The Week in Ransomware - November 15th 2019 - Holy Ransomware
What better way to target a large amount of victims, then to go after providers with numerous customers, which is what we saw this week when SmarterASP.net was hit by the Snatch Ransomware and a new ransomware called NextCry specifically targets the NextCloud file sharing solution. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-november-15th-2019-holy-ransomware/
What better way to target a large amount of victims, then to go after providers with numerous customers, which is what we saw this week when SmarterASP.net was hit by the Snatch Ransomware and a new ransomware called NextCry specifically targets the NextCloud file sharing solution. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-november-15th-2019-holy-ransomware/
BleepingComputer
The Week in Ransomware - November 15th 2019 - Holy Ransomware
What better way to target a large amount of victims, then to go after providers with numerous customers, which is what we saw this week when SmarterASP.net was hit by the Snatch Ransomware and a new ransomware called NextCry specifically targets the NextCloud fileβ¦
Microsoft Office 365 Admins Targeted by Ongoing Phishing Campaign
A new phishing campaign is actively targeting Microsoft Office 365 administrators with the end goal of compromising their entire domain and using newly created accounts on the domain to deliver future phishing emails. [...]
https://www.bleepingcomputer.com/news/security/microsoft-office-365-admins-targeted-by-ongoing-phishing-campaign/
A new phishing campaign is actively targeting Microsoft Office 365 administrators with the end goal of compromising their entire domain and using newly created accounts on the domain to deliver future phishing emails. [...]
https://www.bleepingcomputer.com/news/security/microsoft-office-365-admins-targeted-by-ongoing-phishing-campaign/
BleepingComputer
Microsoft Office 365 Admins Targeted by Ongoing Phishing Campaign
A new phishing campaign is actively targeting Microsoft Office 365 administrators with the end goal of compromising their entire domain and using newly created accounts on the domain to deliver future phishing emails.
Microsoft Removes Windows 10 1909 Realtek Driver Update Block
Microsoft removed a compatibility hold caused by outdated Realtek Bluetooth drivers and published a support document describing a workaround designed to help Windows 10 users still affected by the safeguard hold. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-removes-windows-10-1909-realtek-driver-update-block/
Microsoft removed a compatibility hold caused by outdated Realtek Bluetooth drivers and published a support document describing a workaround designed to help Windows 10 users still affected by the safeguard hold. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-removes-windows-10-1909-realtek-driver-update-block/
BleepingComputer
Microsoft Removes Windows 10 1909 Realtek Driver Update Block
Microsoft removed a compatibility hold caused by outdated Realtek Bluetooth drivers and published a support document describing a workaround designed to help Windows 10 users still affected by the safeguard hold.
How to Download the Windows 10 1909 ISO From Microsoft
Now that Microsoft has released Windows 10 1909, otherwise known as the November 2019 Update, ISO disk images are also available. As it is always a good practice to have the original media for the latest version of Windows 10 available, we will explain how you can download the Windows 10 1909 ISO directly from Microsoft. [...]
https://www.bleepingcomputer.com/news/microsoft/how-to-download-the-windows-10-1909-iso-from-microsoft/
Now that Microsoft has released Windows 10 1909, otherwise known as the November 2019 Update, ISO disk images are also available. As it is always a good practice to have the original media for the latest version of Windows 10 available, we will explain how you can download the Windows 10 1909 ISO directly from Microsoft. [...]
https://www.bleepingcomputer.com/news/microsoft/how-to-download-the-windows-10-1909-iso-from-microsoft/
BleepingComputer
How to Download the Windows 10 1909 ISO From Microsoft
Now that Microsoft has released Windows 10 1909, otherwise known as the November 2019 Update, ISO disk images are also available. As it is always a good practice to have the original media for the latest version of Windows 10 available, we will explain howβ¦
Microsoft to Stop Supporting Cortana on Android and iOS
Microsoft has announced that they will no longer support the Cortana digital personal assistant app on Android and iOS devices starting in 2020. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-to-stop-supporting-cortana-on-android-and-ios/
Microsoft has announced that they will no longer support the Cortana digital personal assistant app on Android and iOS devices starting in 2020. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-to-stop-supporting-cortana-on-android-and-ios/
BleepingComputer
Microsoft to Stop Supporting Cortana on Android and iOS
Microsoft has announced that they will no longer support the Cortana digital personal assistant app on Android and iOS devices starting in 2020.
