Mozilla Firefox 67.0.3 Patches Actively Exploited Zero-Day
Mozilla released Firefox 67.0.3 and Firefox ESR 60.7.1 to patch an actively exploited and critical severity vulnerability which could allow attackers to remotely execute arbitrary code on machines running vulnerable Firefox versions. [...]
https://www.bleepingcomputer.com/news/security/mozilla-firefox-6703-patches-actively-exploited-zero-day/
Mozilla released Firefox 67.0.3 and Firefox ESR 60.7.1 to patch an actively exploited and critical severity vulnerability which could allow attackers to remotely execute arbitrary code on machines running vulnerable Firefox versions. [...]
https://www.bleepingcomputer.com/news/security/mozilla-firefox-6703-patches-actively-exploited-zero-day/
BleepingComputer
Mozilla Firefox 67.0.3 Patches Actively Exploited Zero-Day
Mozilla released Firefox 67.0.3 and Firefox ESR 60.7.1 to patch an actively exploited and critical severity vulnerability which could allow attackers to remotely execute arbitrary code on machines running vulnerable Firefox versions.
Windows 10 1809 Cumulative Update KB4501371 Released With Fixes
Microsoft has released a new cumulative update for Windows 10 version 1809 that includes fixes for numerous issues in the operating system. The update is titled "2019-06 Cumulative Update for Windows 10 Version 1809 (KB4501371)" and does not contain any security fixes. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-1809-cumulative-update-kb4501371-released-with-fixes/
Microsoft has released a new cumulative update for Windows 10 version 1809 that includes fixes for numerous issues in the operating system. The update is titled "2019-06 Cumulative Update for Windows 10 Version 1809 (KB4501371)" and does not contain any security fixes. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-1809-cumulative-update-kb4501371-released-with-fixes/
BleepingComputer
Windows 10 1809 Cumulative Update KB4501371 Released With Fixes
Microsoft has released a new cumulative update for Windows 10 version 1809 that includes fixes for numerous issues in the operating system. The update is titled "2019-06 Cumulative Update for Windows 10 Version 1809 (KB4501371)" and does not contain any securityβ¦
Microsoft Releases Windows 10 Update to Fix Privacy Settings Bug
Microsoft has released an update for certain devices that will display a notification containing information and instructions on how to configure privacy settings that were not properly shown during a Windows 10 installation. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-update-to-fix-privacy-settings-bug/
Microsoft has released an update for certain devices that will display a notification containing information and instructions on how to configure privacy settings that were not properly shown during a Windows 10 installation. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-update-to-fix-privacy-settings-bug/
BleepingComputer
Microsoft Releases Windows 10 Update to Fix Privacy Settings Bug
Microsoft has released an update for certain devices that will display a notification containing information and instructions on how to configure privacy settings that were not properly shown during a Windows 10 installation.
Ryuk Ransomware Adds IP and Computer Name Blacklisting
A new variant of the Ryuk Ransomware has been discovered that adds IP address and computer blacklisting so that matching computers will not be encrypted. [...]
https://www.bleepingcomputer.com/news/security/ryuk-ransomware-adds-ip-and-computer-name-blacklisting/
A new variant of the Ryuk Ransomware has been discovered that adds IP address and computer blacklisting so that matching computers will not be encrypted. [...]
https://www.bleepingcomputer.com/news/security/ryuk-ransomware-adds-ip-and-computer-name-blacklisting/
BleepingComputer
Ryuk Ransomware Adds IP and Computer Name Blacklisting
A new variant of the Ryuk Ransomware has been discovered that adds IP address and computer blacklisting so that matching computers will not be encrypted.
Oracle Fixes Critical Bug in WebLogic Server Web Services
Oracle on Tuesday announced a patch for a remote code execution vulnerability affecting specific versions of the WebLogic Server. The bug bypasses a previously fixed flaw and researchers say it is actively used in attacks. [...]
https://www.bleepingcomputer.com/news/security/oracle-fixes-critical-bug-in-weblogic-server-web-services/
Oracle on Tuesday announced a patch for a remote code execution vulnerability affecting specific versions of the WebLogic Server. The bug bypasses a previously fixed flaw and researchers say it is actively used in attacks. [...]
https://www.bleepingcomputer.com/news/security/oracle-fixes-critical-bug-in-weblogic-server-web-services/
BleepingComputer
Oracle Fixes Critical Bug in WebLogic Server Web Services
Oracle on Tuesday announced a patch for a remote code execution vulnerability affecting specific versions of the WebLogic Server. The bug bypasses a previously fixed flaw and researchers say it is actively used in attacks.
