Attacks on WordPress Sites Intensify as Hackers Deface Over 1.5 Million Pages
Attacks on WordPress sites using a vulnerability in the REST API, patched in WordPress version 4.7.2, have intensified over the past two days, as attackers have now defaced over 1.5 million pages, spread across 39,000 unique domains. [...]
https://www.bleepingcomputer.com/news/security/attacks-on-wordpress-sites-intensify-as-hackers-deface-over-1-5-million-pages/
Attacks on WordPress sites using a vulnerability in the REST API, patched in WordPress version 4.7.2, have intensified over the past two days, as attackers have now defaced over 1.5 million pages, spread across 39,000 unique domains. [...]
https://www.bleepingcomputer.com/news/security/attacks-on-wordpress-sites-intensify-as-hackers-deface-over-1-5-million-pages/
BleepingComputer
Attacks on WordPress Sites Intensify as Hackers Deface Over 1.5 Million Pages
Attacks on WordPress sites using a vulnerability in the REST API, patched in WordPress version 4.7.2, have intensified over the past two days, as attackers have now defaced over 1.5 million pages, spread across 39,000 unique domains.
DynA-Crypt not only Encrypts Your Files, but Also Steals Your Info
A new ransomware called DynA-Crypt was discovered by GData malware analyst Karsten Hahn that not only encrypts your data, but also tries to steal a ton of information from a victim's computer. Ransomware & information stealing infections have become all-to-common, but when you combine the two into the complete mess called DynA-Crypt. [...]
https://www.bleepingcomputer.com/news/security/dyna-crypt-not-only-encrypts-your-files-but-also-steals-your-info/
A new ransomware called DynA-Crypt was discovered by GData malware analyst Karsten Hahn that not only encrypts your data, but also tries to steal a ton of information from a victim's computer. Ransomware & information stealing infections have become all-to-common, but when you combine the two into the complete mess called DynA-Crypt. [...]
https://www.bleepingcomputer.com/news/security/dyna-crypt-not-only-encrypts-your-files-but-also-steals-your-info/
BleepingComputer
DynA-Crypt not only Encrypts Your Files, but Also Steals Your Info
A new ransomware called DynA-Crypt was discovered by GData malware analyst Karsten Hahn that not only encrypts your data, but also tries to steal a ton of information from a victim's computer. Ransomware & information stealing infections have become all-toβ¦
Apple iCloud Kept Deleted Browser History Around for Over a Year
Apple appears to have been keeping deleted browser history in users' iCloud accounts, for as long as a year, according to Vladimir Katalov, CEO of ElcomSoft, a company that makes forensics and data recovery tools for Apple products. [...]
https://www.bleepingcomputer.com/news/apple/apple-icloud-kept-deleted-browser-history-around-for-over-a-year/
Apple appears to have been keeping deleted browser history in users' iCloud accounts, for as long as a year, according to Vladimir Katalov, CEO of ElcomSoft, a company that makes forensics and data recovery tools for Apple products. [...]
https://www.bleepingcomputer.com/news/apple/apple-icloud-kept-deleted-browser-history-around-for-over-a-year/
BleepingComputer
Apple iCloud Kept Deleted Browser History Around for Over a Year
Apple appears to have been keeping deleted browser history in users' iCloud accounts, for as long as a year, according to Vladimir Katalov, CEO of ElcomSoft, a company that makes forensics and data recovery tools for Apple products.
Quickly Add an .onion URL to Your Site with the Enterprise Onion Toolkit (EOTK)
Security researcher Alec Muffett has created a new project called the Enterprise Onion Toolkit (EOTK), which can help website owners add a .onion URL for their site's domain in a matter of minutes. [...]
https://www.bleepingcomputer.com/news/security/quickly-add-an-onion-url-to-your-site-with-the-enterprise-onion-toolkit-eotk-/
Security researcher Alec Muffett has created a new project called the Enterprise Onion Toolkit (EOTK), which can help website owners add a .onion URL for their site's domain in a matter of minutes. [...]
https://www.bleepingcomputer.com/news/security/quickly-add-an-onion-url-to-your-site-with-the-enterprise-onion-toolkit-eotk-/
BleepingComputer
Quickly Add an .onion URL to Your Site with the Enterprise Onion Toolkit (EOTK)
Security researcher Alec Muffett has created a new project called the Enterprise Onion Toolkit (EOTK), which can help website owners add a .onion URL for their site's domain in a matter of minutes.
