Russian cyberspies use Gmail to control updated ComRAT malware
ESET security researchers have discovered a new version of the ComRAT backdoor controlled using the Gmail web interface and used by the state-backed Russian hacker group Turla for harvesting and stealing in attacks against governmental institutions. [...]
https://www.bleepingcomputer.com/news/security/russian-cyberspies-use-gmail-to-control-updated-comrat-malware/
ESET security researchers have discovered a new version of the ComRAT backdoor controlled using the Gmail web interface and used by the state-backed Russian hacker group Turla for harvesting and stealing in attacks against governmental institutions. [...]
https://www.bleepingcomputer.com/news/security/russian-cyberspies-use-gmail-to-control-updated-comrat-malware/
BleepingComputer
Russian cyberspies use Gmail to control updated ComRAT malware
ESET security researchers have discovered a new version of the ComRAT backdoor controlled using the Gmail web interface and used by the state-backed Russian hacker group Turla for harvesting and stealing in attacks against governmental institutions.
Hacking group builds new Ketrum malware from recycled backdoors
The Ke3chang hacking group historically believed to be operating out of China has developed new malware dubbed Ketrum by merging features and source code from their older Ketrican and Okrum backdoors. [...]
https://www.bleepingcomputer.com/news/security/hacking-group-builds-new-ketrum-malware-from-recycled-backdoors/
The Ke3chang hacking group historically believed to be operating out of China has developed new malware dubbed Ketrum by merging features and source code from their older Ketrican and Okrum backdoors. [...]
https://www.bleepingcomputer.com/news/security/hacking-group-builds-new-ketrum-malware-from-recycled-backdoors/
BleepingComputer
Hacking group builds new Ketrum malware from recycled backdoors
The Ke3chang hacking group historically believed to be operating out of China has developed new malware dubbed Ketrum by merging features and source code from their older Ketrican and Okrum backdoors.
New [F]Unicorn ransomware hits Italy via fake COVID-19 infection map
A new ransomware threat called [F]Unicorn has been encrypting computers in Italy by tricking victims into downloading a fake contact tracing app that promises to bring real-time updates for COVID-19 infections. [...]
https://www.bleepingcomputer.com/news/security/new-f-unicorn-ransomware-hits-italy-via-fake-covid-19-infection-map/
A new ransomware threat called [F]Unicorn has been encrypting computers in Italy by tricking victims into downloading a fake contact tracing app that promises to bring real-time updates for COVID-19 infections. [...]
https://www.bleepingcomputer.com/news/security/new-f-unicorn-ransomware-hits-italy-via-fake-covid-19-infection-map/
BleepingComputer
New [F]Unicorn ransomware hits Italy via fake COVID-19 infection map
A new ransomware threat called [F]Unicorn has been encrypting computers in Italy by tricking victims into downloading a fake contact tracing app that promises to bring real-time updates for COVID-19 infections.
List of ransomware that leaks victims' stolen files if not paid
Starting last year, ransomware operators have escalated their extortion strategies by stealing files from victims before encrypting their data. These stolen files are then used as further leverage to force victims to pay. [...]
https://www.bleepingcomputer.com/news/security/list-of-ransomware-that-leaks-victims-stolen-files-if-not-paid/
Starting last year, ransomware operators have escalated their extortion strategies by stealing files from victims before encrypting their data. These stolen files are then used as further leverage to force victims to pay. [...]
https://www.bleepingcomputer.com/news/security/list-of-ransomware-that-leaks-victims-stolen-files-if-not-paid/
BleepingComputer
List of ransomware that leaks victims' stolen files if not paid
Starting last year, ransomware operators have escalated their extortion strategies by stealing files from victims before encrypting their data. These stolen files are then used as further leverage to force victims to pay.
Critical Android bug lets malicious apps hide in plain sight
A critical Android security vulnerability disclosed today and dubbed StrandHogg 2.0 can allow malicious apps to camouflage as most legitimate applications and steal sensitive information from Android users. [...]
https://www.bleepingcomputer.com/news/security/critical-android-bug-lets-malicious-apps-hide-in-plain-sight/
A critical Android security vulnerability disclosed today and dubbed StrandHogg 2.0 can allow malicious apps to camouflage as most legitimate applications and steal sensitive information from Android users. [...]
https://www.bleepingcomputer.com/news/security/critical-android-bug-lets-malicious-apps-hide-in-plain-sight/
BleepingComputer
Critical Android bug lets malicious apps hide in plain sight
A critical Android security vulnerability disclosed today and dubbed StrandHogg 2.0 can allow malicious apps to camouflage as most legitimate applications and steal sensitive information from Android users.