Intel is Removing End of Life Drivers and BIOS Downloads
If you are user of old Intel hardware, be sure to create a backup of your drivers or BIOS updates as Intel will no longer make them available for download once they reach end of life. [...]
https://www.bleepingcomputer.com/news/hardware/intel-is-removing-end-of-life-drivers-and-bios-downloads/
If you are user of old Intel hardware, be sure to create a backup of your drivers or BIOS updates as Intel will no longer make them available for download once they reach end of life. [...]
https://www.bleepingcomputer.com/news/hardware/intel-is-removing-end-of-life-drivers-and-bios-downloads/
BleepingComputer
Intel is Removing End of Life Drivers and BIOS Downloads
If you are user of old Intel hardware, be sure to create a backup of your drivers or BIOS updates as Intel will no longer make them available for download once they reach end of life.
Linux, Windows Users Targeted With New ACBackdoor Malware
Researchers have discovered a new multi-platform backdoor that infects Windows and Linux systems allowing the attackers to run malicious code and binaries on the compromised machines. [...]
https://www.bleepingcomputer.com/news/security/linux-windows-users-targeted-with-new-acbackdoor-malware/
Researchers have discovered a new multi-platform backdoor that infects Windows and Linux systems allowing the attackers to run malicious code and binaries on the compromised machines. [...]
https://www.bleepingcomputer.com/news/security/linux-windows-users-targeted-with-new-acbackdoor-malware/
BleepingComputer
Linux, Windows Users Targeted With New ACBackdoor Malware
Researchers have discovered a new multi-platform backdoor that infects Windows and Linux systems allowing the attackers to run malicious code and binaries on the compromised machines.
Buran Ransomware Infects PCs via Microsoft Excel Web Queries
A new spam campaign has been spotted distributing the Buran Ransomware through IQY file attachments. When opened, these Microsoft Excel Web Query attachments will execute a remote command that installs the ransomware onto a victim's computer. [...]
https://www.bleepingcomputer.com/news/security/buran-ransomware-infects-pcs-via-microsoft-excel-web-queries/
A new spam campaign has been spotted distributing the Buran Ransomware through IQY file attachments. When opened, these Microsoft Excel Web Query attachments will execute a remote command that installs the ransomware onto a victim's computer. [...]
https://www.bleepingcomputer.com/news/security/buran-ransomware-infects-pcs-via-microsoft-excel-web-queries/
BleepingComputer
Buran Ransomware Infects PCs via Microsoft Excel Web Queries
A new spam campaign has been spotted distributing the Buran Ransomware through IQY file attachments. When opened, these Microsoft Excel Web Query attachments will execute a remote command that installs the ransomware onto a victim's computer.
IRS Publishes Guidance to Help Taxpayers Fight Identity Theft
Security Summit partners including the Internal Revenue Service (IRS), the US tax industry, and several state tax agencies published security guidance and updated content to highlight identity theft precautions to be taken during the incoming holiday shopping season. [...]
https://www.bleepingcomputer.com/news/security/irs-publishes-guidance-to-help-taxpayers-fight-identity-theft/
Security Summit partners including the Internal Revenue Service (IRS), the US tax industry, and several state tax agencies published security guidance and updated content to highlight identity theft precautions to be taken during the incoming holiday shopping season. [...]
https://www.bleepingcomputer.com/news/security/irs-publishes-guidance-to-help-taxpayers-fight-identity-theft/
BleepingComputer
IRS Publishes Guidance to Help Taxpayers Fight Identity Theft
Security Summit partners including the Internal Revenue Service (IRS), the US tax industry, and several state tax agencies published security guidance and updated content to highlight identity theft precautions to be taken during the incoming holiday shoppingβ¦
Google Chrome's 'Close Other Tabs' Option Is Back!
Google just released Google Chrome 78.0.3904.108 and with it is the return of the 'Close other tabs' feature that Google mistakenly took out in previous versions. [...]
https://www.bleepingcomputer.com/news/google/google-chromes-close-other-tabs-option-is-back/
Google just released Google Chrome 78.0.3904.108 and with it is the return of the 'Close other tabs' feature that Google mistakenly took out in previous versions. [...]
https://www.bleepingcomputer.com/news/google/google-chromes-close-other-tabs-option-is-back/
BleepingComputer
Google Chrome's 'Close Other Tabs' Option Is Back!
Google just released Google Chrome 78.0.3904.108 and with it is the return of the 'Close other tabs' feature that Google mistakenly took out in previous versions.
Microsoft Is Adding DNS-Over-HTTPS (DoH) to Windows 10
Microsoft announced that it's working on adding support for the privacy-focused DNS over HTTPS (DoH) protocol in a future Windows 10 release, while also keeping the addition of DNS over TLS (DoT) on the table. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-is-adding-dns-over-https-doh-to-windows-10/
Microsoft announced that it's working on adding support for the privacy-focused DNS over HTTPS (DoH) protocol in a future Windows 10 release, while also keeping the addition of DNS over TLS (DoT) on the table. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-is-adding-dns-over-https-doh-to-windows-10/
BleepingComputer
Microsoft Is Adding DNS-Over-HTTPS (DoH) to Windows 10
Microsoft announced that it's working on adding support for the privacy-focused DNS over HTTPS (DoH) protocol in a future Windows 10 release, while also keeping the addition of DNS over TLS (DoT) on the table.
