Russian Hackers Use Iranian Threat Group's Tools, Servers as Cover
The Russian-backed Turla cyber-espionage group used stolen malware and hijacked infrastructure from the Iranian-sponsored OilRig to attack targets from dozens of countries according to a joint United Kingdom's National Cyber Security Centre (NCSC) and U.S. National Security Agency (NSA) advisory published today. [...]
https://www.bleepingcomputer.com/news/security/russian-hackers-use-iranian-threat-groups-tools-servers-as-cover/
The Russian-backed Turla cyber-espionage group used stolen malware and hijacked infrastructure from the Iranian-sponsored OilRig to attack targets from dozens of countries according to a joint United Kingdom's National Cyber Security Centre (NCSC) and U.S. National Security Agency (NSA) advisory published today. [...]
https://www.bleepingcomputer.com/news/security/russian-hackers-use-iranian-threat-groups-tools-servers-as-cover/
BleepingComputer
Russian Hackers Use Iranian Threat Group's Tools, Servers as Cover
The Russian-backed Turla cyber-espionage group used stolen malware and hijacked infrastructure from the Iranian-sponsored OilRig to attack targets from dozens of countries according to a joint United Kingdom's National Cyber Security Centre (NCSC) and U.S.β¦
Malicious Apps on Alexa or Google Home Can Spy or Steal Passwords
Google and Amazon smart speakers can be leveraged to record user conversation or to phish for passwords through malicious voice apps, security researchers warn. [...]
https://www.bleepingcomputer.com/news/security/malicious-apps-on-alexa-or-google-home-can-spy-or-steal-passwords/
Google and Amazon smart speakers can be leveraged to record user conversation or to phish for passwords through malicious voice apps, security researchers warn. [...]
https://www.bleepingcomputer.com/news/security/malicious-apps-on-alexa-or-google-home-can-spy-or-steal-passwords/
BleepingComputer
Malicious Apps on Alexa or Google Home Can Spy or Steal Passwords
Google and Amazon smart speakers can be leveraged to record user conversation or to phish for passwords through malicious voice apps, security researchers warn.
Samsung Galaxy S10 Banned by Banks Due to Buggy Fingerprint Reader
At least three banks operating in the UK have decided to temporarily suspend their mobile banking services for Samsung Galaxy S10 users. [...]
https://www.bleepingcomputer.com/news/security/samsung-galaxy-s10-banned-by-banks-due-to-buggy-fingerprint-reader/
At least three banks operating in the UK have decided to temporarily suspend their mobile banking services for Samsung Galaxy S10 users. [...]
https://www.bleepingcomputer.com/news/security/samsung-galaxy-s10-banned-by-banks-due-to-buggy-fingerprint-reader/
BleepingComputer
Samsung Galaxy S10 Banned by Banks Due to Buggy Fingerprint Reader
At least three banks operating in the UK have decided to temporarily suspend their mobile banking services for Samsung Galaxy S10 users.
Retina-X Banned by FTC From Selling Their βStalkingβ Apps
The U.S. Federal Trade Commission (FTC) says that a settlement has been reached with Retina-X Studios, LLC (Retina-X), the company behind three 'stalkerware' mobile applications, that bars it from selling the apps unless they are used for legitimate purposes. [...]
https://www.bleepingcomputer.com/news/security/retina-x-banned-by-ftc-from-selling-their-stalking-apps/
The U.S. Federal Trade Commission (FTC) says that a settlement has been reached with Retina-X Studios, LLC (Retina-X), the company behind three 'stalkerware' mobile applications, that bars it from selling the apps unless they are used for legitimate purposes. [...]
https://www.bleepingcomputer.com/news/security/retina-x-banned-by-ftc-from-selling-their-stalking-apps/
BleepingComputer
Retina-X Banned by FTC From Selling Their βStalkingβ Apps
The U.S. Federal Trade Commission (FTC) says that a settlement has been reached with Retina-X Studios, LLC (Retina-X), the company behind three 'stalkerware' mobile applications, that bars it from selling the apps unless they are used for legitimate purposes.
