Clever Phishing Trick You Need to Be Aware Of
One trick, first seen in June 2016, was observed again this past month. This clever phishing attack relies on telling users they received an important or secure file, and they need to visit a web page to view it. The real trick takes place on the crook's page, which shows a blurred out document on the background. [...]
https://www.bleepingcomputer.com/news/security/clever-phishing-trick-you-need-to-be-aware-of/
One trick, first seen in June 2016, was observed again this past month. This clever phishing attack relies on telling users they received an important or secure file, and they need to visit a web page to view it. The real trick takes place on the crook's page, which shows a blurred out document on the background. [...]
https://www.bleepingcomputer.com/news/security/clever-phishing-trick-you-need-to-be-aware-of/
BleepingComputer
Clever Phishing Trick You Need to Be Aware Of
One trick, first seen in June 2016, was observed again this past month. This clever phishing attack relies on telling users they received an important or secure file, and they need to visit a web page to view it. The real trick takes place on the crook'sβ¦
WordPress, Joomla, and Magento Continue to Be the Most Hacked CMSs
Based on statistical data gathered by Sucuri from 7,937 compromised websites, WordPress, Joomla, and Magento, in this order, continued to be the most hacked CMS platforms in the third quarter of 2016 (months of July, August, and September). [...]
https://www.bleepingcomputer.com/news/security/wordpress-joomla-and-magento-continue-to-be-the-most-hacked-cmss/
Based on statistical data gathered by Sucuri from 7,937 compromised websites, WordPress, Joomla, and Magento, in this order, continued to be the most hacked CMS platforms in the third quarter of 2016 (months of July, August, and September). [...]
https://www.bleepingcomputer.com/news/security/wordpress-joomla-and-magento-continue-to-be-the-most-hacked-cmss/
BleepingComputer
WordPress, Joomla, and Magento Continue to Be the Most Hacked CMSs
Based on statistical data gathered by Sucuri from 7,937 compromised websites, WordPress, Joomla, and Magento, in this order, continued to be the most hacked CMS platforms in the third quarter of 2016 (months of July, August, and September).
MongoDB Apocalypse: Professional Ransomware Group Gets Involved, Infections Reach 28K Servers
The number of hijacked MongoDB servers held for ransom has skyrocketed in the past two days from 10,500 to over 28,200, thanks in large part to the involvement of a professional ransomware group known as Kraken. [...]
https://www.bleepingcomputer.com/news/security/mongodb-apocalypse-professional-ransomware-group-gets-involved-infections-reach-28k-servers/
The number of hijacked MongoDB servers held for ransom has skyrocketed in the past two days from 10,500 to over 28,200, thanks in large part to the involvement of a professional ransomware group known as Kraken. [...]
https://www.bleepingcomputer.com/news/security/mongodb-apocalypse-professional-ransomware-group-gets-involved-infections-reach-28k-servers/
BleepingComputer
MongoDB Apocalypse: Professional Ransomware Group Gets Involved, Infections Reach 28K Servers
The number of hijacked MongoDB servers held for ransom has skyrocketed in the past two days from 10,500 to over 28,200, thanks in large part to the involvement of a professional ransomware group known as Kraken.
"Merry Christmas" Ransomware Now Steals User Private Data via DiamondFox Malware
Recent variants of the "Merry Christmas" ransomware, also known as Merry X-Mas, are also downloading the DiamondFox malware on infected computers, which is used by the ransomware's operators to collect data from infected hosts, such as passwords, sensitive files, and others. [...]
https://www.bleepingcomputer.com/news/security/-merry-christmas-ransomware-now-steals-user-private-data-via-diamondfox-malware/
Recent variants of the "Merry Christmas" ransomware, also known as Merry X-Mas, are also downloading the DiamondFox malware on infected computers, which is used by the ransomware's operators to collect data from infected hosts, such as passwords, sensitive files, and others. [...]
https://www.bleepingcomputer.com/news/security/-merry-christmas-ransomware-now-steals-user-private-data-via-diamondfox-malware/
BleepingComputer
"Merry Christmas" Ransomware Now Steals User Private Data via DiamondFox Malware
Recent variants of the "Merry Christmas" ransomware, also known as Merry X-Mas, are also downloading the DiamondFox malware on infected computers, which is used by the ransomware's operators to collect data from infected hosts, such as passwords, sensitiveβ¦
DHS Designates US Voting System as "Critical Infrastructure"
The US Department of Homeland Security (DHS) has upgraded the US voting and election infrastructure as a subsector of the nation's critical infrastructure. [...]