Arbonne MLM data breach exposes user passwords, personal info
International multi-level marketing (MLM) firm Arbonne International exposed the personal information and credentials of thousands after its internal systems were breached by an unauthorized party last month. [...]
https://www.bleepingcomputer.com/news/security/arbonne-mlm-data-breach-exposes-user-passwords-personal-info/
International multi-level marketing (MLM) firm Arbonne International exposed the personal information and credentials of thousands after its internal systems were breached by an unauthorized party last month. [...]
https://www.bleepingcomputer.com/news/security/arbonne-mlm-data-breach-exposes-user-passwords-personal-info/
BleepingComputer
Arbonne MLM data breach exposes user passwords, personal info
International multi-level marketing (MLM) firm Arbonne International exposed the personal information and credentials of thousands after its internal systems were breached by an unauthorized party last month.
Windows 10 Storage Sense and Disk Cleanup merged in new app
A new program called BurnBytes has been released that merges the traditional functionality of the Microsoft Disk Cleanup utility with the aesthetics of Windows 10's Storage Sense feature. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-storage-sense-and-disk-cleanup-merged-in-new-app/
A new program called BurnBytes has been released that merges the traditional functionality of the Microsoft Disk Cleanup utility with the aesthetics of Windows 10's Storage Sense feature. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-storage-sense-and-disk-cleanup-merged-in-new-app/
BleepingComputer
Windows 10 Storage Sense and Disk Cleanup merged in new app
A new program called BurnBytes has been released that merges the traditional functionality of the Microsoft Disk Cleanup utility with the aesthetics of Windows 10's Storage Sense feature.
26 million LiveJournal accounts being shared on hacker forums
A database containing over 26 million unique LiveJournal user accounts, including plain text passwords, is being shared for free on multiple hacker forums. [...]
https://www.bleepingcomputer.com/news/security/26-million-livejournal-accounts-being-shared-on-hacker-forums/
A database containing over 26 million unique LiveJournal user accounts, including plain text passwords, is being shared for free on multiple hacker forums. [...]
https://www.bleepingcomputer.com/news/security/26-million-livejournal-accounts-being-shared-on-hacker-forums/
BleepingComputer
26 million LiveJournal accounts being shared on hacker forums
A database containing over 26 million unique LiveJournal user accounts, including plain text passwords, is being shared for free on multiple hacker forums.
Ransomware's big jump: ransoms grew 14 times in one year
Ransomware has become one of the most insidious threats in the past couple of years, with actors scaling up their operations to the point that the average ransom demand increased more than 10 times in one year. [...]
https://www.bleepingcomputer.com/news/security/ransomwares-big-jump-ransoms-grew-14-times-in-one-year/
Ransomware has become one of the most insidious threats in the past couple of years, with actors scaling up their operations to the point that the average ransom demand increased more than 10 times in one year. [...]
https://www.bleepingcomputer.com/news/security/ransomwares-big-jump-ransoms-grew-14-times-in-one-year/
BleepingComputer
Ransomware's big jump: ransoms grew 14 times in one year
Ransomware has become one of the most insidious threats in the past couple of years, with actors scaling up their operations to the point that the average ransom demand increased more than 10 times in one year.
$100 million in bounties paid by HackerOne to ethical hackers
Bug bounty platform HackerOne announced today that it has paid out $100,000,000 in rewards to white-hat hackers around the world as of May 26, 2020. [...]
https://www.bleepingcomputer.com/news/security/100-million-in-bounties-paid-by-hackerone-to-ethical-hackers/
Bug bounty platform HackerOne announced today that it has paid out $100,000,000 in rewards to white-hat hackers around the world as of May 26, 2020. [...]
https://www.bleepingcomputer.com/news/security/100-million-in-bounties-paid-by-hackerone-to-ethical-hackers/
BleepingComputer
$100 million in bounties paid by HackerOne to ethical hackers
Bug bounty platform HackerOne announced today that it has paid out $100,000,000 in rewards to white-hat hackers around the world as of May 26, 2020.