Firefox 70 Released with In-Browser Data Breach Notifications
Mozilla has officially released Firefox 70 for Windows, Mac, and Linux and with it comes additional protections for user's privacy and passwords. This includes the new social tracking protection feature, a new Privacy protections report, and an integrated data breach notification service for your saved logins. [...]
https://www.bleepingcomputer.com/news/software/firefox-70-released-with-in-browser-data-breach-notifications/
Mozilla has officially released Firefox 70 for Windows, Mac, and Linux and with it comes additional protections for user's privacy and passwords. This includes the new social tracking protection feature, a new Privacy protections report, and an integrated data breach notification service for your saved logins. [...]
https://www.bleepingcomputer.com/news/software/firefox-70-released-with-in-browser-data-breach-notifications/
BleepingComputer
Firefox 70 Released with In-Browser Data Breach Notifications
Mozilla has officially released Firefox 70 for Windows, Mac, and Linux and with it comes additional protections for user's privacy and passwords. This includes the new social tracking protection feature, a new Privacy protections report, and an integratedβ¦
Billing Provider Billtrust Suffers Outage After Malware Attack
U.S. financial services provider Billtrust experienced an outage affecting all of its services after some of the company's computing systems were impacted by a malware attack on October 17. [...]
https://www.bleepingcomputer.com/news/security/billing-provider-billtrust-suffers-outage-after-malware-attack/
U.S. financial services provider Billtrust experienced an outage affecting all of its services after some of the company's computing systems were impacted by a malware attack on October 17. [...]
https://www.bleepingcomputer.com/news/security/billing-provider-billtrust-suffers-outage-after-malware-attack/
BleepingComputer
Billing Provider Billtrust Suffers Outage After Malware Attack
U.S. financial services provider Billtrust experienced an outage affecting all of its services after some of the company's computing systems were impacted by a malware attack on October 17.
Scammers Behind β¬10 Million BEC Fraud Arrested in Spain
Three people, part of a Business Email Compromise (BEC) scammer group that stole roughly β¬10.7 million ($11,900,000) from 12 companies, were arrested in Spain by the Guardia Civil as part of Operation Lavanco. [...]
https://www.bleepingcomputer.com/news/security/scammers-behind-10-million-bec-fraud-arrested-in-spain/
Three people, part of a Business Email Compromise (BEC) scammer group that stole roughly β¬10.7 million ($11,900,000) from 12 companies, were arrested in Spain by the Guardia Civil as part of Operation Lavanco. [...]
https://www.bleepingcomputer.com/news/security/scammers-behind-10-million-bec-fraud-arrested-in-spain/
BleepingComputer
Scammers Behind β¬10 Million BEC Fraud Arrested in Spain
Three people, part of a Business Email Compromise (BEC) scammer group that stole roughly β¬10.7 million ($11,900,000) from 12 companies, were arrested in Spain by the Guardia Civil as part of Operation Lavanco.
MedusaLocker Ransomware Wants Its Share of Your Money
A new ransomware called MedusaLocker is being actively distributed and victims have been seen from all over the world. It is not known at this time, how the attacker is distributing the ransomware. [...]
https://www.bleepingcomputer.com/news/security/medusalocker-ransomware-wants-its-share-of-your-money/
A new ransomware called MedusaLocker is being actively distributed and victims have been seen from all over the world. It is not known at this time, how the attacker is distributing the ransomware. [...]
https://www.bleepingcomputer.com/news/security/medusalocker-ransomware-wants-its-share-of-your-money/
BleepingComputer
MedusaLocker Ransomware Wants Its Share of Your Money
A new ransomware called MedusaLocker is being actively distributed and victims have been seen from all over the world. It is not known at this time, how the attacker is distributing the ransomware.
