Attackers Wiping GitHub and GitLab Repos, Leave Ransom Notes
Attackers are targeting GitHub, GitLab, and Bitbucket users, wiping code and commits from multiple repositories according to reports and leaving behind only a ransom note and a lot of questions. [...]
https://www.bleepingcomputer.com/news/security/attackers-wiping-github-and-gitlab-repos-leave-ransom-notes/
Attackers are targeting GitHub, GitLab, and Bitbucket users, wiping code and commits from multiple repositories according to reports and leaving behind only a ransom note and a lot of questions. [...]
https://www.bleepingcomputer.com/news/security/attackers-wiping-github-and-gitlab-repos-leave-ransom-notes/
BleepingComputer
Attackers Wiping GitHub and GitLab Repos, Leave Ransom Notes
Attackers are targeting GitHub, GitLab, and Bitbucket users, wiping code and commits from multiple repositories according to reports and leaving behind only a ransom note and a lot of questions.
The Week in Ransomware - May 3rd 2019 - Hello Dear Friend!
This week was an interesting week as we saw more ransomware being released that is targeting the enterprise, such as the Sodinokib Ransomware and MegaCortex. We also have good news as a decryptor for the MegaLocker and NamPoHyu Virus Ransomware were released. Serves them right for calling us devils! [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-may-3rd-2019-hello-dear-friend/
This week was an interesting week as we saw more ransomware being released that is targeting the enterprise, such as the Sodinokib Ransomware and MegaCortex. We also have good news as a decryptor for the MegaLocker and NamPoHyu Virus Ransomware were released. Serves them right for calling us devils! [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-may-3rd-2019-hello-dear-friend/
BleepingComputer
The Week in Ransomware - May 3rd 2019 - Hello Dear Friend!
This week was an interesting week as we saw more ransomware being released that is targeting the enterprise, such as the Sodinokib Ransomware and MegaCortex. We also have good news as a decryptor for the MegaLocker and NamPoHyu Virus Ransomware were released.β¦
Firefox Addons Being Disabled Due to an Expired Certificate
Mozilla Firefox users are discovering that all of their addons were suddenly disabled. It turns out that this is being caused by an expired intermediary certificate used to sign Mozilla addons. [...]
https://www.bleepingcomputer.com/news/software/firefox-addons-being-disabled-due-to-an-expired-certificate/
Mozilla Firefox users are discovering that all of their addons were suddenly disabled. It turns out that this is being caused by an expired intermediary certificate used to sign Mozilla addons. [...]
https://www.bleepingcomputer.com/news/software/firefox-addons-being-disabled-due-to-an-expired-certificate/
BleepingComputer
Firefox Addons Being Disabled Due to an Expired Certificate
Mozilla Firefox users are discovering that all of their addons were suddenly disabled. It turns out that this is being caused by an expired intermediary certificate used to sign Mozilla addons.
New MegaCortex Ransomware Found Targeting Business Networks
A new ransomware has been discovered called MegaCortex that is targeting corporate networks and the workstations on them. Once a network is penetrated, the attackers infect the entire network by distributing the ransomware using Windows domain controllers. [...]
https://www.bleepingcomputer.com/news/security/new-megacortex-ransomware-found-targeting-business-networks/
A new ransomware has been discovered called MegaCortex that is targeting corporate networks and the workstations on them. Once a network is penetrated, the attackers infect the entire network by distributing the ransomware using Windows domain controllers. [...]
https://www.bleepingcomputer.com/news/security/new-megacortex-ransomware-found-targeting-business-networks/
BleepingComputer
New MegaCortex Ransomware Found Targeting Business Networks
A new ransomware has been discovered called MegaCortex that is targeting corporate networks and the workstations on them. Once a network is penetrated, the attackers infect the entire network by distributing the ransomware using Windows domain controllers.