Germany govt urges iOS users to patch critical Mail app flaws
Germany's federal cybersecurity agency today urged iOS users to immediately install the iOS and iPadOS security updates released by Apple on May 20 to patch two actively exploited zero-click security vulnerabilities impacting the default email app. [...]
https://www.bleepingcomputer.com/news/security/germany-govt-urges-ios-users-to-patch-critical-mail-app-flaws/
Germany's federal cybersecurity agency today urged iOS users to immediately install the iOS and iPadOS security updates released by Apple on May 20 to patch two actively exploited zero-click security vulnerabilities impacting the default email app. [...]
https://www.bleepingcomputer.com/news/security/germany-govt-urges-ios-users-to-patch-critical-mail-app-flaws/
BleepingComputer
German govt urges iOS users to patch critical Mail app flaws
Germany's federal cybersecurity agency today urged iOS users to immediately install the iOS and iPadOS security updates released by Apple on May 20 to patch two actively exploited zero-click security vulnerabilities impacting the default email app.
Windows 10 May 2020 Update released, Here are the new features
Microsoft has released the Windows 10 May 2020 Update today, May 27th, 2019, in a gradual rollout to all users worldwide. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-may-2020-update-released-here-are-the-new-features/
Microsoft has released the Windows 10 May 2020 Update today, May 27th, 2019, in a gradual rollout to all users worldwide. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-may-2020-update-released-here-are-the-new-features/
BleepingComputer
Windows 10 May 2020 Update released, Here are the new features
Microsoft has released the Windows 10 May 2020 Update today, May 27th, 2020, in a gradual rollout to all users worldwide.
Windows 10’s Pktmon sniffer gets real-time monitoring, PCAP support
Windows 10's built-in network packet sniffer Pktmon has been updated with real-time monitoring and PCAPNG capture file format support with today's release of Windows 10 2004. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-s-pktmon-sniffer-gets-real-time-monitoring-pcap-support/
Windows 10's built-in network packet sniffer Pktmon has been updated with real-time monitoring and PCAPNG capture file format support with today's release of Windows 10 2004. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-s-pktmon-sniffer-gets-real-time-monitoring-pcap-support/
BleepingComputer
Windows 10’s Pktmon sniffer gets real-time monitoring, PCAP support
Windows 10's built-in network packet sniffer Pktmon has been updated with real-time monitoring and PCAPNG capture file format support with today's release of Windows 10 2004.
Windows 10 2004 comes with Wi-Fi 6 and WPA3 support
Microsoft announced that Windows 10, version 2004 comes with Wi-Fi 6 and WPA3 support for gigabit speeds and better performance, as well as for more secure wireless network connectivity. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-2004-comes-with-wi-fi-6-and-wpa3-support/
Microsoft announced that Windows 10, version 2004 comes with Wi-Fi 6 and WPA3 support for gigabit speeds and better performance, as well as for more secure wireless network connectivity. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-2004-comes-with-wi-fi-6-and-wpa3-support/
BleepingComputer
Windows 10 2004 comes with Wi-Fi 6 and WPA3 support
Microsoft announced that Windows 10, version 2004 comes with Wi-Fi 6 and WPA3 support for gigabit speeds and better performance, as well as for more secure wireless network connectivity.
Microsoft is investigating ten Windows 10 2004 known issues
Right after releasing the Windows 10 May 2020 Update to home customers, Microsoft has already added ten know issues under investigation to the Windows 10 2004 release health dashboard. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-is-investigating-ten-windows-10-2004-known-issues/
Right after releasing the Windows 10 May 2020 Update to home customers, Microsoft has already added ten know issues under investigation to the Windows 10 2004 release health dashboard. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-is-investigating-ten-windows-10-2004-known-issues/
BleepingComputer
Microsoft is investigating ten Windows 10 2004 known issues
Right after releasing the Windows 10 May 2020 Update to home customers, Microsoft has already added ten know issues under investigation to the Windows 10 2004 release health dashboard.
New Octopus Scanner malware spreads via GitHub supply chain attack
Security researchers have found a new malware that finds and backdoors open-source NetBeans projects hosted on the GitHub web-based code hosting platform to spread to Windows, Linux, and macOS systems and deploy a Remote Administration Tool (RAT). [...]
https://www.bleepingcomputer.com/news/security/new-octopus-scanner-malware-spreads-via-github-supply-chain-attack/
Security researchers have found a new malware that finds and backdoors open-source NetBeans projects hosted on the GitHub web-based code hosting platform to spread to Windows, Linux, and macOS systems and deploy a Remote Administration Tool (RAT). [...]
https://www.bleepingcomputer.com/news/security/new-octopus-scanner-malware-spreads-via-github-supply-chain-attack/
BleepingComputer
New Octopus Scanner malware spreads via GitHub supply chain attack
Security researchers have found a new malware that finds and backdoors open-source NetBeans projects hosted on the GitHub web-based code hosting platform to spread to Windows, Linux, and macOS systems and deploy a Remote Administration Tool (RAT).
