Anonymous #OpIsrael Participants Targeted with RATs by Unknown Threat Actor

Anonymous members who wanted to participate in this year's annual #OpIsrael cyber-attacks were the targets of an intelligence gathering operation carried out by an unknown threat actor. [...]

https://www.bleepingcomputer.com/news/security/anonymous-opisrael-participants-targeted-with-rats-by-unknown-threat-actor/

Install Windows 10 Creators Update Starting Today With This Microsoft Tool

Microsoft will officially release Windows 10 Creators Update on April 11, the same day it will retire Windows Vista, but users unwilling to wait that long can install it starting today, April 5, using the Windows 10 Update Assistant. [...]

https://www.bleepingcomputer.com/news/microsoft/install-windows-10-creators-update-starting-today-with-this-microsoft-tool/

Microsoft Reveals for the First Time the Data It Collects in Windows 10

Microsoft turned a new leaf today and published a list of diagnostics data the company will be collecting from users of Windows 10 Creators Update, scheduled for launch next week, on April 11. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-reveals-for-the-first-time-the-data-it-collects-in-windows-10/

LMAOxUS Ransomware: Another Case of Weaponized Open Source Ransomware

An Indian developer is playing around with an open source ransomware builder, which in the long run may end up causing serious problems for innocent users. [...]

https://www.bleepingcomputer.com/news/security/lmaoxus-ransomware-another-case-of-weaponized-open-source-ransomware/

LMAOxUS Ransomware: Another Case of Weaponized Open Source Ransomware

An Indian developer is playing around with an open source ransomware builder, which in the long run may end up causing serious problems for innocent users. [...]

https://www.bleepingcomputer.com/news/security/lmaoxus-ransomware-another-case-of-weaponized-open-source-ransomware/

Teenager Arrested in Austria for Spreading Philadelphia Ransomware

Austrian police arrested a 19-year-old teenager from Linz for infecting the network of a local company with the Philadelphia ransomware. [...]

https://www.bleepingcomputer.com/news/security/teenager-arrested-in-austria-for-spreading-philadelphia-ransomware/

Amazon to Refund $70 Million of Unauthorized In-App Charges Made by Children

Amazon and the Federal Trade Commission (FTC) have agreed to drop all ongoing litigation, paving the way for Amazon to refund over $70 million to customers whose kids made unauthorized in-app purchases. [...]

https://www.bleepingcomputer.com/news/legal/amazon-to-refund-70-million-of-unauthorized-in-app-charges-made-by-children/

Crooks Founded Two ISPs to Hide Illegal TV Streaming Platform

A group of criminals went as far as to register and manage two Internet Service Providers in two different countries in order to manage an illegal TV streaming platform that offered IPTV (IP Television) service to customers all over the world. [...]

https://www.bleepingcomputer.com/news/technology/crooks-founded-two-isps-to-hide-illegal-tv-streaming-platform/

New Malware Intentionally Bricks IoT Devices

A new malware strain called BrickerBot is bricking Internet of Things (IoT) devices around the world by corrupting their storage capability and reconfiguring kernel parameters. [...]

https://www.bleepingcomputer.com/news/security/new-malware-intentionally-bricks-iot-devices/

RensenWare Will Only Decrypt Files if Victim Scores .2 Billion in TH12 Game

A new ransomware called RensenWare was discovered today by MalwareHunterTeam that makes a unique ransom demand;  score over 0.2 billion in the LUNATIC level of TH12 ~ Undefined Fantastic Object or kiss your files goodbye! [...]

https://www.bleepingcomputer.com/news/security/rensenware-will-only-decrypt-files-if-victim-scores-2-billion-in-th12-game/

Ransomware Gang Made Over $100,000 by Exploiting Apache Struts Zero-Day

For more than a month, at least ten groups of attackers have been compromising systems running applications built with Apache Struts and installing backdoors, DDoS bots, cryptocurrency miners, or ransomware, depending if the machine is running Linux or Windows. [...]