Dark Webβs Wall Street Market & Valhalla Seized, Six Arrested
Servers of dark web marketplaces Wall Street Market and Valhalla have been seized by law enforcement agencies in Germany and Finland, and suspects have been arrested in Germany, the U.S. and Brazil. [...]
https://www.bleepingcomputer.com/news/security/dark-web-s-wall-street-market-and-valhalla-seized-six-arrested/
Servers of dark web marketplaces Wall Street Market and Valhalla have been seized by law enforcement agencies in Germany and Finland, and suspects have been arrested in Germany, the U.S. and Brazil. [...]
https://www.bleepingcomputer.com/news/security/dark-web-s-wall-street-market-and-valhalla-seized-six-arrested/
BleepingComputer
Dark Webβs Wall Street Market & Valhalla Seized, Six Arrested
Servers of dark web marketplaces Wall Street Market and Valhalla have been seized by law enforcement agencies in Germany and Finland, and suspects have been arrested in Germany, the U.S. and Brazil.
Alleged Ukrainian Malvertiser Extradited, Faces Hacking Charges
A 31-year old Ukrainian national named Oleksii Petrovich Ivanov who allegedly ran multiple malvertising campaigns between October 2013 through May 2018 was extradited to the U.S. from the Netherlands and is facing hacking charges. [...]
https://www.bleepingcomputer.com/news/security/alleged-ukrainian-malvertiser-extradited-faces-hacking-charges/
A 31-year old Ukrainian national named Oleksii Petrovich Ivanov who allegedly ran multiple malvertising campaigns between October 2013 through May 2018 was extradited to the U.S. from the Netherlands and is facing hacking charges. [...]
https://www.bleepingcomputer.com/news/security/alleged-ukrainian-malvertiser-extradited-faces-hacking-charges/
BleepingComputer
Alleged Ukrainian Malvertiser Extradited, Faces Hacking Charges
A 31-year old Ukrainian national named Oleksii Petrovich Ivanov who allegedly ran multiple malvertising campaigns between October 2013 through May 2018 was extradited to the U.S. from the Netherlands and is facing hacking charges.
New Extortion Email Scam Threatens to Release Your Sex Tape
Scammers are now sending extortion emails stating that they have a tape of you and them having intercourse and are threatening to release it if you do not send them a $1,500 in bitcoins. [...]
https://www.bleepingcomputer.com/news/security/new-extortion-email-scam-threatens-to-release-your-sex-tape/
Scammers are now sending extortion emails stating that they have a tape of you and them having intercourse and are threatening to release it if you do not send them a $1,500 in bitcoins. [...]
https://www.bleepingcomputer.com/news/security/new-extortion-email-scam-threatens-to-release-your-sex-tape/
BleepingComputer
New Extortion Email Scam Threatens to Release Your Sex Tape
Scammers are now sending extortion emails stating that they have a tape of you and them having intercourse and are threatening to release it if you do not send them a $1,500 in bitcoins.
Firefox 66.0.4 Almost Ready With Fix for Disabled Addons
Mozilla Firefox 66.0.4 is being prepped for release and contains a fix for the expired intermediate signing certificate that caused everyone's addons to be disabled on Friday. [...]
https://www.bleepingcomputer.com/news/software/firefox-6604-almost-ready-with-fix-for-disabled-addons/
Mozilla Firefox 66.0.4 is being prepped for release and contains a fix for the expired intermediate signing certificate that caused everyone's addons to be disabled on Friday. [...]
https://www.bleepingcomputer.com/news/software/firefox-6604-almost-ready-with-fix-for-disabled-addons/
BleepingComputer
Firefox 66.0.4 Almost Ready With Fix for Disabled Addons
Mozilla Firefox 66.0.4 is being prepped for release and contains a fix for the expired intermediate signing certificate that caused everyone's addons to be disabled on Friday.