NSA: Russian govt hackers exploiting critical Exim flaw since 2019
The U.S. National Security Agency (NSA) says that Russian military threat actors tracked as Sandworm Team have been exploiting a critical flaw in the Exim mail transfer agent (MTA) software since at least August 2019. [...]
https://www.bleepingcomputer.com/news/security/nsa-russian-govt-hackers-exploiting-critical-exim-flaw-since-2019/
The U.S. National Security Agency (NSA) says that Russian military threat actors tracked as Sandworm Team have been exploiting a critical flaw in the Exim mail transfer agent (MTA) software since at least August 2019. [...]
https://www.bleepingcomputer.com/news/security/nsa-russian-govt-hackers-exploiting-critical-exim-flaw-since-2019/
BleepingComputer
NSA: Russian govt hackers exploiting critical Exim flaw since 2019
The U.S. National Security Agency (NSA) says that Russian military threat actors tracked as Sandworm Team have been exploiting a critical flaw in the Exim mail transfer agent (MTA) software since at least August 2019.
Michigan State University network breached in ransomware attack
Michigan State University received a deadline to pay ransomware attackers under the threat that files stolen from the institution's network will be leaked to the public. [...]
https://www.bleepingcomputer.com/news/security/michigan-state-university-network-breached-in-ransomware-attack/
Michigan State University received a deadline to pay ransomware attackers under the threat that files stolen from the institution's network will be leaked to the public. [...]
https://www.bleepingcomputer.com/news/security/michigan-state-university-network-breached-in-ransomware-attack/
BleepingComputer
Michigan State University network breached in ransomware attack
Michigan State University received a deadline to pay ransomware attackers under the threat that files stolen from the institution's network will be leaked to the public.
Microsoft IIS servers hacked by Blue Mockingbird to mine Monero
This month news broke about a hacker group, namely Blue Mockingbird, exploiting a critical vulnerability in Microsoft IIS servers to plant Monero (XMR) cryptocurrency miners on compromised machines. [...]
https://www.bleepingcomputer.com/news/security/microsoft-iis-servers-hacked-by-blue-mockingbird-to-mine-monero/
This month news broke about a hacker group, namely Blue Mockingbird, exploiting a critical vulnerability in Microsoft IIS servers to plant Monero (XMR) cryptocurrency miners on compromised machines. [...]
https://www.bleepingcomputer.com/news/security/microsoft-iis-servers-hacked-by-blue-mockingbird-to-mine-monero/
BleepingComputer
Microsoft IIS servers hacked by Blue Mockingbird to mine Monero
This month news broke about a hacker group, namely Blue Mockingbird, exploiting a critical vulnerability in Microsoft IIS servers to plant Monero (XMR) cryptocurrency miners on compromised machines.
Minted discloses data breach after 5M user records sold online
Minted, a US-based marketplace for independent artists, has disclosed a data breach after a hacker sold a database containing 5 million user records on a dark web marketplace. [...]
https://www.bleepingcomputer.com/news/security/minted-discloses-data-breach-after-5m-user-records-sold-online/
Minted, a US-based marketplace for independent artists, has disclosed a data breach after a hacker sold a database containing 5 million user records on a dark web marketplace. [...]
https://www.bleepingcomputer.com/news/security/minted-discloses-data-breach-after-5m-user-records-sold-online/
BleepingComputer
Minted discloses data breach after 5M user records sold online
Minted, a US-based marketplace for independent artists, has disclosed a data breach after a hacker sold a database containing 5 million user records on a dark web marketplace.
200K sites with buggy WordPress plugin exposed to wipe attacks
Two high severity security vulnerabilities found in the PageLayer plugin can let attackers to potentially wipe the contents or take over WordPress sites using vulnerable plugin versions. [...]
https://www.bleepingcomputer.com/news/security/200k-sites-with-buggy-wordpress-plugin-exposed-to-wipe-attacks/
Two high severity security vulnerabilities found in the PageLayer plugin can let attackers to potentially wipe the contents or take over WordPress sites using vulnerable plugin versions. [...]
https://www.bleepingcomputer.com/news/security/200k-sites-with-buggy-wordpress-plugin-exposed-to-wipe-attacks/