https://www.bleepingcomputer.com/news/government/dhs-designates-us-voting-system-as-critical-infrastructure-/
The US Department of Homeland Security (DHS) has upgraded the US voting and election infrastructure as a subsector of the nation's critical infrastructure. [...]
https://www.bleepingcomputer.com/news/government/dhs-designates-us-voting-system-as-critical-infrastructure-/
BleepingComputer
DHS Designates US Voting System as "Critical Infrastructure"
The US Department of Homeland Security (DHS) has upgraded the US voting and election infrastructure as a subsector of the nation's critical infrastructure.
Los Angeles Valley College Pays a Whopping $30,000 in Ransomware Incident
The Los Angeles Community College District (LACCD) agreed to pay a ransom demand of $28,000 to crooks who managed to infect the computer network of the Los Angeles Valley College (LAVC) with ransomware. [...]
https://www.bleepingcomputer.com/news/security/los-angeles-valley-college-pays-a-whopping-30-000-in-ransomware-incident/
The Los Angeles Community College District (LACCD) agreed to pay a ransom demand of $28,000 to crooks who managed to infect the computer network of the Los Angeles Valley College (LAVC) with ransomware. [...]
https://www.bleepingcomputer.com/news/security/los-angeles-valley-college-pays-a-whopping-30-000-in-ransomware-incident/
BleepingComputer
Los Angeles Valley College Pays a Whopping $30,000 in Ransomware Incident
The Los Angeles Community College District (LACCD) agreed to pay a ransom demand of $28,000 to crooks who managed to infect the computer network of the Los Angeles Valley College (LAVC) with ransomware.
Obituary: Leftover Yahoo Services to Rename as Altaba, Marissa Mayer to Resign
Despite two high-profile data breaches that came to light just after Verizon agreed to buy Yahoo for $4.83 billion, the sale is going forward as initially announced, albeit with some fears on Yahoo's side. [...]
https://www.bleepingcomputer.com/news/business/obituary-leftover-yahoo-services-to-rename-as-altaba-marissa-mayer-to-resign/
Despite two high-profile data breaches that came to light just after Verizon agreed to buy Yahoo for $4.83 billion, the sale is going forward as initially announced, albeit with some fears on Yahoo's side. [...]
https://www.bleepingcomputer.com/news/business/obituary-leftover-yahoo-services-to-rename-as-altaba-marissa-mayer-to-resign/
BleepingComputer
Obituary: Leftover Yahoo Services to Rename as Altaba, Marissa Mayer to Resign
Despite two high-profile data breaches that came to light just after Verizon agreed to buy Yahoo for $4.83 billion, the sale is going forward as initially announced, albeit with some fears on Yahoo's side.
New, Poorly-Made Terror Exploit Kit Drops Monero Cryptocurrency Miner
Security researchers from Trustwave and Malwarebytes have come across a new, poorly assembled exploit kit that appears to be the work of a one-man crew. [...]
https://www.bleepingcomputer.com/news/security/new-poorly-made-terror-exploit-kit-drops-monero-cryptocurrency-miner/
Security researchers from Trustwave and Malwarebytes have come across a new, poorly assembled exploit kit that appears to be the work of a one-man crew. [...]
https://www.bleepingcomputer.com/news/security/new-poorly-made-terror-exploit-kit-drops-monero-cryptocurrency-miner/
BleepingComputer
New, Poorly-Made Terror Exploit Kit Drops Monero Cryptocurrency Miner
Security researchers from Trustwave and Malwarebytes have come across a new, poorly assembled exploit kit that appears to be the work of a one-man crew.