Israel Bombs Building as Retaliation for Hamas Cyber Attack
The Israel Defense Forces (IDF) announced that a building used by Hamas cyber operatives was bombed on Saturday as part of a joint retaliation operation with the Israel Security Agency (Shin Bet) and Unit 8200 of Military Intelligence, following a failed cyber attack against Israel. [...]
https://www.bleepingcomputer.com/news/security/israel-bombs-building-as-retaliation-for-hamas-cyber-attack/
The Israel Defense Forces (IDF) announced that a building used by Hamas cyber operatives was bombed on Saturday as part of a joint retaliation operation with the Israel Security Agency (Shin Bet) and Unit 8200 of Military Intelligence, following a failed cyber attack against Israel. [...]
https://www.bleepingcomputer.com/news/security/israel-bombs-building-as-retaliation-for-hamas-cyber-attack/
BleepingComputer
Israel Bombs Building as Retaliation for Hamas Cyber Attack
The Israel Defense Forces (IDF) announced that a building used by Hamas cyber operatives was bombed on Saturday as part of a joint retaliation operation with the Israel Security Agency (Shin Bet) and Unit 8200 of Military Intelligence, following a failedβ¦
Chrome for Android to Allow In-App Browser Updates
Google is adding a new feature to Chrome for Android that allows users to perform upgrades directly from the browser rather than going to Google Play first. [...]
https://www.bleepingcomputer.com/news/google/chrome-for-android-to-allow-in-app-browser-updates/
Google is adding a new feature to Chrome for Android that allows users to perform upgrades directly from the browser rather than going to Google Play first. [...]
https://www.bleepingcomputer.com/news/google/chrome-for-android-to-allow-in-app-browser-updates/
BleepingComputer
Chrome for Android to Allow In-App Browser Updates
Google is adding a new feature to Chrome for Android that allows users to perform upgrades directly from the browser rather than going to Google Play first.
Upcoming Microsoft Edge Features Announced at Build 2019
At Build 2019 developer conference, Microsoft announced a bunch of new features for its new Chromium-based Microsoft Edge browser. The company also shared how the brand-new Microsoft Edge will simplify development and improve the productivity of consumers, developers, and enterprises. [...]
https://www.bleepingcomputer.com/news/microsoft/upcoming-microsoft-edge-features-announced-at-build-2019/
At Build 2019 developer conference, Microsoft announced a bunch of new features for its new Chromium-based Microsoft Edge browser. The company also shared how the brand-new Microsoft Edge will simplify development and improve the productivity of consumers, developers, and enterprises. [...]
https://www.bleepingcomputer.com/news/microsoft/upcoming-microsoft-edge-features-announced-at-build-2019/
BleepingComputer
Upcoming Microsoft Edge Features Announced at Build 2019
At Build 2019 developer conference, Microsoft announced a bunch of new features for its new Chromium-based Microsoft Edge browser. The company also shared how the brand-new Microsoft Edge will simplify development and improve the productivity of consumersβ¦
Microsoft Launches Multi-Shell Windows Terminal Console App
At the Build 2019 conference, Microsoft has unveiled its new modern console for Windows 10 called Windows Terminal, which includes tabbed support, GPU acceleration, syntax highlighting, and more. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-launches-multi-shell-windows-terminal-console-app/
At the Build 2019 conference, Microsoft has unveiled its new modern console for Windows 10 called Windows Terminal, which includes tabbed support, GPU acceleration, syntax highlighting, and more. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-launches-multi-shell-windows-terminal-console-app/
BleepingComputer
Microsoft Launches Multi-Shell Windows Terminal Console App
At the Build 2019 conference, Microsoft has unveiled its new modern console for Windows 10 called Windows Terminal, which includes tabbed support, GPU acceleration, syntax highlighting, and more.
Microsoft to Ship a True Linux Kernel With Windows 10 WSL
Microsoft will begin to ship an in-house custom built Linux kernel starting with the Windows 10 Insider builds this summer. This kernel is to become the backbone for the new Windows Subsystem for Linux 2.0 or WSL2. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-to-ship-a-true-linux-kernel-with-windows-10-wsl/
Microsoft will begin to ship an in-house custom built Linux kernel starting with the Windows 10 Insider builds this summer. This kernel is to become the backbone for the new Windows Subsystem for Linux 2.0 or WSL2. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-to-ship-a-true-linux-kernel-with-windows-10-wsl/
BleepingComputer
Microsoft to Ship a True Linux Kernel With Windows 10 WSL
Microsoft will begin to ship an in-house custom built Linux kernel starting with the Windows 10 Insider builds this summer. This kernel is to become the backbone for the new Windows Subsystem for Linux 2.0 or WSL2.
