Backend Servers for 1,000 Apps Expose Terabytes of User Data

There are 1,000 apps available for download today that despite not containing any malware or featuring glaring vulnerabilities, they communicate and store data on improperly secured backend servers, exposing user data along the way. [...]

https://www.bleepingcomputer.com/news/security/backend-servers-for-1-000-apps-expose-terabytes-of-user-data/

EFF Sues FBI for Records About Paid Geek Squad Informants

The Electronic Frontier Foundation (EFF) has filed a Freedom of Information Act (FOIA) lawsuit against the FBI for the purpose of obtaining documents that reveal more details about the Bureau's close relationship with Geek Squad, a Best Buy division specialized in computer repairs. [...]

https://www.bleepingcomputer.com/news/legal/eff-sues-fbi-for-records-about-paid-geek-squad-informants/

Man Linked to Auto Parts Store Behind Bachosens Malware

A man linked to an auto parts store in a disputed territory of Moldova is behind the Bachosens malware, a backdoor trojan used in a very small number of attacks, but one of the most advanced threats of its kind. [...]

https://www.bleepingcomputer.com/news/security/man-linked-to-auto-parts-store-behind-bachosens-malware/

Linux Distros Patch Dangerous Vulnerability in Sudo Command

Several Linux distros have issued updates to fix a vulnerability in Sudo, a Linux app behind the "sudo" command, which can allow an unprivileged attacker to gain root privileges. [...]

https://www.bleepingcomputer.com/news/security/linux-distros-patch-dangerous-vulnerability-in-sudo-command/

Stanford University Site Hosted Malware for Months

For almost four months, script kiddies ran amok in one of Stanford's subdomains, installing web shells, mailers, and other types of web malware. [...]

https://www.bleepingcomputer.com/news/security/stanford-university-site-hosted-malware-for-months/

CIA Malware Can Switch Clean Files With Malware When You Download Them via SMB

After taking last week off, WikiLeaks came back today and released documentation on another CIA cyberweapon. Codenamed Pandemic, this is a tool that targets computers with shared folders, from where users download files via SMB. [...]

https://www.bleepingcomputer.com/news/security/cia-malware-can-switch-clean-files-with-malware-when-you-download-them-via-smb/

Chinese Company Behind Adware That Infected Over 250 Million Computers

A Chinese digital marketing company named Rafotech is behind a wave of inter-connected adware families that found their way onto the computers of millions of users. [...]

https://www.bleepingcomputer.com/news/security/chinese-company-behind-adware-that-infected-over-250-million-computers/

Google Publishes List of 42 Phones Running Latest Android Security Updates

Google published yesterday a list of 42 smartphone models from 12 vendors that run up-to-date Android OS versions with the latest security patches applied. [...]

https://www.bleepingcomputer.com/news/security/google-publishes-list-of-42-phones-running-latest-android-security-updates/

Hadoop Servers Expose Over 5 Petabytes of Data

Improperly configured HDFS-based servers, mostly Hadoop installs, are exposing over five petabytes of information, according to John Matherly, founder of Shodan, a search engine for discovering Internet-connected devices. [...]

https://www.bleepingcomputer.com/news/security/hadoop-servers-expose-over-5-petabytes-of-data/

PowerPoint File Downloads Malware When You Hover a Link, No Macros Required

Security researchers have spotted a booby-trapped PowerPoint file that will download malware to a computer whenever a victim hovers a link, no macro scripts required. [...]

https://www.bleepingcomputer.com/news/security/powerpoint-file-downloads-malware-when-you-hover-a-link-no-macros-required/

Banking Trojan Locks Users Out of Active Directory Domains

If a large number of users are getting locked out of your organization's Active Directory domain, it is possible that some of them may have been infected with QakBot, a rare but very dangerous malware strain. [...]

https://www.bleepingcomputer.com/news/security/banking-trojan-locks-users-out-of-active-directory-domains/

The Week in Ransomware - June 2nd 2017 - XData, Decryptors, and Junkware

This has been a week of pure junk ransomware releases and decryptors. As most of these smaller ransomware variants never make it into actual distribution, I call this a win for the good guys. The big news this week is the release of the master decryption key for XData and updated an updated decryptor for Amnesia2.  [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-june-2nd-2017-xdata-decryptors-and-junkware/

EternalBlue NSA Exploit Becomes Commodity Hacking Tool, Spreads to Other Malware

ETERNALBLUE, an alleged NSA exploit targeting the SMBv1 protocol leaked by the Shadow Brokers in mid-April, has become a commodity hacking tool among malware developers. [...]

https://www.bleepingcomputer.com/news/security/eternalblue-nsa-exploit-becomes-commodity-hacking-tool-spreads-to-other-malware/

The Way You Walk Could Be the Best Biometrics Authentication Solution as of Yet

A person's gait, or the motions of his feet and body as he walks, could be used as a very reliable authentication method for offline security systems. [...]

https://www.bleepingcomputer.com/news/security/the-way-you-walk-could-be-the-best-biometrics-authentication-solution-as-of-yet/

Ads in Google Search Results Redirect Users to Tech Support Scam

Malicious ads displayed in Google search results for Target — the US retailer — redirected users to a tech support scam. [...]

https://www.bleepingcomputer.com/news/security/ads-in-google-search-results-redirect-users-to-tech-support-scam/

Chrome Version with Built-In Ad Blocker to Launch in Early 2018

Google has just confirmed that a version of Chrome with built-in ad-blocking features is in the works, and the company hopes to release it in "early 2018." [...]

https://www.bleepingcomputer.com/news/google/chrome-version-with-built-in-ad-blocker-to-launch-in-early-2018/

Cybercrime Market Shares Infrastructure With Jaff Ransomware Operation

The people who distribute the Jaff ransomware share server space with a cybercrime marketplace called PaySell. The server in question is located at 5.101.66.85, an IP assigned to a hosting provider in Saint Petersburgh, Russia, according to Heimdal Security, the company that discovered the connection. [...]

https://www.bleepingcomputer.com/news/security/cybercrime-market-shares-infrastructure-with-jaff-ransomware-operation/

Hackers Ruin ABC TV Show Premiere, Leak First Eight Episodes on Torrent Site

The hacker group known as The Dark Overlord (TDO) leaked today the first eight episodes of an upcoming TV game show, set to premiere on ABC on Sunday, June 11. [...]

https://www.bleepingcomputer.com/news/security/hackers-ruin-abc-tv-show-premiere-leak-first-eight-episodes-on-torrent-site/

Woman Accused of Hacking Company and Redirecting Money to Her Bank Account

The Royal Canadian Mounted Police (RCMP) have arrested and charged a Canadian woman for hacking into the email of a local company's CEO and redirecting 52,000 Canadian dollars ($38,600) to her own bank account. [...]

https://www.bleepingcomputer.com/news/security/woman-accused-of-hacking-company-and-redirecting-money-to-her-bank-account/

British PM Uses Terrorist Attacks to Push for Orwellian Internet Surveillance

Some people have no shame, and one of those is Theresa May, the Prime Minister of the United Kingdom, who used the terror attacks that took place in London, on Saturday, June 3, to push her party's agenda for laws that would push for encryption backdoors. [...]

https://www.bleepingcomputer.com/news/government/british-pm-uses-terrorist-attacks-to-push-for-orwellian-internet-surveillance/