Microsoft Prepares to Autoupdate Windows 10 v1803 and Earlier Devices
Microsoft says that a feature update will be automatically initiated for devices running Windows 10 version 1803 and earlier using a machine learning (ML) based rollout process. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-prepares-to-autoupdate-windows-10-v1803-and-earlier-devices/
Microsoft says that a feature update will be automatically initiated for devices running Windows 10 version 1803 and earlier using a machine learning (ML) based rollout process. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-prepares-to-autoupdate-windows-10-v1803-and-earlier-devices/
BleepingComputer
Microsoft Prepares to Autoupdate Windows 10 v1803 and Earlier Devices
Microsoft says that a feature update will be automatically initiated for devices running Windows 10 version 1803 and earlier using a machine learning (ML) based rollout process.
Microsoft Edge Group Policies Preview Released for Testing
Microsoft has released an early preview of the group policies for the Microsoft Edge Chromium-based browser so that users can begin testing them. As this is a preview, some of the policies may not have been implemented in the current Google Canary and Dev builds. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-group-policies-preview-released-for-testing/
Microsoft has released an early preview of the group policies for the Microsoft Edge Chromium-based browser so that users can begin testing them. As this is a preview, some of the policies may not have been implemented in the current Google Canary and Dev builds. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-group-policies-preview-released-for-testing/
BleepingComputer
Microsoft Edge Group Policies Preview Released for Testing
Microsoft has released an early preview of the group policies for the Microsoft Edge Chromium-based browser so that users can begin testing them. As this is a preview, some of the policies may not have been implemented in the current Google Canary and Devβ¦
Hackers Disguise New JavaScript-Based Trojan as Game Cheat
Researchers discovered a new JavaScript-based and modular downloader Trojan camouflaged and distributed to targets in the form of game cheats via websites owned by its developers. [...]
https://www.bleepingcomputer.com/news/security/hackers-disguise-new-javascript-based-trojan-as-game-cheat/
Researchers discovered a new JavaScript-based and modular downloader Trojan camouflaged and distributed to targets in the form of game cheats via websites owned by its developers. [...]
https://www.bleepingcomputer.com/news/security/hackers-disguise-new-javascript-based-trojan-as-game-cheat/
BleepingComputer
Hackers Disguise New JavaScript-Based Trojan as Game Cheat
Researchers discovered a new JavaScript-based and modular downloader Trojan camouflaged and distributed to targets in the form of game cheats via websites owned by its developers.
Phishing Attack Exposes Data of 645,000 Oregon DHS Clients
The Department of Human Services (DHS) in Oregon today started notifying over half a million of its clients that their personal information was exposed to an unauthorized party in a data breach incident announced earlier this year. [...]
https://www.bleepingcomputer.com/news/security/phishing-attack-exposes-data-of-645-000-oregon-dhs-clients/
The Department of Human Services (DHS) in Oregon today started notifying over half a million of its clients that their personal information was exposed to an unauthorized party in a data breach incident announced earlier this year. [...]
https://www.bleepingcomputer.com/news/security/phishing-attack-exposes-data-of-645-000-oregon-dhs-clients/
BleepingComputer
Phishing Attack Exposes Data of 645,000 Oregon DHS Clients
The Department of Human Services (DHS) in Oregon today started notifying over half a million of its clients that their personal information was exposed to an unauthorized party in a data breach incident announced earlier this year.
Google Pushes Confidential Android Security Update to Pixel User
Google has mistakenly sent out a confidential Google-only dogfood build of their upcoming July 2019 security update to a Pixel owner. These builds are meant to be used internally by Google employees and are not meant to be pushed out to normal users. [...]
https://www.bleepingcomputer.com/news/google/google-pushes-confidential-android-security-update-to-pixel-user/
Google has mistakenly sent out a confidential Google-only dogfood build of their upcoming July 2019 security update to a Pixel owner. These builds are meant to be used internally by Google employees and are not meant to be pushed out to normal users. [...]
https://www.bleepingcomputer.com/news/google/google-pushes-confidential-android-security-update-to-pixel-user/
BleepingComputer
Google Pushes Confidential Android Security Update to Pixel User
Google has mistakenly sent out a confidential Google-only dogfood build of their upcoming July 2019 security update to a Pixel owner. These builds are meant to be used internally by Google employees and are not meant to be pushed out to normal users.
Modular Plurox Malware Is a Wormable Backdoor Cryptominer
A new modular backdoor malware strain capable of mining cryptocurrencies and of spreading to other machines on the local network with the help of SMB and UPnP plugins has been detected by Kaspersky security researchers. [...]
https://www.bleepingcomputer.com/news/security/modular-plurox-malware-is-a-wormable-backdoor-cryptominer/
A new modular backdoor malware strain capable of mining cryptocurrencies and of spreading to other machines on the local network with the help of SMB and UPnP plugins has been detected by Kaspersky security researchers. [...]
https://www.bleepingcomputer.com/news/security/modular-plurox-malware-is-a-wormable-backdoor-cryptominer/
BleepingComputer
Modular Plurox Malware Is a Wormable Backdoor Cryptominer
A new modular backdoor malware strain capable of mining cryptocurrencies and of spreading to other machines on the local network with the help of SMB and UPnP plugins has been detected by Kaspersky security researchers.