Shadow Brokers Now Selling Windows Exploits, Antivirus Bypass Tools
The Shadow Brokers, a group of hackers that have stolen exploits and hacking tools from the National Security Agency (NSA), are now selling some of these tools, which include Windows exploits and antivirus bypass tools, on a website hidden on the ZeroNet network. [...]
https://www.bleepingcomputer.com/news/security/shadow-brokers-now-selling-windows-exploits-antivirus-bypass-tools/
The Shadow Brokers, a group of hackers that have stolen exploits and hacking tools from the National Security Agency (NSA), are now selling some of these tools, which include Windows exploits and antivirus bypass tools, on a website hidden on the ZeroNet network. [...]
https://www.bleepingcomputer.com/news/security/shadow-brokers-now-selling-windows-exploits-antivirus-bypass-tools/
BleepingComputer
Shadow Brokers Now Selling Windows Exploits, Antivirus Bypass Tools
The Shadow Brokers, a group of hackers that have stolen exploits and hacking tools from the National Security Agency (NSA), are now selling some of these tools, which include Windows exploits and antivirus bypass tools, on a website hidden on the ZeroNetβ¦
Windows 10 Insider Build 15002 released to PC and Loaded with New Features
Yetsterday Microsoft released the Windows 10 Insider Preview Build 15002 for PC only to Insiders on the fast ring. The last build that was released was Insider Build 14986 on December 8 2016, so it has been plenty of time for the Windows team to cram goodies into this latest build. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-15002-released-to-pc-and-loaded-with-new-features/
Yetsterday Microsoft released the Windows 10 Insider Preview Build 15002 for PC only to Insiders on the fast ring. The last build that was released was Insider Build 14986 on December 8 2016, so it has been plenty of time for the Windows team to cram goodies into this latest build. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-15002-released-to-pc-and-loaded-with-new-features/
BleepingComputer
Windows 10 Insider Build 15002 released to PC and Loaded with New Features
Yetsterday Microsoft released the Windows 10 Insider Preview Build 15002 for PC only to Insiders on the fast ring. The last build that was released was Insider Build 14986 on December 8 2016, so it has been plenty of time for the Windows team to cram goodiesβ¦
Spora Ransomware Works Offline, Has the Most Sophisticated Payment Site as of Yet
A new ransomware family made its presence felt today, named Spora, the Russian word for "spore." This new ransomware's most notable features are its solid encryption routine, ability to work offline, and a very well put together ransom payment site, the most sophisticated we've seen from ransomware authors as of yet. [...]
https://www.bleepingcomputer.com/news/security/spora-ransomware-works-offline-has-the-most-sophisticated-payment-site-as-of-yet/
A new ransomware family made its presence felt today, named Spora, the Russian word for "spore." This new ransomware's most notable features are its solid encryption routine, ability to work offline, and a very well put together ransom payment site, the most sophisticated we've seen from ransomware authors as of yet. [...]
https://www.bleepingcomputer.com/news/security/spora-ransomware-works-offline-has-the-most-sophisticated-payment-site-as-of-yet/
BleepingComputer
Spora Ransomware Works Offline, Has the Most Sophisticated Payment Site as of Yet
A new ransomware family made its presence felt today, named Spora, the Russian word for "spore." This new ransomware's most notable features are its solid encryption routine, ability to work offline, and a very well put together ransom payment site, the mostβ¦
Microsoft's January 2017 Patch Tuesday Comes with 4 Security Updates
Today, Microsoft released four security bulletins as part of its monthly security update train known as "Patch Tuesday." This month, two of the four Microsoft security bulletins are rated as critical, the highest severity rating a bulletin can receive. [...]
https://www.bleepingcomputer.com/news/microsoft/microsofts-january-2017-patch-tuesday-comes-with-4-security-updates/
Today, Microsoft released four security bulletins as part of its monthly security update train known as "Patch Tuesday." This month, two of the four Microsoft security bulletins are rated as critical, the highest severity rating a bulletin can receive. [...]
https://www.bleepingcomputer.com/news/microsoft/microsofts-january-2017-patch-tuesday-comes-with-4-security-updates/
BleepingComputer
Microsoft's January 2017 Patch Tuesday Comes with 4 Security Updates
Today, Microsoft released four security bulletins as part of its monthly security update train known as "Patch Tuesday." This month, two of the four Microsoft security bulletins are rated as critical, the highest severity rating a bulletin can receive.
