Microsoft's April 2019 Updates are Causing Windows to Freeze
Conflicts between antivirus software and the recent Microsoft April 2019 Patch Tuesday updates are causing Windows 7, Windows 8.1, Windows Server 2012, and Windows Server 2012 R2 to freeze, be unable to boot, or hang on installing updates. [...]
https://www.bleepingcomputer.com/news/microsoft/microsofts-april-2019-updates-are-causing-windows-to-freeze/
Conflicts between antivirus software and the recent Microsoft April 2019 Patch Tuesday updates are causing Windows 7, Windows 8.1, Windows Server 2012, and Windows Server 2012 R2 to freeze, be unable to boot, or hang on installing updates. [...]
https://www.bleepingcomputer.com/news/microsoft/microsofts-april-2019-updates-are-causing-windows-to-freeze/
BleepingComputer
Microsoft's April 2019 Updates are Causing Windows to Freeze
Conflicts between antivirus software and the recent Microsoft April 2019 Patch Tuesday updates are causing Windows 7, Windows 8.1, Windows Server 2012, and Windows Server 2012 R2 to freeze, be unable to boot, or hang on installing updates.
Hyperlink Auditing Pings Being Used to Perform DDoS Attacks
Researchers have found that the HTML feature called hyperlink auditing, or pings, is being used to perform DDoS attacks against various sites. This feature is normally used by sites to track link clicks, but is now found to be abused by attackers to send a massive amount of web requests to sites in order to take them offline. [...]
https://www.bleepingcomputer.com/news/security/hyperlink-auditing-pings-being-used-to-perform-ddos-attacks/
Researchers have found that the HTML feature called hyperlink auditing, or pings, is being used to perform DDoS attacks against various sites. This feature is normally used by sites to track link clicks, but is now found to be abused by attackers to send a massive amount of web requests to sites in order to take them offline. [...]
https://www.bleepingcomputer.com/news/security/hyperlink-auditing-pings-being-used-to-perform-ddos-attacks/
BleepingComputer
Hyperlink Auditing Pings Being Used to Perform DDoS Attacks
Researchers have found that the HTML feature called hyperlink auditing, or pings, is being used to perform DDoS attacks against various sites. This feature is normally used by sites to track link clicks, but is now found to be abused by attackers to sendβ¦
Tax Fraud and ID Theft Services Getting Cheaper on the Dark Web
Financial and social security identity theft services are becoming more and more affordable every year on the dark web, leading to a drop in the skill level required for tax fraud schemes. [...]
https://www.bleepingcomputer.com/news/security/tax-fraud-and-id-theft-services-getting-cheaper-on-the-dark-web/
Financial and social security identity theft services are becoming more and more affordable every year on the dark web, leading to a drop in the skill level required for tax fraud schemes. [...]
https://www.bleepingcomputer.com/news/security/tax-fraud-and-id-theft-services-getting-cheaper-on-the-dark-web/
BleepingComputer
Tax Fraud and ID Theft Services Getting Cheaper on the Dark Web
Financial and social security identity theft services are becoming more and more affordable every year on the dark web, leading to a drop in the skill level required for tax fraud schemes.
New Microsoft Edge Favorites Bar Gets Better Display Options
Microsoft is working hard to differentiate its new Chromium-based Edge browser from Google Chrome by adding new features that are specific to Windows and the needs of its users. Such is the case with new Edge options that will allow more control of how the Favorites bar is displayed. [...]
https://www.bleepingcomputer.com/news/microsoft/new-microsoft-edge-favorites-bar-gets-better-display-options/
Microsoft is working hard to differentiate its new Chromium-based Edge browser from Google Chrome by adding new features that are specific to Windows and the needs of its users. Such is the case with new Edge options that will allow more control of how the Favorites bar is displayed. [...]