Malware Dropper Infects Linux Hosts with Resilient Cryptominer
A cryptomining dropper malware has been spotted by security researchers while gaining persistence on Linux hosts by adding cron jobs to reinfect the compromised machines after being removed. [...]
https://www.bleepingcomputer.com/news/security/malware-dropper-infects-linux-hosts-with-resilient-cryptominer/
A cryptomining dropper malware has been spotted by security researchers while gaining persistence on Linux hosts by adding cron jobs to reinfect the compromised machines after being removed. [...]
https://www.bleepingcomputer.com/news/security/malware-dropper-infects-linux-hosts-with-resilient-cryptominer/
BleepingComputer
Malware Dropper Infects Linux Hosts with Resilient Cryptominer
A cryptomining dropper malware has been spotted by security researchers while gaining persistence on Linux hosts by adding cron jobs to reinfect the compromised machines after being removed.
Windows 10 Insider Build 18922 With an Updated Feedback Hub
Microsoft has released Windows 10 Insider Preview Build 18922 to Insiders in the Fast ring. This build includes various fixes as well as a redesigned Language settings screen and a "similar feedback" feature for the Windows 10 Feedback Hub. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-18922-with-an-updated-feedback-hub/
Microsoft has released Windows 10 Insider Preview Build 18922 to Insiders in the Fast ring. This build includes various fixes as well as a redesigned Language settings screen and a "similar feedback" feature for the Windows 10 Feedback Hub. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-18922-with-an-updated-feedback-hub/
BleepingComputer
Windows 10 Insider Build 18922 With an Updated Feedback Hub
Microsoft has released Windows 10 Insider Preview Build 18922 to Insiders in the Fast ring. This build includes various fixes as well as a redesigned Language settings screen and a "similar feedback" feature for the Windows 10 Feedback Hub.
Microsoft Edge Chromium Released for Windows 7, 8, and 8.1
Microsoft has officially released their Chromium-based Microsoft Edge browser for the Windows 7, Windows 8, and Windows 8.1 operating systems. This will allow a wider range of Windows users to test out the upcoming chromium-based Edge browser and report bugs that they may encounter. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-chromium-released-for-windows-7-8-and-81/
Microsoft has officially released their Chromium-based Microsoft Edge browser for the Windows 7, Windows 8, and Windows 8.1 operating systems. This will allow a wider range of Windows users to test out the upcoming chromium-based Edge browser and report bugs that they may encounter. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-chromium-released-for-windows-7-8-and-81/
BleepingComputer
Microsoft Edge Chromium Released for Windows 7, 8, and 8.1
Microsoft has officially released their Chromium-based Microsoft Edge browser for the Windows 7, Windows 8, and Windows 8.1 operating systems. This will allow a wider range of Windows users to test out the upcoming chromium-based Edge browser and report bugsβ¦
Tor Browser 8.5.2 Released to Fix Critical Vulnerability
Tor Browser 8.5.2 has been released to fix a critical vulnerability in Firefox that was fixed by Mozilla this week. It is strongly advised that all Tor users install this update as soon as possible. [...]
https://www.bleepingcomputer.com/news/software/tor-browser-852-released-to-fix-critical-vulnerability/
Tor Browser 8.5.2 has been released to fix a critical vulnerability in Firefox that was fixed by Mozilla this week. It is strongly advised that all Tor users install this update as soon as possible. [...]
https://www.bleepingcomputer.com/news/software/tor-browser-852-released-to-fix-critical-vulnerability/
BleepingComputer
Tor Browser 8.5.2 Released to Fix Critical Vulnerability
Tor Browser 8.5.2 has been released to fix a critical vulnerability in Firefox that was fixed by Mozilla this week. It is strongly advised that all Tor users install this update as soon as possible.
New Standalone Cortana Beta App Coming to Windows 10 Insiders
In the latest Windows 10 Insider build, Microsoft is testing a new hidden standalone Cortana app that gives us a glimpse of the future for Microsoft's personal assistant. [...]
https://www.bleepingcomputer.com/news/microsoft/new-standalone-cortana-beta-app-coming-to-windows-10-insiders/
In the latest Windows 10 Insider build, Microsoft is testing a new hidden standalone Cortana app that gives us a glimpse of the future for Microsoft's personal assistant. [...]
https://www.bleepingcomputer.com/news/microsoft/new-standalone-cortana-beta-app-coming-to-windows-10-insiders/
BleepingComputer
New Standalone Cortana Beta App Coming to Windows 10 Insiders
In the latest Windows 10 Insider build, Microsoft is testing a new hidden standalone Cortana app that gives us a glimpse of the future for Microsoft's personal assistant.