Adobe Updates Adobe Flash, Acrobat, and Reader to Fix 42 Vulnerabilities
Adobe has released updates for Adobe Acrobat, Reader, and Flash that resolve a total of 42 security vulnerabilities. As many of these vulnerabilities are rated as Critical, it is strongly advised that anyone using these products immediately update them to the latest version. [...]
https://www.bleepingcomputer.com/news/security/adobe-updates-adobe-flash-acrobat-and-reader-to-fix-42-vulnerabilities/
Adobe has released updates for Adobe Acrobat, Reader, and Flash that resolve a total of 42 security vulnerabilities. As many of these vulnerabilities are rated as Critical, it is strongly advised that anyone using these products immediately update them to the latest version. [...]
https://www.bleepingcomputer.com/news/security/adobe-updates-adobe-flash-acrobat-and-reader-to-fix-42-vulnerabilities/
BleepingComputer
Adobe Updates Adobe Flash, Acrobat, and Reader to Fix 42 Vulnerabilities
Adobe has released updates for Adobe Acrobat, Reader, and Flash that resolve a total of 42 security vulnerabilities. As many of these vulnerabilities are rated as Critical, it is strongly advised that anyone using these products immediately update them toβ¦
Adobe Acrobat Reader DC Update Installs Chrome Browser Extension
Adobe released yesterday Acrobat Reader DC 15.023.20053 that included fixes for 29 security issues. Along with the security fixes, this update package also silently installs the Adobe Acrobat extension into the user's Chrome web browser. [...]
https://www.bleepingcomputer.com/news/software/adobe-acrobat-reader-dc-update-installs-chrome-browser-extension/
Adobe released yesterday Acrobat Reader DC 15.023.20053 that included fixes for 29 security issues. Along with the security fixes, this update package also silently installs the Adobe Acrobat extension into the user's Chrome web browser. [...]
https://www.bleepingcomputer.com/news/software/adobe-acrobat-reader-dc-update-installs-chrome-browser-extension/
BleepingComputer
Adobe Acrobat Reader DC Update Installs Chrome Browser Extension
Adobe released yesterday Acrobat Reader DC 15.023.20053 that included fixes for 29 security issues. Along with the security fixes, this update package also silently installs the Adobe Acrobat extension into the user's Chrome web browser.
Two Aggresive Campaigns Detected Pushing Google Ads to Unsuspecting Users
Over the past weeks, security researchers from Sucuri and Malwarebytes have discovered two campaigns that abuse hacked and fake websites to push Google ads and trick users into clicking these advertisments, for the crooks profits. [...]
https://www.bleepingcomputer.com/news/security/two-aggresive-campaigns-detected-pushing-google-ads-to-unsuspecting-users/
Over the past weeks, security researchers from Sucuri and Malwarebytes have discovered two campaigns that abuse hacked and fake websites to push Google ads and trick users into clicking these advertisments, for the crooks profits. [...]
https://www.bleepingcomputer.com/news/security/two-aggresive-campaigns-detected-pushing-google-ads-to-unsuspecting-users/
BleepingComputer
Two Aggresive Campaigns Detected Pushing Google Ads to Unsuspecting Users
Over the past weeks, security researchers from Sucuri and Malwarebytes have discovered two campaigns that abuse hacked and fake websites to push Google ads and trick users into clicking these advertisments, for the crooks profits.
EU to Simplify Those Pesky Cookie Warning Popups, but Not Remove Them
The European Commission is currently debating new legislation that will overhaul some of the EU e-privacy rules, including the hated cookie consent popups that have ruined the web experience for many users. [...]
https://www.bleepingcomputer.com/news/security/eu-to-simplify-those-pesky-cookie-warning-popups-but-not-remove-them/
The European Commission is currently debating new legislation that will overhaul some of the EU e-privacy rules, including the hated cookie consent popups that have ruined the web experience for many users. [...]
https://www.bleepingcomputer.com/news/security/eu-to-simplify-those-pesky-cookie-warning-popups-but-not-remove-them/
BleepingComputer
EU to Simplify Those Pesky Cookie Warning Popups, but Not Remove Them
The European Commission is currently debating new legislation that will overhaul some of the EU e-privacy rules, including the hated cookie consent popups that have ruined the web experience for many users.