U.S. Superior Court Systems Hacked to Spread Phishing Emails
A Texas man was sentenced today to 145 months in federal prison for hacking the Los Angeles Superior Court (LASC) computer system and using its servers to deliver around 2 million malspam emails. [...]
https://www.bleepingcomputer.com/news/security/us-superior-court-systems-hacked-to-spread-phishing-emails/
A Texas man was sentenced today to 145 months in federal prison for hacking the Los Angeles Superior Court (LASC) computer system and using its servers to deliver around 2 million malspam emails. [...]
https://www.bleepingcomputer.com/news/security/us-superior-court-systems-hacked-to-spread-phishing-emails/
BleepingComputer
U.S. Superior Court Systems Hacked to Spread Phishing Emails
A Texas man was sentenced today to 145 months in federal prison for hacking the Los Angeles Superior Court (LASC) computer system and using its servers to deliver around 2 million malspam emails.
Chrome 78 Released With DoH Trial, Tab Hover Cards, and More
Google has released Chrome 78 to the Stable desktop channel, with new improvements, features, and 37 security fixes. Included in this release is the DoH trial for all users on supported DNS providers, a basic Tab Hover Cards, and some other features behind experimental flags. [...]
https://www.bleepingcomputer.com/news/software/chrome-78-released-with-doh-trial-tab-hover-cards-and-more/
Google has released Chrome 78 to the Stable desktop channel, with new improvements, features, and 37 security fixes. Included in this release is the DoH trial for all users on supported DNS providers, a basic Tab Hover Cards, and some other features behind experimental flags. [...]
https://www.bleepingcomputer.com/news/software/chrome-78-released-with-doh-trial-tab-hover-cards-and-more/
BleepingComputer
Chrome 78 Released With DoH Trial, Tab Hover Cards, and More
Google has released Chrome 78 to the Stable desktop channel, with new improvements, features, and 37 security fixes. Included in this release is the DoH trial for all users on supported DNS providers, a basic Tab Hover Cards, and some other features behindβ¦
Windows 10 Insider Build 19008 Released With Fixes
Microsoft has released Windows 10 Insider Preview Build 19008 (20H1) to Insiders in the Fast ring and brings various fixes and improvements, but no new features. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-19008-released-with-fixes/
Microsoft has released Windows 10 Insider Preview Build 19008 (20H1) to Insiders in the Fast ring and brings various fixes and improvements, but no new features. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-19008-released-with-fixes/
BleepingComputer
Windows 10 Insider Build 19008 Released With Fixes
Microsoft has released Windows 10 Insider Preview Build 19008 (20H1) to Insiders in the Fast ring and brings various fixes and improvements, but no new features.
New CPDoS Web Cache Poisoning Attacks Impact Sites Using Popular CDNs
Details have emerged about a new class of web cache poisoning attacks that could be used to deny users access to resources delivered through a content delivery network (CDN). [...]
https://www.bleepingcomputer.com/news/security/new-cpdos-web-cache-poisoning-attacks-impact-sites-using-popular-cdns/
Details have emerged about a new class of web cache poisoning attacks that could be used to deny users access to resources delivered through a content delivery network (CDN). [...]
https://www.bleepingcomputer.com/news/security/new-cpdos-web-cache-poisoning-attacks-impact-sites-using-popular-cdns/
BleepingComputer
New CPDoS Web Cache Poisoning Attacks Impact Sites Using Popular CDNs
Details have emerged about a new class of web cache poisoning attacks that could be used to deny users access to resources delivered through a content delivery network (CDN).
Office 365 Adds Malware ZAP Toggle to Security & Compliance Center
Microsoft's developers are adding a new malware Zero-hour Auto Purge (ZAP) toggle to the Office 365 Security & Compliance Center to allow configuration without using a PowerShell βββββββcmdlet. [...]
https://www.bleepingcomputer.com/news/security/office-365-adds-malware-zap-toggle-to-security-and-compliance-center/
Microsoft's developers are adding a new malware Zero-hour Auto Purge (ZAP) toggle to the Office 365 Security & Compliance Center to allow configuration without using a PowerShell βββββββcmdlet. [...]
https://www.bleepingcomputer.com/news/security/office-365-adds-malware-zap-toggle-to-security-and-compliance-center/
BleepingComputer
Office 365 Adds Malware ZAP Toggle to Security & Compliance Center
Microsoft's developers are adding a new malware Zero-hour Auto Purge (ZAP) toggle to the Office 365 Security & Compliance Center to allow configuration without using a PowerShell βββββββcmdlet.
