People Are Photoshopping WannaCry Ransom Notes on Everything with a Screen

It only took one troll to photoshop one image to get the ball rolling. Now we have all sorts of craziness, ranging from pregnancy tests to the Enterprise. [...]

https://www.bleepingcomputer.com/news/security/people-are-photoshopping-wannacry-ransom-notes-on-everything-with-a-screen/

BTCWare Ransomware Master Key Released, Free Decrypter Available

Users that have had their files encrypted via the BTCWare ransomware can recover their files for free after a user released the BTCWare master decryption key today on the Bleeping Computer forums. [...]

https://www.bleepingcomputer.com/news/security/btcware-ransomware-master-key-released-free-decrypter-available/

You Can Steal Windows Login Credentials via Google Chrome and SCF Files

Just by accessing a folder containing a malicious SCF file, a user will unwittingly share his computer's login credentials with an attacker via Google Chrome and the SMB protocol. [...]

https://www.bleepingcomputer.com/news/security/you-can-steal-windows-login-credentials-via-google-chrome-and-scf-files/

Malware Uses Fake WordPress API Domain to Steal Sensitive Cookies

Security researchers from Sucuri have found hacked WordPress sites that were altered to secretly siphon off cookies for user and admin accounts to a rogue domain imitating the WordPress API. [...]

https://www.bleepingcomputer.com/news/security/malware-uses-fake-wordpress-api-domain-to-steal-sensitive-cookies/

Hackers Holding Disney for Ransom Over "Pirates of the Caribbean 5" Movie

Hackers are holding Disney for ransom, threatening to release a high-quality version of the "Pirates Of The Caribbean: Dead Men Tell No Tales" movie on torrents unless they're paid a huge sum of money in Bitcoin. [...]

https://www.bleepingcomputer.com/news/security/hackers-holding-disney-for-ransom-over-pirates-of-the-caribbean-5-movie/

3 Security Firms Say WannaCry Ransomware Shares Code with North Korean Malware

While initially, we thought this would be a silly and unsubstantiated discovery, the number of security firms claiming they've identified and confirmed connections between the WannaCry ransomware and malware used by the Lazarus Group has now gone up to three. [...]

https://www.bleepingcomputer.com/news/security/3-security-firms-say-wannacry-ransomware-shares-code-with-north-korean-malware/

Security Guard Hacks and Trashes Company Servers After Quitting His Job

A California judge has found Yovan Garcia, a former security guard, guilty for hacking his former employer, stealing proprietary software, and trashing the company network after he resigned and left his job. [...]

https://www.bleepingcomputer.com/news/security/security-guard-hacks-and-trashes-company-servers-after-quitting-his-job/

New Joomla SQL Injection Flaw Is Ridiculously Simple to Exploit

The Joomla CMS project released today Joomla 3.7.1 to fix an SQL injection flaw that allows attackers to execute custom SQL code on affected systems and take over vulnerable sites. [...]

https://www.bleepingcomputer.com/news/security/new-joomla-sql-injection-flaw-is-ridiculously-simple-to-exploit/

Popular Torrent Site ExtraTorrent Shuts Down out of the Blue

Hours ago, the ExtraTorrent portal announced it has shut down for good via a short message plastered on its homepage. [...]

https://www.bleepingcomputer.com/news/technology/popular-torrent-site-extratorrent-shuts-down-out-of-the-blue/

Uiwix Ransomware Using EternalBlue SMB Exploit To Infect Victims

A ransomware called Uiwix has been discovered to be using the EternalBlue exploit to infect vulnerable victims. While Uiwix is still being researched, this article will provide details on what is currently known. [...]

https://www.bleepingcomputer.com/news/security/uiwix-ransomware-using-eternalblue-smb-exploit-to-infect-victims/

Twitter Ticks Off a Bunch of Users with New Privacy Policy Update

Twitter has angered its userbase on Wednesday night after the company pushed out an update to its privacy policy that expands its ad tracking habits and even turns some features on by default. [...]

https://www.bleepingcomputer.com/news/technology/twitter-ticks-off-a-bunch-of-users-with-new-privacy-policy-update/

New Battery Technology Draws Energy Directly From Human Body

A team of eleven scientists from UCLA and the University of Connecticut has created a new energy-storing device that can draw electrical power from the human body. [...]

https://www.bleepingcomputer.com/news/technology/new-battery-technology-draws-energy-directly-from-human-body/

Firefox 55: Flash Will Become "Ask to Activate" for Everyone

Starting with the release of Firefox 55, the Adobe Flash plugin for Firefox will be set to "Ask to Activate" by default for all users. [...]

https://www.bleepingcomputer.com/news/software/firefox-55-flash-will-become-ask-to-activate-for-everyone/

Today Microsoft released Insider Preview Build 16199 for PC and Insider Preview Build 15215 for Mobile to insiders on the fast ring. With build 16199, Microsoft further expands the My People experience by having emojis sent by your contacts come to life as little animated emojis on your desktop. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-16199-brings-animated-emojis-to-the-desktop/

Owners of WDTV Media Players Advised to Take Devices Offline Due to Security Bugs

Security researchers from SEC Consult have found eight vulnerabilities in the firmware of Western Digital TV Media Player that allow hackers a multitude of ways to hack and take over the device. [...]

https://www.bleepingcomputer.com/news/security/owners-of-wdtv-media-players-advised-to-take-devices-offline-due-to-security-bugs/

Wallet Ransomware Master Keys Released on BleepingComputer. Avast Releases Free Decryptor

This morning a newly registered member posted the master decryption keys for the Wallet Ransomware in the BleepingComputer.com forums. Once these keys were determined to be valid, Avast updated their decryptor to support the .Wallet extension. Victims can now use this decryptor to decrypt their files for free. [...]

https://www.bleepingcomputer.com/news/security/wallet-ransomware-master-keys-released-on-bleepingcomputer-avast-releases-free-decryptor/

Chinese Government Contractor Identified as Cyber-Espionage Group APT3

An anonymous group known as Intrusion Truth has published evidence that links an intelligence contractor working with the Chinese government to cyber-attacks that have been carried out by a cyber-espionage group known in the infosec community as APT3. [...]

https://www.bleepingcomputer.com/news/security/chinese-government-contractor-identified-as-cyber-espionage-group-apt3/

WannaCry Ransomware Infects Actual Medical Devices, Not Just Computers

Reports have surfaced that the WannaCry ransomware has infected actual medical devices, not just computers at medical facilities. [...]

https://www.bleepingcomputer.com/news/security/wannacry-ransomware-infects-actual-medical-devices-not-just-computers/

Hacker Demands Ransom After Stealing Source Code From Famous App Maker

Steven Frank, co-founder of Panic, a vendor of Mac and iOS apps, has admitted yesterday that a hacker stole some of his company's source code. [...]

https://www.bleepingcomputer.com/news/security/hacker-demands-ransom-after-stealing-source-code-from-famous-app-maker/

Vault 7: CIA Co-Developed Athena Malware with US Cyber-Security Company

According to leaked documents, which WikiLeaks previously claimed it received from hackers and CIA insiders, Athena is an implant — a CIA technical term for "malware" — that can target and infect any Windows system, from Windows XP to Windows 10, Microsoft's latest OS version. [...]

https://www.bleepingcomputer.com/news/security/vault-7-cia-co-developed-athena-malware-with-us-cyber-security-company/