-still-has-some-bugs-to-fix/
Microsoft has released Windows 10 Insider Preview Build 18361 (19H1) to Insiders in the Fast ring. As we get closer to its final release in April, these builds will mostly be bug fixes. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-preview-build-18361-19h1-still-has-some-bugs-to-fix/
BleepingComputer
Windows 10 Insider Preview Build 18361 (19H1) Still Has Some Bugs to Fix
Microsoft has released Windows 10 Insider Preview Build 18361 (19H1) to Insiders in the Fast ring. As we get closer to its final release in April, these builds will mostly be bug fixes.
DDoS-for-Hire Crackdown Leads to 85% Drop in Attack Sizes
The average size of distributed denial-of-service (DDoS) attacks decreased by 85% on a YoY basis during Q4 2018 after the FBI seized the domains of 15 of the world's biggest "booters" (DDoS-for-hire websites). [...]
https://www.bleepingcomputer.com/news/security/ddos-for-hire-crackdown-leads-to-85-percent-drop-in-attack-sizes/
The average size of distributed denial-of-service (DDoS) attacks decreased by 85% on a YoY basis during Q4 2018 after the FBI seized the domains of 15 of the world's biggest "booters" (DDoS-for-hire websites). [...]
https://www.bleepingcomputer.com/news/security/ddos-for-hire-crackdown-leads-to-85-percent-drop-in-attack-sizes/
BleepingComputer
DDoS-for-Hire Crackdown Leads to 85% Drop in Attack Sizes
The average size of distributed denial-of-service (DDoS) attacks decreased by 85% on a YoY basis during Q4 2018 after the FBI seized the domains of 15 of the world's biggest "booters" (DDoS-for-hire websites).
Netflix and AMEX Customers Actively Targeted by Phishing Campaigns
Two ongoing phishing campaigns are actively targeting Netflix and American Express customers to steal credit card and social security information as discovered by the Office 365 Threat Research team during the weekend. [...]
https://www.bleepingcomputer.com/news/security/netflix-and-amex-customers-actively-targeted-by-phishing-campaigns/
Two ongoing phishing campaigns are actively targeting Netflix and American Express customers to steal credit card and social security information as discovered by the Office 365 Threat Research team during the weekend. [...]
https://www.bleepingcomputer.com/news/security/netflix-and-amex-customers-actively-targeted-by-phishing-campaigns/
BleepingComputer
Netflix and AMEX Customers Actively Targeted by Phishing Campaigns
Two ongoing phishing campaigns are actively targeting Netflix and American Express customers to steal credit card and social security information as discovered by the Office 365 Threat Research team during the weekend.
Heeere's Clippy! He's Back, but Only for Microsoft Teams.
Microsoft just revived the heavily criticized and parodied Clippy, the default Microsoft Office assistant for 4 years β yes, we thought it was longer too β transforming it into an open source Microsoft Teams app designed to help you add various Clippy animated emotes within messages. [...]
https://www.bleepingcomputer.com/news/microsoft/heeeres-clippy-hes-back-but-only-for-microsoft-teams/
Microsoft just revived the heavily criticized and parodied Clippy, the default Microsoft Office assistant for 4 years β yes, we thought it was longer too β transforming it into an open source Microsoft Teams app designed to help you add various Clippy animated emotes within messages. [...]
https://www.bleepingcomputer.com/news/microsoft/heeeres-clippy-hes-back-but-only-for-microsoft-teams/
BleepingComputer
Heeere's Clippy! He's Back, but Only for Microsoft Teams.
Microsoft just revived the heavily criticized and parodied Clippy, the default Microsoft Office assistant for 4 years β yes, we thought it was longer too β transforming it into an open source Microsoft Teams app designed to help you add various Clippy animatedβ¦
KDE Connect Kicked From Google Play, Returns Less the App It Was
Google today temporarily removed KDE Connect from Play store because it violated a newly-imposed policy for SMS and Call Logs permissions, which the companion app needs in order to offer a full-featured experience. [...]
https://www.bleepingcomputer.com/news/mobile/kde-connect-kicked-from-google-play-returns-less-the-app-it-was/
Google today temporarily removed KDE Connect from Play store because it violated a newly-imposed policy for SMS and Call Logs permissions, which the companion app needs in order to offer a full-featured experience. [...]
https://www.bleepingcomputer.com/news/mobile/kde-connect-kicked-from-google-play-returns-less-the-app-it-was/
BleepingComputer
KDE Connect Kicked From Google Play, Returns Less the App It Was
Google today temporarily removed KDE Connect from Play store because it violated a newly-imposed policy for SMS and Call Logs permissions, which the companion app needs in order to offer a full-featured experience.
