MuddyWater Hacking Group Upgrades Arsenal to Avoid Detection

The MuddyWater threat group has been updating its tactics, techniques, and procedures (TTPs) to include a number of new anti-detection techniques designed to provide remote access to compromised systems while evading detection as part of a new campaign dubbed BlackWater. [...]

https://www.bleepingcomputer.com/news/security/muddywater-hacking-group-upgrades-arsenal-to-avoid-detection/

Microsoft Defender ATP Adds Live Response for SecOps

Microsoft announced the addition of live response capabilities to its Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) enabling security operation teams to perform system forensic analysis remotely. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-defender-atp-adds-live-response-for-secops/

Firefox Lockwise Aims to Revamp Browser Password Management

Mozilla is rebranding their LockBox password management service as Lockwise and getting ready to start a trial for the desktop versions of Firefox. [...]

https://www.bleepingcomputer.com/news/security/firefox-lockwise-aims-to-revamp-browser-password-management/

BlueKeep Remote Desktop Exploits Are Coming, Patch Now!

Security researchers have created exploits for the remote code execution vulnerability in Microsoft's Remote Desktop Services, tracked as CVE-2019-0708 and dubbed BlueKeep, and hackers may not be far behind. [...]

https://www.bleepingcomputer.com/news/security/bluekeep-remote-desktop-exploits-are-coming-patch-now/

Windows OS Could Break If Capability SIDs Are Removed From Permissions

Microsoft issued a warning yesterday stating that removing Windows account security identifiers (SIDS) that do not have a "friendly" name from security permissions could cause problems in Windows and installed applications. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-os-could-break-if-capability-sids-are-removed-from-permissions/

194 of The Top 1000 Docker Containers Don’t Have Root Passwords

Cisco Talos' discovery that the Alpine Linux distribution Docker image came with a blank root password (CVE-2019-5021) led to the discovery that 194 of the top 1000 most popular Docker containers also have no root passwords. [...]

https://www.bleepingcomputer.com/news/security/194-of-the-top-1000-docker-containers-don-t-have-root-passwords/

Firefox 67 Released With Cryptominer Blocking, Performance Boost

Mozilla has officially released Firefox 67 to the Windows, Mac, Linux, and Android release channels.  This version comes with cryptominer and fingerprinter blocking, WebRender, changes to Private Browsing, increased ARM64 support, and improved performance. [...]

https://www.bleepingcomputer.com/news/software/firefox-67-released-with-cryptominer-blocking-performance-boost/

Contractor Faces Jail for Using Govt Servers for CryptoMining

The Australian Federal Police (AFP) arrested a 33-year-old government IT contractor from the Upper North Shore Killara suburb of Sydney, New South Wales, for running a shadow mining scheme using the government's computing systems. [...]

https://www.bleepingcomputer.com/news/security/contractor-faces-jail-for-using-govt-servers-for-cryptomining/

Forbes Global 2000 Firm Leaked Plain Text Passwords and Data

IT service and consulting company Hindustan Computers Limited (HCL) exposed a huge trove of employee and business information via publicly accessible pages hosted on multiple subdomains. [...]

https://www.bleepingcomputer.com/news/security/forbes-global-2000-firm-leaked-plain-text-passwords-and-data/

Microsoft Releases Windows 10 Version 1903 - May 2019 Update

Microsoft has officially started to roll out Windows 10 version 1903, called the May 2019 Update, to everyone. Originally released to Insiders for testing on April 8th, Microsoft has now made it available to everyone. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-version-1903-may-2019-update/

Cracked Phishing Kit 16Shop Lets One Thief Steal From Another

The cracked version of an advanced phishing kit targeting Apple users comes with a backdoor that allows its author to pilfer all the data from penny-pinching attackers. [...]

https://www.bleepingcomputer.com/news/security/cracked-phishing-kit-16shop-lets-one-thief-steal-from-another/

New Cumulative Updates for Windows 10 1809 and 1803 Released

Microsoft is rolling out new cumulative updates for Windows 10 October 2018 Update and April 2018 Update as it prepares to push May 2019 Update to more users. The focus of the latest cumulative update is on adding an option that would allow users to download and install the May 2019 Update. [...]

https://www.bleepingcomputer.com/news/microsoft/new-cumulative-updates-for-windows-10-1809-and-1803-released/

Hackers Steal Payment Card Data Using Rogue Iframe Phishing

Cybercriminals have upgraded their credit card skimming scripts to use an iframe-based phishing system designed to phish for credit/debit card info from Magento-powered store customers on checkout. [...]

https://www.bleepingcomputer.com/news/security/hackers-steal-payment-card-data-using-rogue-iframe-phishing/

JSWorm 2.0 Ransomware Decryptor Gets Your Files Back For Free

A decryptor for the JSWorm 2.0 Ransomware has been released by Emsisoft this week that allows victims to decrypt their files for free. If you become infected with JSWorm 2.0, do not pay the ransom and instead follow the instructions below. [...]

https://www.bleepingcomputer.com/news/security/jsworm-20-ransomware-decryptor-gets-your-files-back-for-free/

Tor Browser 8.5 for Android Released On The Google Play Store

The stable version of Tor Browser for Android 8.5 has been released today on Google's Play Store, with built-in anti-tracking, fingerprinting blocking, and multi-layered encryption capabilities for censorship-circumvention. [...]

https://www.bleepingcomputer.com/news/security/tor-browser-85-for-android-released-on-the-google-play-store/

Google Stored Unhashed G Suite Passwords for Over a Decade

Google missed a spot when securing passwords for some of its business customers, accidentally storing them in plain text for 14 years. [...]

https://www.bleepingcomputer.com/news/security/google-stored-unhashed-g-suite-passwords-for-over-a-decade/

New Zero-Day Exploit for Bug in Windows 10 Task Scheduler

Security researcher SandboxEscaper quietly dropped a new zero-day exploit for Windows operating system, a week after Microsoft's monthly cycle of security updates. [...]

https://www.bleepingcomputer.com/news/security/new-zero-day-exploit-for-bug-in-windows-10-task-scheduler/

Zebrocy Operators Also Look for Browser and Email Databases

Malware researchers analyzing the Zebrocy kit determined that the operators run commands manually to collect information of interest from infected systems. [...]

https://www.bleepingcomputer.com/news/security/zebrocy-operators-also-look-for-browser-and-email-databases/

Researchers Demo PoC For Remote Desktop BlueKeep RCE Exploit

A proof-of-concept remote code execution (RCE) exploit for the wormable BlueKeep vulnerability tracked as CVE-2019-0708 has been demoed by security researchers from McAfee Labs. [...]

https://www.bleepingcomputer.com/news/security/researchers-demo-poc-for-remote-desktop-bluekeep-rce-exploit/

Volume of Signed Malware Increases, CAs Need Better Vetting

Digitally signed threats with a valid certificate are no longer the mark of a nation-state, sophisticated attacker. The number of malware samples signed with a valid certificate found on VirusTotal is in the thousands. [...]

https://www.bleepingcomputer.com/news/security/volume-of-signed-malware-increases-cas-need-better-vetting/

BestMixer.io Service Shut Down For Laundering $200 Million+

After a yearlong investigation, the Dutch Fiscal Information and Investigation Service (FIOD) shut down Bestmixer.io today, one of the largest cryptocurrency laundering platform in the world, with the help of Europol and Luxembourg law enforcement authorities. [...]

https://www.bleepingcomputer.com/news/security/bestmixerio-service-shut-down-for-laundering-200-million-/