Macy's Customer Payment Info Stolen in Magecart Data Breach
Macy's has announced that they have suffered a data breach due to their web site being hacked with malicious scripts that steal customer's payment information. [...]
https://www.bleepingcomputer.com/news/security/macys-customer-payment-info-stolen-in-magecart-data-breach/
Macy's has announced that they have suffered a data breach due to their web site being hacked with malicious scripts that steal customer's payment information. [...]
https://www.bleepingcomputer.com/news/security/macys-customer-payment-info-stolen-in-magecart-data-breach/
BleepingComputer
Macy's Customer Payment Info Stolen in Magecart Data Breach
Macy's has announced that they have suffered a data breach due to their web site being hacked with malicious scripts that steal customer's payment information.
Louisiana Government Suffers Outage Due to Ransomware Attack
The state government of Louisiana was hit by a ransomware attack today that impacted numerous state services including the Office of Motor Vehicles, the Department of Health, and the Department of Transportion and Development. [...]
https://www.bleepingcomputer.com/news/security/louisiana-government-suffers-outage-due-to-ransomware-attack/
The state government of Louisiana was hit by a ransomware attack today that impacted numerous state services including the Office of Motor Vehicles, the Department of Health, and the Department of Transportion and Development. [...]
https://www.bleepingcomputer.com/news/security/louisiana-government-suffers-outage-due-to-ransomware-attack/
BleepingComputer
Louisiana Government Suffers Outage Due to Ransomware Attack
The state government of Louisiana was hit by a ransomware attack today that impacted numerous state services including the Office of Motor Vehicles, the Department of Health, and the Department of Transportion and Development.
Shade Ransomware Is the Most Actively Distributed Malware via Email
During the first half of 2019, the Shade Ransomware (also known as Troldesh) was the most actively distributed malware via malicious email phishing campaigns according to Singapore-based Group-IB security outfit. [...]
https://www.bleepingcomputer.com/news/security/shade-ransomware-is-the-most-actively-distributed-malware-via-email/
During the first half of 2019, the Shade Ransomware (also known as Troldesh) was the most actively distributed malware via malicious email phishing campaigns according to Singapore-based Group-IB security outfit. [...]
https://www.bleepingcomputer.com/news/security/shade-ransomware-is-the-most-actively-distributed-malware-via-email/
BleepingComputer
Shade Ransomware Is the Most Actively Distributed Malware via Email
During the first half of 2019, the Shade Ransomware (also known as Troldesh) was the most actively distributed malware via malicious email phishing campaigns according to Singapore-based Group-IB security outfit.
Android Camera App Bug Lets Apps Record Video Without Permission
A new vulnerability has been found in the Camera apps for millions, if not hundreds of millions, of Android devices that could allow other apps to record video, take pictures, and extract GPS data from media without having the required permissions. [...]
https://www.bleepingcomputer.com/news/security/android-camera-app-bug-lets-apps-record-video-without-permission/
A new vulnerability has been found in the Camera apps for millions, if not hundreds of millions, of Android devices that could allow other apps to record video, take pictures, and extract GPS data from media without having the required permissions. [...]
https://www.bleepingcomputer.com/news/security/android-camera-app-bug-lets-apps-record-video-without-permission/
BleepingComputer
Android Camera App Bug Lets Apps Record Video Without Permission
A new vulnerability has been found in the Camera apps for millions, if not hundreds of millions, of Android devices that could allow other apps to record video, take pictures, and extract GPS data from media without having the required permissions.
Coin Stealer Found in Monero Linux Binaries From Official Site
The Monero Project is currently investigating a potential compromise of the official website after a coin stealer was found in the Linux 64-bit command line (CLI) Monero binaries downloaded from the download page. [...]
https://www.bleepingcomputer.com/news/security/coin-stealer-found-in-monero-linux-binaries-from-official-site/
The Monero Project is currently investigating a potential compromise of the official website after a coin stealer was found in the Linux 64-bit command line (CLI) Monero binaries downloaded from the download page. [...]
https://www.bleepingcomputer.com/news/security/coin-stealer-found-in-monero-linux-binaries-from-official-site/
BleepingComputer
Coin Stealer Found in Monero Linux Binaries From Official Site
The Monero Project is currently investigating a potential compromise of the official website after a coin stealer was found in the Linux 64-bit command line (CLI) Monero binaries downloaded from the download page.