FBI Warns Govt Agencies, SMBs to Defend Against E-Skimming Threats
The U.S. Federal Bureau of Investigation (FBI) issued a warning to increase awareness on current e-skimming threats targeting both small and medium-sized businesses and government agencies that process online payments, as well as defense tips to fend them off. [...]
https://www.bleepingcomputer.com/news/security/fbi-warns-govt-agencies-smbs-to-defend-against-e-skimming-threats/
The U.S. Federal Bureau of Investigation (FBI) issued a warning to increase awareness on current e-skimming threats targeting both small and medium-sized businesses and government agencies that process online payments, as well as defense tips to fend them off. [...]
https://www.bleepingcomputer.com/news/security/fbi-warns-govt-agencies-smbs-to-defend-against-e-skimming-threats/
BleepingComputer
FBI Warns Govt Agencies, SMBs to Defend Against E-Skimming Threats
The U.S. Federal Bureau of Investigation (FBI) issued a warning to increase awareness on current e-skimming threats targeting both small and medium-sized businesses and government agencies that process online payments, as well as defense tips to fend themβ¦
FBI Updates Initiative to Protect U.S. Elections from Cyberattacks
FBI has updated and expanded the resources and tools designed to help political campaigns, private businesses, and individuals to better understand and mitigate risks posed by foreign entities' cyber intrusions and disinformation efforts during the 2020 U.S. election season. [...]
https://www.bleepingcomputer.com/news/security/fbi-updates-initiative-to-protect-us-elections-from-cyberattacks/
FBI has updated and expanded the resources and tools designed to help political campaigns, private businesses, and individuals to better understand and mitigate risks posed by foreign entities' cyber intrusions and disinformation efforts during the 2020 U.S. election season. [...]
https://www.bleepingcomputer.com/news/security/fbi-updates-initiative-to-protect-us-elections-from-cyberattacks/
BleepingComputer
FBI Updates Initiative to Protect U.S. Elections from Cyberattacks
FBI has updated and expanded the resources and tools designed to help political campaigns, private businesses, and individuals to better understand and mitigate risks posed by foreign entities' cyber intrusions and disinformation efforts during the 2020 U.S.β¦
Discord Turned Into an Info-Stealing Backdoor by New Malware
A new malware is targeting Discord users by modifying the Windows Discord client so that it is transformed into a backdoor and an information-stealing Trojan. [...]
https://www.bleepingcomputer.com/news/security/discord-turned-into-an-info-stealing-backdoor-by-new-malware/
A new malware is targeting Discord users by modifying the Windows Discord client so that it is transformed into a backdoor and an information-stealing Trojan. [...]
https://www.bleepingcomputer.com/news/security/discord-turned-into-an-info-stealing-backdoor-by-new-malware/
BleepingComputer
Discord Turned Into an Info-Stealing Backdoor by New Malware
A new malware is targeting Discord users by modifying the Windows Discord client so that it is transformed into a backdoor and an information-stealing Trojan.
FTC Issues Guidance On Protecting Against SIM Swap Attacks
The U.S. Federal Trade Commission (FTC) issued guidance on how to protect yourself from SIM swapping attacks used by scammers to take control of your phone number, to bypass SMS-based multi-factor authentication (MFA) on your account, and steal your credentials. [...]
https://www.bleepingcomputer.com/news/security/ftc-issues-guidance-on-protecting-against-sim-swap-attacks/
The U.S. Federal Trade Commission (FTC) issued guidance on how to protect yourself from SIM swapping attacks used by scammers to take control of your phone number, to bypass SMS-based multi-factor authentication (MFA) on your account, and steal your credentials. [...]
https://www.bleepingcomputer.com/news/security/ftc-issues-guidance-on-protecting-against-sim-swap-attacks/
BleepingComputer
FTC Issues Guidance On Protecting Against SIM Swap Attacks
The U.S. Federal Trade Commission (FTC) issued guidance on how to protect yourself from SIM swapping attacks used by scammers to take control of your phone number, to bypass SMS-based multi-factor authentication (MFA) on your account, and steal your credentials.
