59% of Employees Hit by Ransomware at Work Paid Ransom Out of Their Own Pockets

A survey of more than 1,000 office workers carried out by business cloud services provider Intermedia has revealed that 59% of employees that had their computer hit by ransomware paid the ransom demand out of their own pockets. [...]

https://www.bleepingcomputer.com/news/security/59-percent-of-employees-hit-by-ransomware-at-work-paid-ransom-out-of-their-own-pockets/

Malware Dev Who Used Spam Botnet to Pay for College Gets No Prison Time

A Pittsburgh judge sentenced a malware dev to two years probation and no prison time for his involvement with a spam botnet. [...]

https://www.bleepingcomputer.com/news/security/malware-dev-who-used-spam-botnet-to-pay-for-college-gets-no-prison-time/

Police Arrest Suspect in #LeakTheAnalyst Mandiant Hacking Incident

Law enforcement authorities have arrested an individual believed to be behind Operation #LeakTheAnalyst that took place over the summer. [...]

https://www.bleepingcomputer.com/news/security/police-arrest-suspect-in-leaktheanalyst-mandiant-hacking-incident/

Chinese Hacking Efforts More Strategic, Less Noisy

Chinese hackers, once some of the most careless and noisy hackers around, have become very careful and much more strategic at choosing the targets they go after. [...]

https://www.bleepingcomputer.com/news/security/chinese-hacking-efforts-more-strategic-less-noisy/

Malwarebytes Retires Popular Junkware Removal Tool Adware Cleanup Utility

Malwarebytes has decided to retire the anti-adware tool called Junkware Removal Tool. With this announcement JRT will no longer be developer and anti-adware resources are shifting entirely to AdwCleaner and MBAM. [...]

https://www.bleepingcomputer.com/news/security/malwarebytes-retires-popular-junkware-removal-tool-adware-cleanup-utility/

Group Uses SEO to Poison Google Search Results With Links to Banking Trojan

When you think you've seen it all, malware authors always find a way to impress you. Today's "that's clever!" moment comes courtesy of a criminal group that's been spreading a new version of the Zeus Panda banking trojan since June, this year. [...]

https://www.bleepingcomputer.com/news/security/group-uses-seo-to-poison-google-search-results-with-links-to-banking-trojan/

Popular USB Audio Driver Ships With Root Certificate, Big Security No-No

The Savitech USB audio driver installation package will install a root CA certificate into the Windows trusted root certificate store, in an incident that's reminiscent of the Superfish and eDellRoot episodes from 2015 and 2016, respectively. [...]

https://www.bleepingcomputer.com/news/security/popular-usb-audio-driver-ships-with-root-certificate-big-security-no-no/

Hacker Holds University for Ransom, Threatens to Dump Student Info

A hacker is trying to extort a Canadian university, threatening to dump student information unless university top brass pay 30,000 CAD (23,000 USD). [...]

https://www.bleepingcomputer.com/news/security/hacker-holds-university-for-ransom-threatens-to-dump-student-info/

Twitter Employee Deletes Donald Trump's Twitter Account on Last Day at Work

A rogue Twitter employee deleted President Trump's personal Twitter account on his last day as a customer support rep for the social network. [...]

https://www.bleepingcomputer.com/news/technology/twitter-employee-deletes-donald-trumps-twitter-account-on-last-day-at-work/

Experts Propose Standard for IoT Firmware Updates

Security experts have filed a proposal with the Internet Engineering Task Force (IETF) that defines a secure framework for delivering firmware updates to Internet of Things (IoT) devices. [...]

https://www.bleepingcomputer.com/news/security/experts-propose-standard-for-iot-firmware-updates/

TorMoil Vulnerability Leaks Real IP Address from Tor Browser Users

The Tor Project has released a security update for the Tor Browser on Mac and Linux to fix a vulnerability that leaks users' real IP addresses. [...]

https://www.bleepingcomputer.com/news/security/tormoil-vulnerability-leaks-real-ip-address-from-tor-browser-users/

GIBON Ransomware Being Distributued by Malspam

A new ransomware has been discovered called GIBON that is being distributed via malspam emails with malicious documents. [...]

https://www.bleepingcomputer.com/news/security/gibon-ransomware-being-distributued-by-malspam/

The Week in Ransomware - November 3rd 2017 - GIBON & ONI

Mostly small variants released this week, but we did have a new ransomware called GIBON that is interesting, and even better, decryptable. The other interesting news is about the ONI ransomware that appears to have be used as a smokescreen or wiper for an extended attack against Japanese companies. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-november-3rd-2017-gibon-and-oni/

Estonia Cancels 760,000 Electronic ID Cards Because of Crypto Flaw

Estonian authorities have decided to block and disable over 760,000 national electronic ID cards due to a cryptographic vulnerability that could allow attackers to clone IDs and forge identities. [...]

https://www.bleepingcomputer.com/news/government/estonia-cancels-760-000-electronic-id-cards-because-of-crypto-flaw/

Crypto Bugs in IEEE Standard Exposes Intellectual Property in Plaintext

Due to the usage of weak cryptography in the IEEE P1735 electronics standard, attackers can recover highly-valuable intellectual property in plaintext. [...]

https://www.bleepingcomputer.com/news/security/crypto-bugs-in-ieee-standard-exposes-intellectual-property-in-plaintext/

Student Arrested for Using Keylogger to Change Grades Over 90 Times

This past Thursday, a former University of Iowa student appeared in court on charges of hacking his school and professors and changing grades for himself and a few other fellow students. [...]

https://www.bleepingcomputer.com/news/security/student-arrested-for-using-keylogger-to-change-grades-over-90-times/

Popular Anime Site Crunchyroll.com Hijacked to Distribute Malware

Popular Anime site Crunchyroll.com was taken offline this morning due to a hack that caused visitors to be prompted to download a desktop version of their software. This software, though, was not as it seemed because it also included malware that was installed along with it. [...]

https://www.bleepingcomputer.com/news/security/popular-anime-site-crunchyroll-com-hijacked-to-distribute-malware/

Weird iOS Bug Replaces "I" With "A[?]" in Text Messages

iOS versions 11.0.3 and 11.1 are affected by a bug that replaces the letter "I" with "A[?]" in text messages. [...]

https://www.bleepingcomputer.com/news/apple/weird-ios-bug-replaces-i-with-a-in-text-messages/

GIBON Ransomware Being Sold on Underground Criminal Forums

Last week we posted an analysis of the GIBON Rasnsomware that was discovered being spread via malspam campaigns. Today, an anonymous source told BleepingComputer that this ransomware has been marketed on underground criminal forums since as early as May 2017. [...]

https://www.bleepingcomputer.com/news/security/gibon-ransomware-being-sold-on-underground-criminal-forums/

Popular Firefox Bookmark Syncing Add-On Starts Losing... Bookmarks

Users of the Firefox Xmarks bookmark syncing add-on are reporting various problems with the plugin, some of which include corrupted bookmarks, failed sync operations, or popup spamming. [...]

https://www.bleepingcomputer.com/news/software/popular-firefox-bookmark-syncing-add-on-starts-losing-bookmarks/