https://www.bleepingcomputer.com/news/microsoft/new-microsoft-edge-favorites-bar-gets-better-display-options/
BleepingComputer
New Microsoft Edge Favorites Bar Gets Better Display Options
Microsoft is working hard to differentiate its new Chromium-based Edge browser from Google Chrome by adding new features that are specific to Windows and the needs of its users. Such is the case with new Edge options that will allow more control of how theβ¦
Home Office Leaks the Emails of Hundreds of EU Citizens
The UK Home Office has sent an e-mail apology to 240 EU citizens who requested to be considered for settled status in the UK as part of the EU Settlement Scheme program after accidentally leaking their e-mail addresses because of a so-called "administrative error." [...]
https://www.bleepingcomputer.com/news/security/home-office-leaks-the-emails-of-hundreds-of-eu-citizens/
The UK Home Office has sent an e-mail apology to 240 EU citizens who requested to be considered for settled status in the UK as part of the EU Settlement Scheme program after accidentally leaking their e-mail addresses because of a so-called "administrative error." [...]
https://www.bleepingcomputer.com/news/security/home-office-leaks-the-emails-of-hundreds-of-eu-citizens/
BleepingComputer
Home Office Leaks the Emails of Hundreds of EU Citizens
The UK Home Office has sent an e-mail apology to 240 EU citizens who requested to be considered for settled status in the UK as part of the EU Settlement Scheme program after accidentally leaking their e-mail addresses because of a so-called "administrativeβ¦
Mozilla Firefox For ARM64 Beta Now Available
Today, Mozilla has promoted the ARM64-native build of Firefox to its beta channel and anyone with an ARM-powered Windows 10 device can test it. [...]
https://www.bleepingcomputer.com/news/software/mozilla-firefox-for-arm64-beta-now-available/
Today, Mozilla has promoted the ARM64-native build of Firefox to its beta channel and anyone with an ARM-powered Windows 10 device can test it. [...]
https://www.bleepingcomputer.com/news/software/mozilla-firefox-for-arm64-beta-now-available/
BleepingComputer
Mozilla Firefox For ARM64 Beta Now Available
Today, Mozilla has promoted the ARM64-native build of Firefox to its beta channel and anyone with an ARM-powered Windows 10 device can test it.
Hacked Uniden Commercial Site Serves Emotet Trojan
Uniden's website for commercial security products has been hacked to host a Word document that delivers what appears to be a garden variety of the Emotet trojan, also known as Geodo and Heodo. [...]
https://www.bleepingcomputer.com/news/security/hacked-uniden-commercial-site-serves-emotet-trojan/
Uniden's website for commercial security products has been hacked to host a Word document that delivers what appears to be a garden variety of the Emotet trojan, also known as Geodo and Heodo. [...]
https://www.bleepingcomputer.com/news/security/hacked-uniden-commercial-site-serves-emotet-trojan/
BleepingComputer
Hacked Uniden Commercial Site Serves Emotet Trojan
Uniden's website for commercial security products has been hacked to host a Word document that delivers what appears to be a garden variety of the Emotet trojan, also known as Geodo and Heodo.
Sextortion Scammers Change Tactics to Bypass Spam Protection
Low paydays in the first trimester of the year have prompted scammers in the sextortion email business to switch to new tricks to restore the revenue stream of the not too distant past. [...]
https://www.bleepingcomputer.com/news/security/sextortion-scammers-change-tactics-to-bypass-spam-protection/
Low paydays in the first trimester of the year have prompted scammers in the sextortion email business to switch to new tricks to restore the revenue stream of the not too distant past. [...]
https://www.bleepingcomputer.com/news/security/sextortion-scammers-change-tactics-to-bypass-spam-protection/
BleepingComputer
Sextortion Scammers Change Tactics to Bypass Spam Protection
Low paydays in the first trimester of the year have prompted scammers in the sextortion email business to switch to new tricks to restore the revenue stream of the not too distant past.