Hacker Plants Keylogger Devices on Company Systems Faces 12yr in Jail
A hacker admitted to planting hardware keyloggers on computers belonging to two companies to get unauthorized to their networks and steal proprietary data. He now faces 12 years of prison time. [...]
https://www.bleepingcomputer.com/news/security/hacker-plants-keylogger-devices-on-company-systems-faces-12yr-in-jail/
A hacker admitted to planting hardware keyloggers on computers belonging to two companies to get unauthorized to their networks and steal proprietary data. He now faces 12 years of prison time. [...]
https://www.bleepingcomputer.com/news/security/hacker-plants-keylogger-devices-on-company-systems-faces-12yr-in-jail/
BleepingComputer
Hacker Plants Keylogger Devices on Company Systems Faces 12yr in Jail
A hacker admitted to planting hardware keyloggers on computers belonging to two companies to get unauthorized to their networks and steal proprietary data. He now faces 12 years of prison time.
Android Apps Identify Google IPs to Delay Malicious Behavior
Dozens of Android apps designed to flood phone screens with ads hide their malicious behavior when a Google IP is detected. Collectively, they were installed 8 million times. [...]
https://www.bleepingcomputer.com/news/security/android-apps-identify-google-ips-to-delay-malicious-behavior/
Dozens of Android apps designed to flood phone screens with ads hide their malicious behavior when a Google IP is detected. Collectively, they were installed 8 million times. [...]
https://www.bleepingcomputer.com/news/security/android-apps-identify-google-ips-to-delay-malicious-behavior/
BleepingComputer
Android Apps Identify Google IPs to Delay Malicious Behavior
Dozens of Android apps designed to flood phone screens with ads hide their malicious behavior when a Google IP is detected. Collectively, they were installed 8 million times.
iOS Clicker Trojan Malware Found in 17 Apps in Apple's App Store
More than a dozen iOS apps infected with clicker Trojan malware and distributed via the Apple App Store were found to perform ad fraud-related tasks in the background, using the command and control servers of a similar Android ad fraud campaign. [...]
https://www.bleepingcomputer.com/news/security/ios-clicker-trojan-malware-found-in-17-apps-in-apples-app-store/
More than a dozen iOS apps infected with clicker Trojan malware and distributed via the Apple App Store were found to perform ad fraud-related tasks in the background, using the command and control servers of a similar Android ad fraud campaign. [...]
https://www.bleepingcomputer.com/news/security/ios-clicker-trojan-malware-found-in-17-apps-in-apples-app-store/
BleepingComputer
iOS Clicker Trojan Malware Found in 17 Apps in Apple's App Store
More than a dozen iOS apps infected with clicker Trojan malware and distributed via the Apple App Store were found to perform ad fraud-related tasks in the background, using the command and control servers of a similar Android ad fraud campaign.
Cash App Scammers Deal Their Cons on Twitter, Instagram, YouTube
Fraudsters taking advantage of the legitimate 'free money' campaigns for the Cash App peer-to-peer payment service target users Twitter, Instagram, and YouTube with fake promises of financial gains. [...]
https://www.bleepingcomputer.com/news/security/cash-app-scammers-deal-their-cons-on-twitter-instagram-youtube/
Fraudsters taking advantage of the legitimate 'free money' campaigns for the Cash App peer-to-peer payment service target users Twitter, Instagram, and YouTube with fake promises of financial gains. [...]
https://www.bleepingcomputer.com/news/security/cash-app-scammers-deal-their-cons-on-twitter-instagram-youtube/
BleepingComputer
Cash App Scammers Deal Their Cons on Twitter, Instagram, YouTube
Fraudsters taking advantage of the legitimate 'free money' campaigns for the Cash App peer-to-peer payment service target users Twitter, Instagram, and YouTube with fake promises of financial gains.