Critical Windows Update Spam Fails at Delivering Ransomware
A new spam campaign pretending to be a 'Critical Microsoft Windows Update' has been discovered that attempts to deliver the Cyborg Ransomware, but turns out to be an utter failure. [...]
https://www.bleepingcomputer.com/news/security/critical-windows-update-spam-fails-at-delivering-ransomware/
A new spam campaign pretending to be a 'Critical Microsoft Windows Update' has been discovered that attempts to deliver the Cyborg Ransomware, but turns out to be an utter failure. [...]
https://www.bleepingcomputer.com/news/security/critical-windows-update-spam-fails-at-delivering-ransomware/
BleepingComputer
Critical Windows Update Spam Fails at Delivering Ransomware
A new spam campaign pretending to be a 'Critical Microsoft Windows Update' has been discovered that attempts to deliver the Cyborg Ransomware, but turns out to be an utter failure.
Microsoft Fixes Office 2016 Access Query Error, More Fixes Coming
Microsoft fixed a known issue occurring for Update queries in Click-2-Run and Windows Installer (MSI) editions of Access 2016, triggering errors when accessing databases and breaking functionality for various apps using Access databases. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-office-2016-access-query-error-more-fixes-coming/
Microsoft fixed a known issue occurring for Update queries in Click-2-Run and Windows Installer (MSI) editions of Access 2016, triggering errors when accessing databases and breaking functionality for various apps using Access databases. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-office-2016-access-query-error-more-fixes-coming/
BleepingComputer
Microsoft Fixes Office 2016 Access Query Error, More Fixes Coming
Microsoft fixed a known issue occurring for Update queries in Click-2-Run and Windows Installer (MSI) editions of Access 2016, triggering errors when accessing databases and breaking functionality for various apps using Access databases.
NSA Publishes Advisory Addressing Encrypted Traffic Inspection Risks
The National Security Agency (NSA) published an advisory that addresses the risks behind Transport Layer Security Inspection (TLSI) and provides mitigation measures for weakened security in organizations that use TLSI products. [...]
https://www.bleepingcomputer.com/news/security/nsa-publishes-advisory-addressing-encrypted-traffic-inspection-risks/
The National Security Agency (NSA) published an advisory that addresses the risks behind Transport Layer Security Inspection (TLSI) and provides mitigation measures for weakened security in organizations that use TLSI products. [...]
https://www.bleepingcomputer.com/news/security/nsa-publishes-advisory-addressing-encrypted-traffic-inspection-risks/
BleepingComputer
NSA Publishes Advisory Addressing Encrypted Traffic Inspection Risks
The National Security Agency (NSA) published an advisory that addresses the risks behind Transport Layer Security Inspection (TLSI) and provides mitigation measures for weakened security in organizations that use TLSI products.
Thousands of Enterprises At Risk Due to Oracle EBS Critical Flaws
Two critical security vulnerabilities discovered in Oracle's E-Business Suite (EBS) could allow potential attackers to take full control over a company's entire enterprise resource planning (ERP) solution. [...]
https://www.bleepingcomputer.com/news/security/thousands-of-enterprises-at-risk-due-to-oracle-ebs-critical-flaws/
Two critical security vulnerabilities discovered in Oracle's E-Business Suite (EBS) could allow potential attackers to take full control over a company's entire enterprise resource planning (ERP) solution. [...]
https://www.bleepingcomputer.com/news/security/thousands-of-enterprises-at-risk-due-to-oracle-ebs-critical-flaws/
BleepingComputer
Thousands of Enterprises At Risk Due to Oracle EBS Critical Flaws
Two critical security vulnerabilities discovered in Oracle's E-Business Suite (EBS) could allow potential attackers to take full control over a company's entire enterprise resource planning (ERP) solution.
Ransomware Gangs Adopt APT Tactics in Targeted Attacks
Ransomware operators are moving away from mass volume attacks and partnering with specialists who use APT techniques to provide stealthy infiltration and network-wide encryption capabilities. [...]
https://www.bleepingcomputer.com/news/security/ransomware-gangs-adopt-apt-tactics-in-targeted-attacks/
Ransomware operators are moving away from mass volume attacks and partnering with specialists who use APT techniques to provide stealthy infiltration and network-wide encryption capabilities. [...]
https://www.bleepingcomputer.com/news/security/ransomware-gangs-adopt-apt-tactics-in-targeted-attacks/
BleepingComputer
Ransomware Gangs Adopt APT Tactics in Targeted Attacks
Ransomware operators are moving away from mass volume attacks and partnering with specialists who use APT techniques to provide stealthy infiltration and network-wide encryption capabilities.