Amazon to Disable S3 Path-Style Access Used to Bypass Censorship
Amazon announced in a post on the Amazon Simple Storage Service (S3) forum that the company will deprecate path-style API requests (used by many to circumvent censorship) starting with September 30, only keeping support for the virtual-hosted style request format. [...]
https://www.bleepingcomputer.com/news/security/amazon-to-disable-s3-path-style-access-used-to-bypass-censorship/
Amazon announced in a post on the Amazon Simple Storage Service (S3) forum that the company will deprecate path-style API requests (used by many to circumvent censorship) starting with September 30, only keeping support for the virtual-hosted style request format. [...]
https://www.bleepingcomputer.com/news/security/amazon-to-disable-s3-path-style-access-used-to-bypass-censorship/
BleepingComputer
Amazon to Disable S3 Path-Style Access Used to Bypass Censorship
Amazon announced in a post on the Amazon Simple Storage Service (S3) forum that the company will deprecate path-style API requests (used by many to circumvent censorship) starting with September 30, only keeping support for the virtual-hosted style requestβ¦
Evil Clippy Makes Malicious Office Docs that Dodge Detection
Security researchers brought to life and released a wicked variant of Clippy, the recently resurfaced assistant in Microsoft Office that we all loved so much to hate, that makes it more difficult to detect a malicious macro in documents. [...]
https://www.bleepingcomputer.com/news/security/evil-clippy-makes-malicious-office-docs-that-dodge-detection/
Security researchers brought to life and released a wicked variant of Clippy, the recently resurfaced assistant in Microsoft Office that we all loved so much to hate, that makes it more difficult to detect a malicious macro in documents. [...]
https://www.bleepingcomputer.com/news/security/evil-clippy-makes-malicious-office-docs-that-dodge-detection/
BleepingComputer
Evil Clippy Makes Malicious Office Docs that Dodge Detection
Security researchers brought to life and released a wicked variant of Clippy, the recently resurfaced assistant in Microsoft Office that we all loved so much to hate, that makes it more difficult to detect a malicious macro in documents.
App Stores Pull Meet24 and Meet4U Dating Apps For FTC Violations
Three dating apps called Meet24, FastMeet, and Meet4U were pulled from the Google Play Store and the Apple Apps Store for FTC violations. The FTC states that the apps were allowing children under the age of thirteen to use the apps without parental consent, which violates the Children's Online Privacy Protection Act (COPPA). [...]
https://www.bleepingcomputer.com/news/security/app-stores-pull-meet24-and-meet4u-dating-apps-for-ftc-violations/
Three dating apps called Meet24, FastMeet, and Meet4U were pulled from the Google Play Store and the Apple Apps Store for FTC violations. The FTC states that the apps were allowing children under the age of thirteen to use the apps without parental consent, which violates the Children's Online Privacy Protection Act (COPPA). [...]
https://www.bleepingcomputer.com/news/security/app-stores-pull-meet24-and-meet4u-dating-apps-for-ftc-violations/
BleepingComputer
App Stores Pull Meet24 and Meet4U Dating Apps For FTC Violations
Three dating apps called Meet24, FastMeet, and Meet4U were pulled from the Google Play Store and the Apple Apps Store for FTC violations. The FTC states that the apps were allowing children under the age of thirteen to use the apps without parental consentβ¦
WordPress 5.2 to Come with Supply-Chain Attack Protection
The WordPress 5.2 build which will be released today will ship with offline digital signatures for all core updates as a defense measure against possible supply-chain attacks, with support for themes, plugins, and translations to be delivered at a later date. [...]
https://www.bleepingcomputer.com/news/security/wordpress-52-to-come-with-supply-chain-attack-protection/
The WordPress 5.2 build which will be released today will ship with offline digital signatures for all core updates as a defense measure against possible supply-chain attacks, with support for themes, plugins, and translations to be delivered at a later date. [...]
https://www.bleepingcomputer.com/news/security/wordpress-52-to-come-with-supply-chain-attack-protection/
BleepingComputer
WordPress 5.2 to Come with Supply-Chain Attack Protection
The WordPress 5.2 build which will be released today will ship with offline digital signatures for all core updates as a defense measure against possible supply-chain attacks, with support for themes, plugins, and translations to be delivered at a later date.