https://www.bleepingcomputer.com/news/security/ransomware-gang-made-over-100-000-by-exploiting-apache-struts-zero-day/

New Password Protected Word Document SPAM Installing Urlsnif Keylogger

A large SPAM campaign is underway where victims receive an email that pretends to be a requested invoice and contains a password for a password protected encrypted Word document attachment. These password protected word documents contain embedded VBScript files that will download and install the Urlsnif keylogger. [...]

https://www.bleepingcomputer.com/news/security/new-password-protected-word-document-spam-installing-urlsnif-keylogger/

Sathurbot Malware Spreads via Torrent Files, Attacks WordPress Sites

Security researchers from ESET have discovered a new malware called Sathurbot that relies on malicious torrent files to spread to new victims and carries out coordinated brute-force attacks on WordPress sites. [...]

https://www.bleepingcomputer.com/news/security/sathurbot-malware-spreads-via-torrent-files-attacks-wordpress-sites/

Windows 10 Creators Update Lets You Uninstall OneDrive with One Click

Microsoft adds Uninstall button for OneDrive. Users no longer have to walk on nails and sacrifice lambs to the Microsoft deity in order to uninstall OneDrive from their PCs. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-creators-update-lets-you-uninstall-onedrive-with-one-click/

WikiLeaks Reveals Grasshopper, CIA's Builder for Windows Malware

WikiLeaks dumped 27 documents today as part of the "Vault 7" series of leaked documents, which the organization claims to belong to the CIA. [...]

https://www.bleepingcomputer.com/news/security/wikileaks-reveals-grasshopper-cias-builder-for-windows-malware/

ClearEnergy - The "In the Wild" SCADA Ransomware Attacks That Never Were

A mini-controversy broke out this week in the infosec community after cyber-security firm CRITIFENCE led journalists and other security experts to believe that they've detected in-the-wild attacks with a new ransomware called ClearEnergy, specialized in targeting ICS/SCADA industrial equipment. [...]

https://www.bleepingcomputer.com/news/security/clearenergy-the-in-the-wild-scada-ransomware-attacks-that-never-were/

Researchers Troll Google Video AI with Images of Audi Cars and Spaghetti

Google's recently launched video classification API is not as smart as people expected, according to new research published by a three-man team from the Univerisity of Washington. [...]

https://www.bleepingcomputer.com/news/technology/researchers-troll-google-video-ai-with-images-of-audi-cars-and-spaghetti/

Matrix Ransomware Spreads to Other PCs Using Malicious Shortcuts

The Matrix Ransomware gears up for higher distribution by using EITest, the Rig Exploit kit, while being able to spread to other computer through malicious shortcuts. [...]

https://www.bleepingcomputer.com/news/security/matrix-ransomware-spreads-to-other-pcs-using-malicious-shortcuts/

Windows 10 Insider Build 16170 Released and Windows Insider for Business Launched

Today Microsoft released Insider Preview Build 16170 to PC insiders on the fast ring, As Microsoft just released the Creators Update, new builds won't have any big changes or features added for the near future. Microsoft also announced that they have officially launched the Windows Insider Program for Business. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-16170-released-and-windows-insider-for-business-launched/

The Week in Ransomware - April 7th 2017 - Fluffy, Matrix, and RensenWare

The big news this week was the POC for a UEFI Ransomware presented at BlackHat Asia, Matrix Ransomware being distributed by RIG and having worm characteristics, and the joke ransomware called RensenWare that required a victim to get a very high score in a game to get a decryption key.  [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-april-7th-2017-fluffy-matrix-and-rensenware/

Irresponsible Chinese DVR Vendor Still the Target of IoT Botnets One Year Later

A Chinese company that manufactures white-labeled DVRs still hasn't patched a security flaw that's been targeted by IoT botnets for over a year. [...]

https://www.bleepingcomputer.com/news/security/irresponsible-chinese-dvr-vendor-still-the-target-of-iot-botnets-one-year-later/