Thousands of WordPress Sites Exposed by Yellow Pencil Plugin Flaw
The Yellow Pencil Visual Theme Customizer plugin was removed on Monday from the WordPress.org repository because of a privilege escalation bug which would have allowed potential attackers to update arbitrary options on vulnerable installations. [...]
https://www.bleepingcomputer.com/news/security/thousands-of-wordpress-sites-exposed-by-yellow-pencil-plugin-flaw/
The Yellow Pencil Visual Theme Customizer plugin was removed on Monday from the WordPress.org repository because of a privilege escalation bug which would have allowed potential attackers to update arbitrary options on vulnerable installations. [...]
https://www.bleepingcomputer.com/news/security/thousands-of-wordpress-sites-exposed-by-yellow-pencil-plugin-flaw/
BleepingComputer
Thousands of WordPress Sites Exposed by Yellow Pencil Plugin Flaw
The Yellow Pencil Visual Theme Customizer plugin was removed on Monday from the WordPress.org repository because of a privilege escalation bug which would have allowed potential attackers to update arbitrary options on vulnerable installations.
Malware Creates Cryptominer Botnet Using EternalBlue and Mimikatz
A malware campaign is actively attacking Asian targets using the EternalBlue exploit and taking advantage of Living off the Land obfuscated PowerShell-based scripts to drop Trojans and a Monero coinminer on compromised machines. [...]
https://www.bleepingcomputer.com/news/security/malware-creates-cryptominer-botnet-using-eternalblue-and-mimikatz/
A malware campaign is actively attacking Asian targets using the EternalBlue exploit and taking advantage of Living off the Land obfuscated PowerShell-based scripts to drop Trojans and a Monero coinminer on compromised machines. [...]
https://www.bleepingcomputer.com/news/security/malware-creates-cryptominer-botnet-using-eternalblue-and-mimikatz/
BleepingComputer
Malware Creates Cryptominer Botnet Using EternalBlue and Mimikatz
A malware campaign is actively attacking Asian targets using the EternalBlue exploit and taking advantage of Living off the Land obfuscated PowerShell-based scripts to drop Trojans and a Monero coinminer on compromised machines.
Bill Introduced to Protect the Privacy Rights of Americans
On the heels of an abundance of data breach and data leak incidents, Senator Edward J. Markey (D-Mass.) today introduced the Privacy Bill of Rights Act, a new bill designed to protect the individual and collective privacy rights of American consumers. [...]
https://www.bleepingcomputer.com/news/security/bill-introduced-to-protect-the-privacy-rights-of-americans/
On the heels of an abundance of data breach and data leak incidents, Senator Edward J. Markey (D-Mass.) today introduced the Privacy Bill of Rights Act, a new bill designed to protect the individual and collective privacy rights of American consumers. [...]
https://www.bleepingcomputer.com/news/security/bill-introduced-to-protect-the-privacy-rights-of-americans/
BleepingComputer
Bill Introduced to Protect the Privacy Rights of Americans
On the heels of an abundance of data breach and data leak incidents, Senator Edward J. Markey (D-Mass.) today introduced the Privacy Bill of Rights Act, a new bill designed to protect the individual and collective privacy rights of American consumers.
Windows is Slower After April 2019 Updates According to Users
Users are reporting that after installing this week's Microsoft's April 2019 Patch Tuesday updates, Windows has suddenly become slow and programs are taking forever to open. [...]
https://www.bleepingcomputer.com/news/security/windows-is-slower-after-april-2019-updates-according-to-users/
Users are reporting that after installing this week's Microsoft's April 2019 Patch Tuesday updates, Windows has suddenly become slow and programs are taking forever to open. [...]
https://www.bleepingcomputer.com/news/security/windows-is-slower-after-april-2019-updates-according-to-users/
BleepingComputer
Windows is Slower After April 2019 Updates According to Users
Users are reporting that after installing this week's Microsoft's April 2019 Patch Tuesday updates, Windows has suddenly become slow and programs are taking forever to open.
The Week in Ransomware - April 12th 2019 - Targeting Reveton
Been a busy week with a few decryptors released, lots of variants of existing ransomware released, and a few in-developments ones discovered. The biggest news was the announcement that the UK has jailed one of the distributors of the Reveton ransomware. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-april-12th-2019-targeting-reveton/
Been a busy week with a few decryptors released, lots of variants of existing ransomware released, and a few in-developments ones discovered. The biggest news was the announcement that the UK has jailed one of the distributors of the Reveton ransomware. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-april-12th-2019-targeting-reveton/
BleepingComputer
The Week in Ransomware - April 12th 2019 - Targeting Reveton
Been a busy week with a few decryptors released, lots of variants of existing ransomware released, and a few in-developments ones discovered. The biggest news was the announcement that the UK has jailed one of the distributors of the Reveton ransomware.