Instapaper Needs One Week to Restore Full Service After 31-Hour Downtime
Link bookmarking service Instapaper came back online today following a critical database issue that forced it offline for 31 hours over the past two days. [...]
https://www.bleepingcomputer.com/news/software/instapaper-needs-one-week-to-restore-full-service-after-31-hour-downtime/
Link bookmarking service Instapaper came back online today following a critical database issue that forced it offline for 31 hours over the past two days. [...]
https://www.bleepingcomputer.com/news/software/instapaper-needs-one-week-to-restore-full-service-after-31-hour-downtime/
BleepingComputer
Instapaper Needs One Week to Restore Full Service After 31-Hour Downtime
Link bookmarking service Instapaper came back online today following a critical database issue that forced it offline for 31 hours over the past two days.
Macro Malware Hits Mac Users
After hounding Windows users for well over two decades, macro malware has taken its first steps towards affecting the other operating system on which the Microsoft Office suite is available, and that's Apple's macOS. [...]
https://www.bleepingcomputer.com/news/security/macro-malware-hits-mac-users/
After hounding Windows users for well over two decades, macro malware has taken its first steps towards affecting the other operating system on which the Microsoft Office suite is available, and that's Apple's macOS. [...]
https://www.bleepingcomputer.com/news/security/macro-malware-hits-mac-users/
BleepingComputer
Macro Malware Hits Mac Users
After hounding Windows users for well over two decades, macro malware has taken its first steps towards affecting the other operating system on which the Microsoft Office suite is available, and that's Apple's macOS.
Microsoft Employees Explain Why All Windows Drivers Are Dated June 21, 2006
Have you ever noticed that all Windows built-in drivers have the same value in the last update field? Have you wondered why? If you read Windows update logs, it's pretty obvious that Microsoft updates its drivers, so why isn't that date changing? [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-employees-explain-why-all-windows-drivers-are-dated-june-21-2006/
Have you ever noticed that all Windows built-in drivers have the same value in the last update field? Have you wondered why? If you read Windows update logs, it's pretty obvious that Microsoft updates its drivers, so why isn't that date changing? [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-employees-explain-why-all-windows-drivers-are-dated-june-21-2006/
BleepingComputer
Microsoft Employees Explain Why All Windows Drivers Are Dated June 21, 2006
Have you ever noticed that all Windows built-in drivers have the same value in the last update field? Have you wondered why? If you read Windows update logs, it's pretty obvious that Microsoft updates its drivers, so why isn't that date changing?
Number of RDP Brute-Force Attacks Spreading Crysis Ransomware Doubles in 6 Months
Since September 2016, a criminal group has been using different versions of the Crysis ransomware to infect enterprise networks where they previously gained access to by brute-forcing workstations with open RDP ports. [...]
https://www.bleepingcomputer.com/news/security/number-of-rdp-brute-force-attacks-spreading-crysis-ransomware-doubles-in-6-months/
Since September 2016, a criminal group has been using different versions of the Crysis ransomware to infect enterprise networks where they previously gained access to by brute-forcing workstations with open RDP ports. [...]
https://www.bleepingcomputer.com/news/security/number-of-rdp-brute-force-attacks-spreading-crysis-ransomware-doubles-in-6-months/
BleepingComputer
Number of RDP Brute-Force Attacks Spreading Crysis Ransomware Doubles in 6 Months
Since September 2016, a criminal group has been using different versions of the Crysis ransomware to infect enterprise networks where they previously gained access to by brute-forcing workstations with open RDP ports.
