The Week in Ransomware - February 16th 2018 - NotPetya & Saturn
The biggest news this week is the UK formally attributing NotPetya to Russian attackers. Also if interest this week is the release of the Saturn Ransomware, which has a more organized feel compared to other ransomware distributions currently being distributed [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-february-16th-2018-notpetya-and-saturn/
The biggest news this week is the UK formally attributing NotPetya to Russian attackers. Also if interest this week is the release of the Saturn Ransomware, which has a more organized feel compared to other ransomware distributions currently being distributed [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-february-16th-2018-notpetya-and-saturn/
BleepingComputer
The Week in Ransomware - February 16th 2018 - NotPetya & Saturn
The biggest news this week is the UK formally attributing NotPetya to Russian attackers. Also if interest this week is the release of the Saturn Ransomware, which has a more organized feel compared to other ransomware distributions currently being distributed
Google Discloses Microsoft Edge Security Feature Bypass
Google has gone public with details about a Microsoft Edge vulnerability that attackers could abuse and bypass one of the browser's security features βArbitrary Code Guard (ACG). [...]
https://www.bleepingcomputer.com/news/security/google-discloses-microsoft-edge-security-feature-bypass/
Google has gone public with details about a Microsoft Edge vulnerability that attackers could abuse and bypass one of the browser's security features βArbitrary Code Guard (ACG). [...]
https://www.bleepingcomputer.com/news/security/google-discloses-microsoft-edge-security-feature-bypass/
BleepingComputer
Google Discloses Microsoft Edge Security Feature Bypass
Google has gone public with details about a Microsoft Edge vulnerability that attackers could abuse and bypass one of the browser's security features βArbitrary Code Guard (ACG).
Hacker Group Makes $3 Million by Installing Monero Miners on Jenkins Servers
A hacker group has made over $3 million by breaking into Jenkins servers and installing malware that mines the Monero cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/hacker-group-makes-3-million-by-installing-monero-miners-on-jenkins-servers/
A hacker group has made over $3 million by breaking into Jenkins servers and installing malware that mines the Monero cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/hacker-group-makes-3-million-by-installing-monero-miners-on-jenkins-servers/
BleepingComputer
Hacker Group Makes $3 Million by Installing Monero Miners on Jenkins Servers
A hacker group has made over $3 million by breaking into Jenkins servers and installing malware that mines the Monero cryptocurrency.
All Five Eyes Countries Formally Accuse Russia of Orchestrating NotPetya Attack
All the countries part of the Five Eyes intelligence-sharing alliance β the US, the UK, Canada, Australia, and New Zealandβ have made formal statements accusing the Russian Federation of orchestrating the NotPetya ransomware outbreak. [...]
https://www.bleepingcomputer.com/news/security/all-five-eyes-countries-formally-accuse-russia-of-orchestrating-notpetya-attack/
All the countries part of the Five Eyes intelligence-sharing alliance β the US, the UK, Canada, Australia, and New Zealandβ have made formal statements accusing the Russian Federation of orchestrating the NotPetya ransomware outbreak. [...]
https://www.bleepingcomputer.com/news/security/all-five-eyes-countries-formally-accuse-russia-of-orchestrating-notpetya-attack/
macOS May Lose Data Due to APFS Filesystem Bug
Under certain circumstances, macOS may copy data into the void, leading to data loss of important files, all due to a bug in how the operating system handles APFS sparse disk images. [...]
https://www.bleepingcomputer.com/news/apple/macos-may-lose-data-due-to-apfs-filesystem-bug/
Under certain circumstances, macOS may copy data into the void, leading to data loss of important files, all due to a bug in how the operating system handles APFS sparse disk images. [...]
https://www.bleepingcomputer.com/news/apple/macos-may-lose-data-due-to-apfs-filesystem-bug/
BleepingComputer
macOS May Lose Data Due to APFS Filesystem Bug
Under certain circumstances, macOS may copy data into the void, leading to data loss of important files, all due to a bug in how the operating system handles APFS sparse disk images.