RobbinHood Ransomware Claims It's Protecting Your Privacy
A new ransomware is in play called RobbinHood that is targeting entire networks and then encrypting all computers that they can gain access to. They then request a certain amount of bitcoins to decrypt a single computer or a larger amount to decrypt the entire network. [...]
https://www.bleepingcomputer.com/news/security/robbinhood-ransomware-claims-its-protecting-your-privacy/
A new ransomware is in play called RobbinHood that is targeting entire networks and then encrypting all computers that they can gain access to. They then request a certain amount of bitcoins to decrypt a single computer or a larger amount to decrypt the entire network. [...]
https://www.bleepingcomputer.com/news/security/robbinhood-ransomware-claims-its-protecting-your-privacy/
BleepingComputer
RobbinHood Ransomware Claims It's Protecting Your Privacy
A new ransomware is in play called RobbinHood that is targeting entire networks and then encrypting all computers that they can gain access to. They then request a certain amount of bitcoins to decrypt a single computer or a larger amount to decrypt the entireβ¦
The Nasty List Phishing Scam is Sweeping Through Instagram
A new phishing scam called the "The Nasty List" is sweeping through Instagram and is targeting victim's login credentials. If a user falls victim, the hackers will utilize their accounts to further promote the phishing scam. [...]
https://www.bleepingcomputer.com/news/security/the-nasty-list-phishing-scam-is-sweeping-through-instagram/
A new phishing scam called the "The Nasty List" is sweeping through Instagram and is targeting victim's login credentials. If a user falls victim, the hackers will utilize their accounts to further promote the phishing scam. [...]
https://www.bleepingcomputer.com/news/security/the-nasty-list-phishing-scam-is-sweeping-through-instagram/
BleepingComputer
The Nasty List Phishing Scam is Sweeping Through Instagram
A new phishing scam called the "The Nasty List" is sweeping through Instagram and is targeting victim's login credentials. If a user falls victim, the hackers will utilize their accounts to further promote the phishing scam.
Multiple Enterprise VPN Apps Allow Attackers to Bypass Authentication
Enterprise VPN applications developed by Palo Alto Networks, Pulse Secure, Cisco, and F5 Networks are storing authentication and session cookies insecurely according to a DHS/CISA alert and a vulnerability note issued by CERT/CC, potentially allowing attackers to bypass authentication. [...]
https://www.bleepingcomputer.com/news/security/multiple-enterprise-vpn-apps-allow-attackers-to-bypass-authentication/
Enterprise VPN applications developed by Palo Alto Networks, Pulse Secure, Cisco, and F5 Networks are storing authentication and session cookies insecurely according to a DHS/CISA alert and a vulnerability note issued by CERT/CC, potentially allowing attackers to bypass authentication. [...]
https://www.bleepingcomputer.com/news/security/multiple-enterprise-vpn-apps-allow-attackers-to-bypass-authentication/
BleepingComputer
Multiple Enterprise VPN Apps Allow Attackers to Bypass Authentication
Enterprise VPN applications developed by Palo Alto Networks, Pulse Secure, Cisco, and F5 Networks are storing authentication and session cookies insecurely according to a DHS/CISA alert and a vulnerability note issued by CERT/CC, potentially allowing attackersβ¦
Patched Windows Zero-Day Provided Full Control Over Vulnerable Systems
A Windows zero-day vulnerability which got patched by Microsoft as part of the company's April 2019 Patch Tuesday together with 73 other flaws could allow potential attackers to take full control of vulnerable systems. [...]
https://www.bleepingcomputer.com/news/security/patched-windows-zero-day-provided-full-control-over-vulnerable-systems/
A Windows zero-day vulnerability which got patched by Microsoft as part of the company's April 2019 Patch Tuesday together with 73 other flaws could allow potential attackers to take full control of vulnerable systems. [...]
https://www.bleepingcomputer.com/news/security/patched-windows-zero-day-provided-full-control-over-vulnerable-systems/
BleepingComputer
Patched Windows Zero-Day Provided Full Control Over Vulnerable Systems
A Windows zero-day vulnerability which got patched by Microsoft as part of the company's April 2019 Patch Tuesday together with 73 other flaws could allow potential attackers to take full control of vulnerable systems.