The Week in Ransomware - February 10th 2017 - Serpent, Spora, ID Ransomware
It is another week and more ransomware to alert everyone about. The biggest news this week is the release of Serpent Ransomware, which is a new version of the Wildfire Ransomware and the continuing rise of Spora as a major player in the ransomware threat landscape. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-february-10th-2017-serpent-spora-id-ransomware/
It is another week and more ransomware to alert everyone about. The biggest news this week is the release of Serpent Ransomware, which is a new version of the Wildfire Ransomware and the continuing rise of Spora as a major player in the ransomware threat landscape. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-february-10th-2017-serpent-spora-id-ransomware/
14-Year-Old Admits to Attempting to Hack Brussels Airport a Day After ISIS Attack
A 14-year-old US teen has admitted to attempting to hack the Brussels Zaventem Airport on the day after brutal ISIS bombings had killed 32 people, on the morning of March 22, 2016. [...]
https://www.bleepingcomputer.com/news/security/14-year-old-admits-to-attempting-to-hack-brussels-airport-a-day-after-isis-attack/
A 14-year-old US teen has admitted to attempting to hack the Brussels Zaventem Airport on the day after brutal ISIS bombings had killed 32 people, on the morning of March 22, 2016. [...]
https://www.bleepingcomputer.com/news/security/14-year-old-admits-to-attempting-to-hack-brussels-airport-a-day-after-isis-attack/
Ultranationalist Developer Behind SerbRansom Ransomware
An ultranationalist developer from Serbia is behind a series of malware strains, including a new ransomware family named SerbRansom, discovered yesterday by security researcher MalwareHunter. [...]
https://www.bleepingcomputer.com/news/security/ultranationalist-developer-behind-serbransom-ransomware/
An ultranationalist developer from Serbia is behind a series of malware strains, including a new ransomware family named SerbRansom, discovered yesterday by security researcher MalwareHunter. [...]
https://www.bleepingcomputer.com/news/security/ultranationalist-developer-behind-serbransom-ransomware/
BleepingComputer
Ultranationalist Developer Behind SerbRansom Ransomware
An ultranationalist developer from Serbia is behind a series of malware strains, including a new ransomware family named SerbRansom, discovered yesterday by security researcher MalwareHunter.
Wikipedia Comments Destroyed by a Few Highly Toxic Users
A joint study carried out by researchers from Alphabet's Jigsaw and the Wikimedia Foundation has analyzed all user comments left on Wikipedia in 2015 in order to identify how and why users launch in personal attacks, one of the many faces of online abuse. [...]
https://www.bleepingcomputer.com/news/security/wikipedia-comments-destroyed-by-a-few-highly-toxic-users/
A joint study carried out by researchers from Alphabet's Jigsaw and the Wikimedia Foundation has analyzed all user comments left on Wikipedia in 2015 in order to identify how and why users launch in personal attacks, one of the many faces of online abuse. [...]
https://www.bleepingcomputer.com/news/security/wikipedia-comments-destroyed-by-a-few-highly-toxic-users/
BleepingComputer
Wikipedia Comments Destroyed by a Few Highly Toxic Users
A joint study carried out by researchers from Alphabet's Jigsaw and the Wikimedia Foundation has analyzed all user comments left on Wikipedia in 2015 in order to identify how and why users launch in personal attacks, one of the many faces of online abuse.
Man Sues Uber After iOS App Bug Exposes His Affair
A French man is suing ride-sharing service Uber for β¬45 million after a bug in the company's iOS app sent notifications to his wife's phone, which exposed his affair and led to the couple's divorce. [...]
https://www.bleepingcomputer.com/news/legal/man-sues-uber-after-ios-app-bug-exposes-his-affair/
A French man is suing ride-sharing service Uber for β¬45 million after a bug in the company's iOS app sent notifications to his wife's phone, which exposed his affair and led to the couple's divorce. [...]
https://www.bleepingcomputer.com/news/legal/man-sues-uber-after-ios-app-bug-exposes-his-affair/
BleepingComputer
Man Sues Uber After iOS App Bug Exposes His Affair
A French man is suing ride-sharing service Uber for β¬45 million after a bug in the company's iOS app sent notifications to his wife's phone, which exposed his affair and led to the couple's divorce.