Turla Backdoor Deployed in Attacks Against Worldwide Targets
A Turla backdoor targeted at Microsoft Exchange mail servers and controllable remotely via email attachments using steganography was discovered by researchers while used in attacks against multiple targets from around the world. [...]
https://www.bleepingcomputer.com/news/security/turla-backdoor-deployed-in-attacks-against-worldwide-targets/
A Turla backdoor targeted at Microsoft Exchange mail servers and controllable remotely via email attachments using steganography was discovered by researchers while used in attacks against multiple targets from around the world. [...]
https://www.bleepingcomputer.com/news/security/turla-backdoor-deployed-in-attacks-against-worldwide-targets/
BleepingComputer
Turla Backdoor Deployed in Attacks Against Worldwide Targets
A Turla backdoor targeted at Microsoft Exchange mail servers and controllable remotely via email attachments using steganography was discovered by researchers while used in attacks against multiple targets from around the world.
Tor Browser 8.0.9 Released to Fix Disabled NoScript Addon
Tor has released Tor Browser 8.0.9, which fixes the expired intermedia signing certificate that was causing the NoScript and HTTPS-Everywhere addons to be disabled. [...]
https://www.bleepingcomputer.com/news/software/tor-browser-809-released-to-fix-disabled-noscript-addon/
Tor has released Tor Browser 8.0.9, which fixes the expired intermedia signing certificate that was causing the NoScript and HTTPS-Everywhere addons to be disabled. [...]
https://www.bleepingcomputer.com/news/software/tor-browser-809-released-to-fix-disabled-noscript-addon/
BleepingComputer
Tor Browser 8.0.9 Released to Fix Disabled NoScript Addon
Tor has released Tor Browser 8.0.9, which fixes the expired intermedia signing certificate that was causing the NoScript and HTTPS-Everywhere addons to be disabled.
NSA Hacking Tools Used by Chinese Hackers One Year Before Leak
A Chinese threat group was using hacking tools developed by the NSA more than a year before Shadow Brokers leaked them in April 2017, tools that were later used in highly destructive attacks such as the WannaCry ransomware campaign from May 2017. [...]
https://www.bleepingcomputer.com/news/security/nsa-hacking-tools-used-by-chinese-hackers-one-year-before-leak/
A Chinese threat group was using hacking tools developed by the NSA more than a year before Shadow Brokers leaked them in April 2017, tools that were later used in highly destructive attacks such as the WannaCry ransomware campaign from May 2017. [...]
https://www.bleepingcomputer.com/news/security/nsa-hacking-tools-used-by-chinese-hackers-one-year-before-leak/
BleepingComputer
NSA Hacking Tools Used by Chinese Hackers One Year Before Leak
A Chinese threat group was using hacking tools developed by the NSA more than a year before Shadow Brokers leaked them in April 2017, tools that were later used in highly destructive attacks such as the WannaCry ransomware campaign from May 2017.
Confluence Servers Hacked to Install Miners and Rootkits
After getting pounded with ransomware and malware for deploying distributed denial-of-service (DDoS) attacks, unpatched Confluence servers are now compromised to mine for cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/confluence-servers-hacked-to-install-miners-and-rootkits/
After getting pounded with ransomware and malware for deploying distributed denial-of-service (DDoS) attacks, unpatched Confluence servers are now compromised to mine for cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/confluence-servers-hacked-to-install-miners-and-rootkits/
BleepingComputer
Confluence Servers Hacked to Install Miners and Rootkits
After getting pounded with ransomware and malware for deploying distributed denial-of-service (DDoS) attacks, unpatched Confluence servers are now compromised to mine for cryptocurrency.