New Saturn RaaS Lets Everyone Become a Ransomware Distributor for Free
The authors of the newly-discovered Saturn ransomware are allowing anyone to become a ransomware distributor for free via a newly launched Ransomware-as-a-Service (RaaS) affiliate program. [...]
https://www.bleepingcomputer.com/news/security/new-saturn-raas-lets-everyone-become-a-ransomware-distributor-for-free/
The authors of the newly-discovered Saturn ransomware are allowing anyone to become a ransomware distributor for free via a newly launched Ransomware-as-a-Service (RaaS) affiliate program. [...]
https://www.bleepingcomputer.com/news/security/new-saturn-raas-lets-everyone-become-a-ransomware-distributor-for-free/
BleepingComputer
New Saturn RaaS Lets Everyone Become a Ransomware Distributor for Free
The authors of the newly-discovered Saturn ransomware are allowing anyone to become a ransomware distributor for free via a newly launched Ransomware-as-a-Service (RaaS) affiliate program.
Android Ransomware Numbers Went Down in 2017
The number of ransomware infections on Android devices has gone down in 2017, according to an end-of-year report published by ESET last week. [...]
https://www.bleepingcomputer.com/news/security/android-ransomware-numbers-went-down-in-2017/
The number of ransomware infections on Android devices has gone down in 2017, according to an end-of-year report published by ESET last week. [...]
https://www.bleepingcomputer.com/news/security/android-ransomware-numbers-went-down-in-2017/
BleepingComputer
Android Ransomware Numbers Went Down in 2017
The number of ransomware infections on Android devices has gone down in 2017, according to an end-of-year report published by ESET last week.
Anchor CMS Sites May Be Spewing Their Database Passwords
Websites built using the Anchor CMS may be accidentally exposing their database passwords in publicly-facing error logs, Dutch security researcher Tijme Gommers has discovered. [...]
https://www.bleepingcomputer.com/news/security/anchor-cms-sites-may-be-spewing-their-database-passwords/
Websites built using the Anchor CMS may be accidentally exposing their database passwords in publicly-facing error logs, Dutch security researcher Tijme Gommers has discovered. [...]
https://www.bleepingcomputer.com/news/security/anchor-cms-sites-may-be-spewing-their-database-passwords/
BleepingComputer
Anchor CMS Sites May Be Spewing Their Database Passwords
Websites built using the Anchor CMS may be accidentally exposing their database passwords in publicly-facing error logs, Dutch security researcher Tijme Gommers has discovered.
Man Sues Microsoft Seeking New Copy of Windows 7 After Forced Windows 10 Upgrade
An Albuquerque man has sued Microsoft and its CEO βSatya Nadellaβ seeking a fresh copy of Windows 7 or $600 million in damages. [...]
https://www.bleepingcomputer.com/news/microsoft/man-sues-microsoft-seeking-new-copy-of-windows-7-after-forced-windows-10-upgrade/
An Albuquerque man has sued Microsoft and its CEO βSatya Nadellaβ seeking a fresh copy of Windows 7 or $600 million in damages. [...]
https://www.bleepingcomputer.com/news/microsoft/man-sues-microsoft-seeking-new-copy-of-windows-7-after-forced-windows-10-upgrade/
BleepingComputer
Man Sues Microsoft Seeking New Copy of Windows 7 After Forced Windows 10 Upgrade
An Albuquerque man has sued Microsoft and its CEO βSatya Nadellaβ seeking a fresh copy of Windows 7 or $600 million in damages.
Null Character Bug Lets Malware Bypass Windows 10 Anti-Malware Scan Interface
Malware that embeds a null character in its code can bypass security scans performed by the Anti-Malware Scan Interface (AMSI) on Windows 10 boxes. [...]
https://www.bleepingcomputer.com/news/security/null-character-bug-lets-malware-bypass-windows-10-anti-malware-scan-interface/
Malware that embeds a null character in its code can bypass security scans performed by the Anti-Malware Scan Interface (AMSI) on Windows 10 boxes. [...]
https://www.bleepingcomputer.com/news/security/null-character-bug-lets-malware-bypass-windows-10-anti-malware-scan-interface/
BleepingComputer
Null Character Bug Lets Malware Bypass Windows 10 Anti-Malware Scan Interface
Malware that embeds a null character in its code can bypass security scans performed by the Anti-Malware Scan Interface (AMSI) on Windows 10 boxes.