Mozilla Denies Report That Firefox Focus Collects Private User Data
A Mozilla spokesperson has denied a report from German newspaper Deutschlandfunk that the Foundation is collecting personal user data from iOS devices running Firefox Klar, the German version of Firefox Focus, a new privacy-focused browser launched last year. [...]
https://www.bleepingcomputer.com/news/software/mozilla-denies-report-that-firefox-focus-collects-private-user-data/
A Mozilla spokesperson has denied a report from German newspaper Deutschlandfunk that the Foundation is collecting personal user data from iOS devices running Firefox Klar, the German version of Firefox Focus, a new privacy-focused browser launched last year. [...]
https://www.bleepingcomputer.com/news/software/mozilla-denies-report-that-firefox-focus-collects-private-user-data/
BleepingComputer
Mozilla Denies Report That Firefox Focus Collects Private User Data
A Mozilla spokesperson has denied a report from German newspaper Deutschlandfunk that the Foundation is collecting personal user data from iOS devices running Firefox Klar, the German version of Firefox Focus, a new privacy-focused browser launched last year.
WordPress REST API Flaw Used to Install Backdoors
Attackers have found a way to escalate the benign WordPress REST API flaw and use it to gain full access to a victim's server by installing a hidden backdoor. [...]
https://www.bleepingcomputer.com/news/security/wordpress-rest-api-flaw-used-to-install-backdoors/
Attackers have found a way to escalate the benign WordPress REST API flaw and use it to gain full access to a victim's server by installing a hidden backdoor. [...]
https://www.bleepingcomputer.com/news/security/wordpress-rest-api-flaw-used-to-install-backdoors/
BleepingComputer
WordPress REST API Flaw Used to Install Backdoors
Attackers have found a way to escalate the benign WordPress REST API flaw and use it to gain full access to a victim's server by installing a hidden backdoor.
Chrome's Sandbox Feature Infringes on Three Patents So Google Must Now Pay $20M
After five years of litigation at various levels of the US legal system, today, following the conclusion of a jury trial, Google was ordered to pay $20 million to two developers after a jury ruled that Google had infringed on three patents when it designed some of Chrome's anti-malware features. [...]
https://www.bleepingcomputer.com/news/google/chromes-sandbox-feature-infringes-on-three-patents-so-google-must-now-pay-20m/
After five years of litigation at various levels of the US legal system, today, following the conclusion of a jury trial, Google was ordered to pay $20 million to two developers after a jury ruled that Google had infringed on three patents when it designed some of Chrome's anti-malware features. [...]
https://www.bleepingcomputer.com/news/google/chromes-sandbox-feature-infringes-on-three-patents-so-google-must-now-pay-20m/
BleepingComputer
Chrome's Sandbox Feature Infringes on Three Patents So Google Must Now Pay $20M
After five years of litigation at various levels of the US legal system, today, following the conclusion of a jury trial, Google was ordered to pay $20 million to two developers after a jury ruled that Google had infringed on three patents when it designedβ¦
Hacker Who Blackmailed Dozens of Female Victims Gets 8 Years in Prison
A New Hampshire hacker will spend the next eight years of his life in prison after he hacked into the email and social media accounts of dozens of females, including ten minors, and harassed and extorted victims into sending sexually explicit photos. [...]
https://www.bleepingcomputer.com/news/security/hacker-who-blackmailed-dozens-of-female-victims-gets-8-years-in-prison/
A New Hampshire hacker will spend the next eight years of his life in prison after he hacked into the email and social media accounts of dozens of females, including ten minors, and harassed and extorted victims into sending sexually explicit photos. [...]
https://www.bleepingcomputer.com/news/security/hacker-who-blackmailed-dozens-of-female-victims-gets-8-years-in-prison/
BleepingComputer
Hacker Who Blackmailed Dozens of Female Victims Gets 8 Years in Prison
A New Hampshire hacker will spend the next eight years of his life in prison after he hacked into the email and social media accounts of dozens of females, including ten minors, and harassed and extorted victims into sending sexually explicit photos.