Samba Vulnerability Can Crash Active Directory Components
A couple of bugs in some versions of Samba software can help an attacker crash key processes on the network in charge of accessing directory, application, and server services. [...]
https://www.bleepingcomputer.com/news/security/samba-vulnerability-can-crash-active-directory-components/
A couple of bugs in some versions of Samba software can help an attacker crash key processes on the network in charge of accessing directory, application, and server services. [...]
https://www.bleepingcomputer.com/news/security/samba-vulnerability-can-crash-active-directory-components/
BleepingComputer
Samba Vulnerability Can Crash Active Directory Components
A couple of bugs in some versions of Samba software can help an attacker crash key processes on the network in charge of providing directory, application, and other services.
The U.S. Loses Over $1.5 Trillion in a Decade of Data Breaches
A decade's collection of data breaches shows a bleak picture with billions of records exposed in this type of incidents and financial damages of more than $1.6 trillion. [...]
https://www.bleepingcomputer.com/news/security/the-us-loses-over-15-trillion-in-a-decade-of-data-breaches/
A decade's collection of data breaches shows a bleak picture with billions of records exposed in this type of incidents and financial damages of more than $1.6 trillion. [...]
https://www.bleepingcomputer.com/news/security/the-us-loses-over-15-trillion-in-a-decade-of-data-breaches/
BleepingComputer
The U.S. Loses Over $1.5 Trillion in a Decade of Data Breaches
A decade's collection of data breaches shows a bleak picture with billions of records exposed in this type of incidents and financial damages of more than $1.6 trillion.
Linux Cryptominer Uses Virtual Machines to Attack Windows, macOS
A new cryptocurrency mining malware dubbed LoudMiner uses virtualization software to deploy a Linux XMRig coinminer variant on Windows and macOS systems via a Tiny Core Linux virtual machine. [...]
https://www.bleepingcomputer.com/news/security/linux-cryptominer-uses-virtual-machines-to-attack-windows-macos/
A new cryptocurrency mining malware dubbed LoudMiner uses virtualization software to deploy a Linux XMRig coinminer variant on Windows and macOS systems via a Tiny Core Linux virtual machine. [...]
https://www.bleepingcomputer.com/news/security/linux-cryptominer-uses-virtual-machines-to-attack-windows-macos/
BleepingComputer
Linux Cryptominer Uses Virtual Machines to Attack Windows, macOS
A new cryptocurrency mining malware dubbed LoudMiner uses virtualization software to deploy a Linux XMRig coinminer variant on Windows and macOS systems via a Tiny Core Linux virtual machine.
Firefox 0-day Used in Targeted Attacks Against Cryptocurrency Firms
The employees of Coinbase and other cryptocurrency firms were the target of an attack utilizing a recent Firefox zero-day and malware payloads in order to gain access to victim's computers, networks, and sensitive information. [...]
https://www.bleepingcomputer.com/news/security/firefox-0-day-used-in-targeted-attacks-against-cryptocurrency-firms/
The employees of Coinbase and other cryptocurrency firms were the target of an attack utilizing a recent Firefox zero-day and malware payloads in order to gain access to victim's computers, networks, and sensitive information. [...]
https://www.bleepingcomputer.com/news/security/firefox-0-day-used-in-targeted-attacks-against-cryptocurrency-firms/
BleepingComputer
Firefox 0-day Used in Targeted Attacks Against Cryptocurrency Firms
The employees of Coinbase and other cryptocurrency firms were the target of an attack utilizing a recent Firefox zero-day and malware payloads in order to gain access to victim's computers, networks, and sensitive information.
Turla Espionage Group Hacks OilRig APT Infrastructure
Security researchers tracking activities of various nation-state cyber-espionage groups found evidence suggesting that the Turla group hijacked the infrastructure of OilRig hackers to compromise a target both actors were interested in. [...]
https://www.bleepingcomputer.com/news/security/turla-espionage-group-hacks-oilrig-apt-infrastructure/
Security researchers tracking activities of various nation-state cyber-espionage groups found evidence suggesting that the Turla group hijacked the infrastructure of OilRig hackers to compromise a target both actors were interested in. [...]
https://www.bleepingcomputer.com/news/security/turla-espionage-group-hacks-oilrig-apt-infrastructure/
BleepingComputer
Turla Espionage Group Hacks OilRig APT Infrastructure
Security researchers tracking activities of various nation-state cyber-espionage groups found evidence suggesting that the Turla group hijacked the infrastructure of OilRig hackers to compromise a target both actors were interested in.