White House: Cyberattacks Cost US Economy Between $57B and $109B in 2016
Citing a report from the Council of Economic Advisers (CEA), the White House said on Friday that cyberattacks cost the US economy somewhere between $57 billion to $109 billion in 2016. [...]
https://www.bleepingcomputer.com/news/government/white-house-cyberattacks-cost-us-economy-between-57b-and-109b-in-2016/
Citing a report from the Council of Economic Advisers (CEA), the White House said on Friday that cyberattacks cost the US economy somewhere between $57 billion to $109 billion in 2016. [...]
https://www.bleepingcomputer.com/news/government/white-house-cyberattacks-cost-us-economy-between-57b-and-109b-in-2016/
BleepingComputer
White House: Cyberattacks Cost US Economy Between $57B and $109B in 2016
Citing a report from the Council of Economic Advisers (CEA), the White House said on Friday that cyberattacks cost the US economy somewhere between $57 billion to $109 billion in 2016.
Flight Sim Game Maker Embeds Password-Stealing Malware in Game Mod
Gamers are accusing a company that makes mods for Microsoft's Flight Simulator X game of putting a password stealer inside one of its add-ons. [...]
https://www.bleepingcomputer.com/news/security/flight-sim-game-maker-embeds-password-stealing-malware-in-game-mod/
Gamers are accusing a company that makes mods for Microsoft's Flight Simulator X game of putting a password stealer inside one of its add-ons. [...]
https://www.bleepingcomputer.com/news/security/flight-sim-game-maker-embeds-password-stealing-malware-in-game-mod/
BleepingComputer
Flight Sim Game Maker Embeds Password-Stealing Malware in Game Mod
Gamers are accusing a company that makes mods for Microsoft's Flight Simulator X game of putting a password stealer inside one of its add-ons.
Nearly 8,000 Security Flaws Did Not Receive a CVE ID in 2018
A record-breaking number of 20,832 vulnerabilities have been discovered in 2017 but only 12,932 of these received an official CVE identifier last year, a Risk Based Security (RBS) report reveals. [...]
https://www.bleepingcomputer.com/news/security/nearly-8-000-security-flaws-did-not-receive-a-cve-id-in-2018/
A record-breaking number of 20,832 vulnerabilities have been discovered in 2017 but only 12,932 of these received an official CVE identifier last year, a Risk Based Security (RBS) report reveals. [...]
https://www.bleepingcomputer.com/news/security/nearly-8-000-security-flaws-did-not-receive-a-cve-id-in-2018/
BleepingComputer
Nearly 8,000 Security Flaws Did Not Receive a CVE ID in 2018
A record-breaking number of 20,832 vulnerabilities have been discovered in 2017 but only 12,932 of these received an official CVE identifier last year, a Risk Based Security (RBS) report reveals.
Coldroot RAT Still Undetectable Despite Being Uploaded on GitHub Two Years Ago
Coldroot, a remote access trojan (RAT), is still undetectable by most antivirus engines, despite being uploaded and freely available on GitHub for almost two years. [...]
https://www.bleepingcomputer.com/news/security/coldroot-rat-still-undetectable-despite-being-uploaded-on-github-two-years-ago/
Coldroot, a remote access trojan (RAT), is still undetectable by most antivirus engines, despite being uploaded and freely available on GitHub for almost two years. [...]
https://www.bleepingcomputer.com/news/security/coldroot-rat-still-undetectable-despite-being-uploaded-on-github-two-years-ago/
BleepingComputer
Coldroot RAT Still Undetectable Despite Being Uploaded on GitHub Two Years Ago
Coldroot, a remote access trojan (RAT), is still undetectable by most antivirus engines, despite being uploaded and freely available on GitHub for almost two years.