PacketTotal - A Useful Site for Analyzing PCAP Files
If you are InfoSec professional who commonly deals with intrusion detection and response or malware analysis, a new site called PacketTotal may make your life easier. PacketTotal allows you to upload a PCAP, or packet capture, file and have it automatically analyzed and parsed against BRO IDS and Suricata signatures., [...]
https://www.bleepingcomputer.com/news/security/packettotal-a-useful-site-for-analyzing-pcap-files/
If you are InfoSec professional who commonly deals with intrusion detection and response or malware analysis, a new site called PacketTotal may make your life easier. PacketTotal allows you to upload a PCAP, or packet capture, file and have it automatically analyzed and parsed against BRO IDS and Suricata signatures., [...]
https://www.bleepingcomputer.com/news/security/packettotal-a-useful-site-for-analyzing-pcap-files/
BleepingComputer
PacketTotal - A Useful Site for Analyzing PCAP Files
If you are InfoSec professional who commonly deals with intrusion detection and response or malware analysis, a new site called PacketTotal may make your life easier. PacketTotal allows you to upload a PCAP, or packet capture, file and have it automaticallyβ¦
University DDoSed by Its Own IoT Devices
An unnamed university has suffered a DDoS attack at the hand of its own IoT devices, according to a sneak preview of Verizon's upcoming yearly data breach report. [...]
https://www.bleepingcomputer.com/news/security/university-ddosed-by-its-own-iot-devices/
An unnamed university has suffered a DDoS attack at the hand of its own IoT devices, according to a sneak preview of Verizon's upcoming yearly data breach report. [...]
https://www.bleepingcomputer.com/news/security/university-ddosed-by-its-own-iot-devices/
BleepingComputer
University DDoSed by Its Own IoT Devices
An unnamed university has suffered a DDoS attack at the hand of its own IoT devices, according to a sneak preview of Verizon's upcoming yearly data breach report.
Researchers Create PoC Ransomware That Targets ICS/SCADA Systems
Researchers from the Georgia Institute of Technology (GIT) have created a proof-of-concept ransomware strain that can alter programmable logic controller (PLC) parameters. The research team presented their work yesterday, at the RSA cyber-security conference in San Francisco. [...]
https://www.bleepingcomputer.com/news/security/researchers-create-poc-ransomware-that-targets-ics-scada-systems/
Researchers from the Georgia Institute of Technology (GIT) have created a proof-of-concept ransomware strain that can alter programmable logic controller (PLC) parameters. The research team presented their work yesterday, at the RSA cyber-security conference in San Francisco. [...]
https://www.bleepingcomputer.com/news/security/researchers-create-poc-ransomware-that-targets-ics-scada-systems/
BleepingComputer
Researchers Create PoC Ransomware That Targets ICS/SCADA Systems
Researchers from the Georgia Institute of Technology (GIT) have created a proof-of-concept ransomware strain named LogicLocker that can alter programmable logic controller (PLC) parameters. The research team presented their work yesterday, at the RSA cyberβ¦
75% of All Ransomware Developed by Russian-Speaking Criminals
Out of the 62 ransomware families found active in 2016, security firm Kaspersky Lab says that 47 of these strains contained artefacts that allowed attribution to Russian-speaking criminals. [...]
https://www.bleepingcomputer.com/news/security/75-percent-of-all-ransomware-developed-by-russian-speaking-criminals/
Out of the 62 ransomware families found active in 2016, security firm Kaspersky Lab says that 47 of these strains contained artefacts that allowed attribution to Russian-speaking criminals. [...]
https://www.bleepingcomputer.com/news/security/75-percent-of-all-ransomware-developed-by-russian-speaking-criminals/
BleepingComputer
75% of All Ransomware Developed by Russian-Speaking Criminals
Out of the 62 ransomware families found active in 2016, security firm Kaspersky Lab says that 47 of these strains contained artefacts that allowed attribution to Russian-speaking criminals.