Operation EyePyramid: Two Siblings Spied on Italy's Elite
Italian authorities have arrested and charged two siblings for carrying out a cyber-espionage campaign against Italy's elite, with targets that varied from famous businessmen to high-ranking politicians, including Matteo Renzi, former Italian prime minister. [...]
https://www.bleepingcomputer.com/news/security/operation-eyepyramid-two-siblings-spied-on-italys-elite/
Italian authorities have arrested and charged two siblings for carrying out a cyber-espionage campaign against Italy's elite, with targets that varied from famous businessmen to high-ranking politicians, including Matteo Renzi, former Italian prime minister. [...]
https://www.bleepingcomputer.com/news/security/operation-eyepyramid-two-siblings-spied-on-italys-elite/
BleepingComputer
Operation EyePyramid: Two Siblings Spied on Italy's Elite
Italian authorities have arrested and charged two siblings for carrying out a cyber-espionage campaign against Italy's elite, with targets that varied from famous businessmen to high-ranking politicians, including Matteo Renzi, former Italian prime minister.
Kraken Group Puts MongoDB Hijacking Script Up for Sale
Almost nine days after attacks on MongoDB servers have ramped up, the number of ransacked databases has reached 32,380 hosts, and the number of groups involved in these attacks has grown to 21, after initially just one group had been involved. [...]
https://www.bleepingcomputer.com/news/security/kraken-group-puts-mongodb-hijacking-script-up-for-sale/
Almost nine days after attacks on MongoDB servers have ramped up, the number of ransacked databases has reached 32,380 hosts, and the number of groups involved in these attacks has grown to 21, after initially just one group had been involved. [...]
https://www.bleepingcomputer.com/news/security/kraken-group-puts-mongodb-hijacking-script-up-for-sale/
BleepingComputer
Kraken Group Puts MongoDB Hijacking Script Up for Sale
Almost nine days after attacks on MongoDB servers have ramped up, the number of ransacked databases has reached 32,380 hosts, and the number of groups involved in these attacks has grown to 21, after initially just one group had been involved.
Watch Tech Support Scam Take Over a Browser via Facebook Ads
Facebook users in France are subject to a wave of malicious ads, which if clicked, will redirect them to a website hosting a tech support scam. [...]
https://www.bleepingcomputer.com/news/security/watch-tech-support-scam-take-over-a-browser-via-facebook-ads/
Facebook users in France are subject to a wave of malicious ads, which if clicked, will redirect them to a website hosting a tech support scam. [...]
https://www.bleepingcomputer.com/news/security/watch-tech-support-scam-take-over-a-browser-via-facebook-ads/
Scientists Extract Fingerprints from Photos Taken From up to Three Meters Away
Researchers from Japan's National Institute of Informatics (NII) announced yesterday they have successfully extracted usable fingerprints from photos of exposed fingers taken up to three meters away. [...]
https://www.bleepingcomputer.com/news/security/scientists-extract-fingerprints-from-photos-taken-from-up-to-three-meters-away/
Researchers from Japan's National Institute of Informatics (NII) announced yesterday they have successfully extracted usable fingerprints from photos of exposed fingers taken up to three meters away. [...]
https://www.bleepingcomputer.com/news/security/scientists-extract-fingerprints-from-photos-taken-from-up-to-three-meters-away/
BleepingComputer
Scientists Extract Fingerprints from Photos Taken From up to Three Meters Away
Researchers from Japan's National Institute of Informatics (NII) announced yesterday they have successfully extracted usable fingerprints from photos of exposed fingers taken up to three meters away.
New Fingerprinting Techniques Identify Users Across Different Browsers on the Same PC
A team of researchers from universities across the US has identified different fingerprinting techniques that can track users when they use different browsers installed on the same machine. [...]
https://www.bleepingcomputer.com/news/security/new-fingerprinting-techniques-identify-users-across-different-browsers-on-the-same-pc/
A team of researchers from universities across the US has identified different fingerprinting techniques that can track users when they use different browsers installed on the same machine. [...]
https://www.bleepingcomputer.com/news/security/new-fingerprinting-techniques-identify-users-across-different-browsers-on-the-same-pc/
BleepingComputer
New Fingerprinting Techniques Identify Users Across Different Browsers on the Same PC
A team of researchers from universities across the US has identified different fingerprinting techniques that can track users when they use different browsers installed on the same machine.