Important Severity Remote Code Execution Vulnerability Patched in Tomcat
A remote code execution flaw impacting Apache Tomcat was fixed by the Apache Software Foundation to prevent potential remote attackers to exploit vulnerable servers and take control of affected systems. [...]
https://www.bleepingcomputer.com/news/security/important-severity-remote-code-execution-vulnerability-patched-in-tomcat/
A remote code execution flaw impacting Apache Tomcat was fixed by the Apache Software Foundation to prevent potential remote attackers to exploit vulnerable servers and take control of affected systems. [...]
https://www.bleepingcomputer.com/news/security/important-severity-remote-code-execution-vulnerability-patched-in-tomcat/
BleepingComputer
Important Severity Remote Code Execution Vulnerability Patched in Tomcat
A remote code execution flaw impacting Apache Tomcat was fixed by the Apache Software Foundation to prevent potential remote attackers to exploit vulnerable servers and take control of affected systems.
Hackers Publish AAF Member Data, Claim It's 'FBI Watchlist'
After previously releasing the data of three FBINAA charters and leaking the personal information of thousands of FBI agents, a hacking group published what appears to be the information of tens of thousands of American Advertising Federation members claiming it's an FBI watchlist. [...]
https://www.bleepingcomputer.com/news/security/hackers-publish-aaf-member-data-claim-its-fbi-watchlist/
After previously releasing the data of three FBINAA charters and leaking the personal information of thousands of FBI agents, a hacking group published what appears to be the information of tens of thousands of American Advertising Federation members claiming it's an FBI watchlist. [...]
https://www.bleepingcomputer.com/news/security/hackers-publish-aaf-member-data-claim-its-fbi-watchlist/
BleepingComputer
Hackers Publish AAF Member Data, Claim It's 'FBI Watchlist'
After previously releasing the data of three FBINAA charters and leaking the personal information of thousands of FBI agents, a hacking group published what appears to be the information of tens of thousands of American Advertising Federation members claimingβ¦
Mobile VPNs Promoted by 'You Are Infected' or 'Hacked' Ads
Mobile VPN affiliates are displaying scam ads that state your mobile device is infected, has been hacked, or is being tracked in order to scare visitors into purchasing a subscription. [...]
https://www.bleepingcomputer.com/news/security/mobile-vpns-promoted-by-you-are-infected-or-hacked-ads/
Mobile VPN affiliates are displaying scam ads that state your mobile device is infected, has been hacked, or is being tracked in order to scare visitors into purchasing a subscription. [...]
https://www.bleepingcomputer.com/news/security/mobile-vpns-promoted-by-you-are-infected-or-hacked-ads/
BleepingComputer
Mobile VPNs Promoted by 'You Are Infected' or 'Hacked' Ads
Mobile VPN affiliates are displaying scam ads that state your mobile device is infected, has been hacked, or is being tracked in order to scare visitors into purchasing a subscription.
New Malicious Medical DICOM Image Files Cause HIPAA Headache
Malicious DICOM files can be crafted to contain both CT and MRI scan imaging data and potentially dangerous PE executables, a process which can be used by threat actors to hide malware inside seemingly harmless files. [...]
https://www.bleepingcomputer.com/news/security/new-malicious-medical-dicom-image-files-cause-hipaa-headache/
Malicious DICOM files can be crafted to contain both CT and MRI scan imaging data and potentially dangerous PE executables, a process which can be used by threat actors to hide malware inside seemingly harmless files. [...]
https://www.bleepingcomputer.com/news/security/new-malicious-medical-dicom-image-files-cause-hipaa-headache/
BleepingComputer
New Malicious Medical DICOM Image Files Cause HIPAA Headache
Malicious DICOM files can be crafted to contain both CT and MRI scan imaging data and potentially dangerous PE executables, a process which can be used by threat actors to hide malware inside seemingly harmless files.