Cryptojacking Scripts Could Soon Invade Your Word Documents
Cryptojacking scripts that mine Monero via JavaScript code can also run inside Word files, security researchers have discovered. [...]
https://www.bleepingcomputer.com/news/security/cryptojacking-scripts-could-soon-invade-your-word-documents/
Cryptojacking scripts that mine Monero via JavaScript code can also run inside Word files, security researchers have discovered. [...]
https://www.bleepingcomputer.com/news/security/cryptojacking-scripts-could-soon-invade-your-word-documents/
BleepingComputer
Cryptojacking Scripts Could Soon Invade Your Word Documents
Cryptojacking scripts that mine Monero via JavaScript code can also run inside Word files, security researchers have discovered.
LockCrypt .1BTC Variant Installed Over Hacked Remote Desktop Services
Today a reader sent me info regarding the LockCrypt Ransomware still being actively distributed over hacked remote desktop services. This variant, when installed, will encrypt a victim's files and then append the .1btc extension to encrypted file names. [...]
https://www.bleepingcomputer.com/news/security/lockcrypt-1btc-variant-installed-over-hacked-remote-desktop-services/
Today a reader sent me info regarding the LockCrypt Ransomware still being actively distributed over hacked remote desktop services. This variant, when installed, will encrypt a victim's files and then append the .1btc extension to encrypted file names. [...]
https://www.bleepingcomputer.com/news/security/lockcrypt-1btc-variant-installed-over-hacked-remote-desktop-services/
BleepingComputer
LockCrypt .1BTC Variant Installed Over Hacked Remote Desktop Services
Today a reader sent me info regarding the LockCrypt Ransomware still being actively distributed over hacked remote desktop services. This variant, when installed, will encrypt a victim's files and then append the .1btc extension to encrypted file names.
Tesla Internal Servers Infected with Cryptocurrency Miner
Hackers have breached Tesla cloud servers used by the company's engineers and have installed malware that mines the cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/tesla-internal-servers-infected-with-cryptocurrency-miner/
Hackers have breached Tesla cloud servers used by the company's engineers and have installed malware that mines the cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/tesla-internal-servers-infected-with-cryptocurrency-miner/
BleepingComputer
Tesla Internal Servers Infected with Cryptocurrency Miner
Hackers have breached Tesla cloud servers used by the company's engineers and have installed malware that mines the cryptocurrency.
Amazon AWS Servers Might Soon Be Held for Ransom, Similar to MongoDB
Amazon AWS S3 cloud storage servers might soon fall victims to ransom attacks, similar to how hacker groups held tens of thousands of MongoDB databases for ransom throughout 2017. [...]
https://www.bleepingcomputer.com/news/security/amazon-aws-servers-might-soon-be-held-for-ransom-similar-to-mongodb/
Amazon AWS S3 cloud storage servers might soon fall victims to ransom attacks, similar to how hacker groups held tens of thousands of MongoDB databases for ransom throughout 2017. [...]
https://www.bleepingcomputer.com/news/security/amazon-aws-servers-might-soon-be-held-for-ransom-similar-to-mongodb/
BleepingComputer
Amazon AWS Servers Might Soon Be Held for Ransom, Similar to MongoDB
Amazon AWS S3 cloud storage servers might soon fall victims to ransom attacks, similar to how hacker groups held tens of thousands of MongoDB databases for ransom throughout 2017.
A New North Korean Hacker Group Is Making a Name for Itself
A lesser-known North Korean cyber-espionage outfit has become more active on the international scene in 2017, after spending the previous five years targeting only South Korean government agencies and North Korean defectors. [...]
https://www.bleepingcomputer.com/news/security/a-new-north-korean-hacker-group-is-making-a-name-for-itself/
A lesser-known North Korean cyber-espionage outfit has become more active on the international scene in 2017, after spending the previous five years targeting only South Korean government agencies and North Korean defectors. [...]
https://www.bleepingcomputer.com/news/security/a-new-north-korean-hacker-group-is-making-a-name-for-itself/
BleepingComputer
A New North Korean Hacker Group Is Making a Name for Itself
A lesser-known North Korean cyber-espionage outfit has become more active on the international scene in 2017, after spending the previous five years targeting only South Korean government agencies and North Korean defectors.