Fake eBay Ad in Google Search Led to Tech Support Scams
A fake advertisement in the Google search results has been running for the past week that looked just like a legitimate ad for eBay. When you clicked on it, though, instead of being brought to the auction site you would be shown an incredibly annoying tech support scam that would try to lock up your browser. [...]
https://www.bleepingcomputer.com/news/security/fake-ebay-ad-in-google-search-led-to-tech-support-scams/
A fake advertisement in the Google search results has been running for the past week that looked just like a legitimate ad for eBay. When you clicked on it, though, instead of being brought to the auction site you would be shown an incredibly annoying tech support scam that would try to lock up your browser. [...]
https://www.bleepingcomputer.com/news/security/fake-ebay-ad-in-google-search-led-to-tech-support-scams/
BleepingComputer
Fake eBay Ad in Google Search Led to Tech Support Scams
A fake advertisement in the Google search results has been running for the past week that looked just like a legitimate ad for eBay. When you clicked on it, though, instead of being brought to the auction site you would be shown an incredibly annoying techβ¦
Google Photos Bug Exposed the Location & Time of Your Pictures
A vulnerability in the web version of Google Photos allowed websites to learn a user's location history based on the images they stored in the account. [...]
https://www.bleepingcomputer.com/news/security/google-photos-bug-exposed-the-location-and-time-of-your-pictures/
A vulnerability in the web version of Google Photos allowed websites to learn a user's location history based on the images they stored in the account. [...]
https://www.bleepingcomputer.com/news/security/google-photos-bug-exposed-the-location-and-time-of-your-pictures/
BleepingComputer
Google Photos Bug Exposed the Location & Time of Your Pictures
A vulnerability in the web version of Google Photos allowed websites to learn a user's location history based on the images they stored in the account.
Payment Card Thieves Slip into MyPillow and AmeriSleep Bedding Sites
One of the biggest threats facing online retailers are malicious scripts that attackers add to checkout pages in order to steal customer payment information. A new report released today details how the bedding sites MyPillow.com and Amerisleep.com were targeted with these types of of attacks. [...]
https://www.bleepingcomputer.com/news/security/payment-card-thieves-slip-into-mypillow-and-amerisleep-bedding-sites/
One of the biggest threats facing online retailers are malicious scripts that attackers add to checkout pages in order to steal customer payment information. A new report released today details how the bedding sites MyPillow.com and Amerisleep.com were targeted with these types of of attacks. [...]
https://www.bleepingcomputer.com/news/security/payment-card-thieves-slip-into-mypillow-and-amerisleep-bedding-sites/
BleepingComputer
Payment Card Thieves Slip into MyPillow and AmeriSleep Bedding Sites
One of the biggest threats facing online retailers are malicious scripts that attackers add to checkout pages in order to steal customer payment information. A new report released today details how the bedding sites MyPillow.com and Amerisleep.com were targetedβ¦
Google Fined $1.7 Billion for Anti-Competitive Practices in Online Advertising
Google was fined β¬1.494.459.000 ($1.698.064.094) or 1.29% of Google's 2018 turnover for abusing its market dominance to block rival advertising companies from displaying search ads on publisher search results pages says a European Commission statement published today. [...]
https://www.bleepingcomputer.com/news/security/google-fined-17-billion-for-anti-competitive-practices-in-online-advertising/
Google was fined β¬1.494.459.000 ($1.698.064.094) or 1.29% of Google's 2018 turnover for abusing its market dominance to block rival advertising companies from displaying search ads on publisher search results pages says a European Commission statement published today. [...]
https://www.bleepingcomputer.com/news/security/google-fined-17-billion-for-anti-competitive-practices-in-online-advertising/
BleepingComputer
Google Fined $1.7 Billion for Anti-Competitive Practices in Online Advertising
Google was fined β¬1.494.459.000 ($1.698.064.094) or 1.29% of Google's 2018 turnover for abusing its market dominance to block rival advertising companies from displaying search ads on publisher search results pages says a European Commission statement publishedβ¦
Microsoft Releases Windows 10 Build 18860 (20H1) With Swiftkey Enhancements
Microsoft has released Windows 10 Insider Preview Build 18860 for Insiders in the Skip Ahead ring. This 20H1 build is mostly bug fixes, but does add support for 39 languages in Switfkey. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-build-18860-20h1-with-swiftkey-enhancements/
Microsoft has released Windows 10 Insider Preview Build 18860 for Insiders in the Skip Ahead ring. This 20H1 build is mostly bug fixes, but does add support for 39 languages in Switfkey. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-build-18860-20h1-with-swiftkey-enhancements/
BleepingComputer
Microsoft Releases Windows 10 Build 18860 (20H1) With Swiftkey Enhancements
Microsoft has released Windows 10 Insider Preview Build 18860 for Insiders in the Skip Ahead ring. This 20H1 build is mostly bug fixes, but does add support for 39 languages in Switfkey.