Britain's Internet regulator, the Information Commissioner's Office (ICO), has fined the city council of Gloucester with £100,000 ($125,000) after local authorities failed to apply a security update for almost three months. [...]

https://www.bleepingcomputer.com/news/security/uk-city-council-slapped-with-100k-fine-after-failure-to-update-server-leads-to-hack/

Cryptocurrency Miner Delivered via NSA's DOUBLEPULSAR Backdoor

Windows computers are being targeted with a new cryptocurrency miner that uses an NSA hacking tool to infect users' PCs. Detected under the generic name of Trojan.BtcMine.1259, this trojan was first spotted last week by Russian antivirus vendor Dr.Web. [...]

https://www.bleepingcomputer.com/news/security/cryptocurrency-miner-delivered-via-nsas-doublepulsar-backdoor/

Mozilla Launches Firefox Focus for Android, a Browser with a Built-In Ad Blocker

Mozilla launched today Firefox Focus for Android, a brand new mobile browser for Android that comes with a stripped down minimal interface, a built-in ad blocker, and an always-on "private browsing" mode. [...]

https://www.bleepingcomputer.com/news/mobile/mozilla-launches-firefox-focus-for-android-a-browser-with-a-built-in-ad-blocker/

95% of Windows 10 PCs Have a Modern Antivirus Installed

Microsoft has responded to a complaint filed by Kaspersky Labs, which accused the OS maker of using its dominant market position to push its antivirus — Windows Defender — on Windows 10 users, on the detriment of third-party AVs. [...]

https://www.bleepingcomputer.com/news/microsoft/95-percent-of-windows-10-pcs-have-a-modern-antivirus-installed/

One Month Later, WannaCry Ransomware Is Still Shutting Down Factories

On Monday, Honda was forced to temporarily shut down its car plant in Sayama, Japan, after some of its computer systems were infected with the infamous WannaCry ransomware. [...]

https://www.bleepingcomputer.com/news/security/one-month-later-wannacry-ransomware-is-still-shutting-down-factories/

TeslaWare Plays Russian Roulette with your Files

I was told about a new ransomware called TeslaWare that is being promoted on a black hat criminal site. After a quick search, I was able to find a sample that was compiled yesterday and I began to dig into to it.  What did I find? That the marketing poster promoting TeslaWare was more advanced than the ransomware itself. [...]

https://www.bleepingcomputer.com/news/security/teslaware-plays-russian-roulette-with-your-files/

NY Supreme Court Judge Loses Over $1 Million in Email Scam

Acting New York State Supreme Court Justice Lori Sattler has lost over one million dollars after falling victim of an email scam, NY Daily News reports. [...]

https://www.bleepingcomputer.com/news/security/ny-supreme-court-judge-loses-over-1-million-in-email-scam/

Today Microsoft released Insider Preview Build 16226 for PC to insiders on the fast ring. This build has a lot of new features including updated emojis, tracking GPU performance in task manager, and Hyper-V improvements. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-16226-adds-gpu-performance-to-task-manager/

Microsoft Makes Edge Browser a Permanent Part of Its Bug Bounty Program

Microsoft promoted today the Edge browser to a permanent spot in its bug bounty program, in which, Edge was only part in a limited role. [...]

https://www.bleepingcomputer.com/news/security/microsoft-makes-edge-browser-a-permanent-part-of-its-bug-bounty-program/

WannaCry Ransomware Infects 55 Speed and Red-Light Cameras in Australia

Fifty-five speed and red-light cameras in the Australia's state of Victoria were infected with the WannaCry ransomware. [...]

https://www.bleepingcomputer.com/news/security/wannacry-ransomware-infects-55-speed-and-red-light-cameras-in-australia/

Locky Ransomware Returns, but Targets Only Windows XP & Vista

The Locky ransomware is back, spreading via a massive wave of spam emails distributed by the Necurs botnet, but the campaign appears to be a half-baked effort because the ransomware is not able to encrypt files on modern Windows OS versions, locking files only on older Windows XP & Vista machines. [...]

https://www.bleepingcomputer.com/news/security/locky-ransomware-returns-but-targets-only-windows-xp-and-vista/

Vault 7: CIA Has Malware for Hacking Air-Gapped Networks via USB Thumb Drives

WikiLeaks dumped today the manuals of several hacking utilities part of Brutal Kangaroo, a CIA malware toolkit for hacking into air-gapped (offline) networks using tainted USB thumb drive. [...]

https://www.bleepingcomputer.com/news/security/vault-7-cia-has-malware-for-hacking-air-gapped-networks-via-usb-thumb-drives/

Chrome and Firefox Headless Modes May Spur New Adware & Clickfraud Tactics

During the past month, both Google and Mozilla developers have added support in their respective browsers for "headless mode," a mechanism that allows browsers to run silently in the OS background and with no visible GUI. [...]

https://www.bleepingcomputer.com/news/security/chrome-and-firefox-headless-modes-may-spur-new-adware-and-clickfraud-tactics/

Two Men Arrested for Hacking Microsoft

British police announced today they arrested two suspects part of an international group that hacked into Microsoft's network. [...]

https://www.bleepingcomputer.com/news/security/two-men-arrested-for-hacking-microsoft/

New GhostHook Attack Bypasses Windows PatchGuard Protections

Security experts have discovered a method of bypassing Windows PatchGuard protections and hooking malicious code into the Windows kernel, which allows an attacker to plant rootkits on systems previously thought to be impregnable. [...]

https://www.bleepingcomputer.com/news/security/new-ghosthook-attack-bypasses-windows-patchguard-protections/

RIG Exploit Kit Usage Declines as Browsers Are Getting Harder to Hack

Another major exploit kit (EK) looks like it's heading for the EK graveyard as activity from the RIG EK has fallen to less than 25% of what the exploit kit used to handle three months ago, in March 2017. [...]

https://www.bleepingcomputer.com/news/security/rig-exploit-kit-usage-declines-as-browsers-are-getting-harder-to-hack/

FBI: Victims Aren't Reporting Ransomware Attacks

Despite being an expanding threat, ransomware infections are rarely reported to law enforcement agencies, according to conclusions from the 2016 Internet Crime Report, released yesterday by the FBI's Internet Crime Complaint Center (IC3). [...]

https://www.bleepingcomputer.com/news/security/fbi-victims-arent-reporting-ransomware-attacks/

Former CIA Officer Arrested for Selling Top Secret Files to Chinese Operatives

A former CIA agent was arrested and arraigned in court yesterday on accusations of selling top secret documents to Chinese intelligence officers disguised as members of a Chinese think tank. [...]

https://www.bleepingcomputer.com/news/government/former-cia-officer-arrested-for-selling-top-secret-files-to-chinese-operatives/

The Week in Ransomware - June 23rd 2017 - A Fricken 1 Million Dollar Ransom Payment

What a crazy week. The biggest news is that we had a hosting company who actually paid a 1 million dollar (think Dr. Evil) ransomware payment. We then had the return of Locky, which at one point was the preminent ransomware being distributed. Will have to see if it can become king of the hill again. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-june-23rd-2017-a-fricken-1-million-dollar-ransom-payment/

Windows 10 Source Code, Internal Builds Allegedly Leak Online

An unknown person has uploaded online over 32TB of Windows 10 internal builds, along with some of the operating system's source code. The data was uploaded on BetaArchive, an Internet forum dedicated to archiving software beta builds so users and developers can track how a project evolved over time. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-source-code-internal-builds-allegedly-leak-online/