Thanatos Ransomware Is First to Use Bitcoin Cash. Messes Up Encryption

Ransomware developers continue to release infections that are clearly not tested well and contain bugs that may make it difficult, if not impossible, for victims to recover their files. Such is the case with the new in the wild ransomware called Thanatos that has been discovered by security research MalwareHunterTeam. [...]

https://www.bleepingcomputer.com/news/security/thanatos-ransomware-is-first-to-use-bitcoin-cash-messes-up-encryption/

The Rig Exploit Kit Has Forsaken Ransomware for Coinminers

The exploit kit landscape has continued its downfall started in the summer of 2016 and its leading player —the RIG exploit kit— has stopped delivering any ransomware strains in 2018, focusing now on spreading cryptocurrency miners (coinminers) and information-stealing trojans (infostealers). [...]

https://www.bleepingcomputer.com/news/security/the-rig-exploit-kit-has-forsaken-ransomware-for-coinminers/

Project Crostini: Chrome OS to Support Containerized Linux Apps

Google is in the process of adding support to Chrome OS for running containerized Linux applications, according to a commit spotted in the operating system's source code last week by Reddit users. [...]

https://www.bleepingcomputer.com/news/google/project-crostini-chrome-os-to-support-containerized-linux-apps/

New UpdateChecker Coinminer Package Also Displays Ads to Further Piss You Off

A new malware package masquerading as an Flash Player update installs a miner and displays advertisements every 60 minutes. [...]

https://www.bleepingcomputer.com/news/security/new-updatechecker-coinminer-package-also-displays-ads-to-further-piss-you-off/

Apple Dropping iTunes Support for Apple TV 1st Gen, Windows XP, & Vista

Apple has announced that starting on May 25th 2018, iTunes will no longer be supported on Windows XP, Vista, and on Apple TV 1st generation. According to Apple this is because of security changes that will prevent Windows XP, Vista, and Apple TV 1st from using certain features of the iTunes store. [...]

https://www.bleepingcomputer.com/news/security/apple-dropping-itunes-support-for-apple-tv-1st-gen-windows-xp-and-vista/

New Mirai Variant Focuses on Turning IoT Devices into Proxy Servers

Security researchers have spotted a new variant of the Mirai malware that focuses on infecting IoT and networking equipment with the main purpose of turning these devices into a network of proxy servers used to relay malicious traffic. [...]

https://www.bleepingcomputer.com/news/security/new-mirai-variant-focuses-on-turning-iot-devices-into-proxy-servers/

Free Decrypter Available for GandCrab Ransomware Victims

Bitdefender has released a free decrypter that helps victims of GandCrab ransomware infections recover files without paying the ransom. [...]

https://www.bleepingcomputer.com/news/security/free-decrypter-available-for-gandcrab-ransomware-victims/

2% of Amazon S3 Public Buckets Aren't Write-Protected, Exposed to Ransom Attacks

New research published on Monday reveals that 5.8% of all Amazon S3 buckets are publicly readable, while 2% are publicly writeable —with the latter allowing anyone to add, edit, or delete data, and even hold a victim's data for ransom. [...]

https://www.bleepingcomputer.com/news/security/2-percent-of-amazon-s3-public-buckets-arent-write-protected-exposed-to-ransom-attacks/

Mozilla Will Let Users Disable Firefox Sync Starting with Firefox 60

Mozilla will add an option in Firefox 60 that will let users disable and hide the Firefox Sync option in the Firefox settings panel. [...]

https://www.bleepingcomputer.com/news/software/mozilla-will-let-users-disable-firefox-sync-starting-with-firefox-60/

Google Chrome: Flash Usage Declines from 80% in 2014 to Under 8% Today

The percentage of daily Chrome users who've loaded at least one page containing Flash content per day has gone down from around 80% in 2014 to under 8% in early 2018. [...]

https://www.bleepingcomputer.com/news/security/google-chrome-flash-usage-declines-from-80-percent-in-2014-to-under-8-percent-today/

Facebook Launches a Jobs Section —Because of Course It Would!

Facebook rolled out today a new section on its mammoth site, a section where users can find jobs and businesses can advertise job openings. [...]

https://www.bleepingcomputer.com/news/technology/facebook-launches-a-jobs-section-because-of-course-it-would/

EITest HoeflerText Scam Distributing GandCrab & Netsupport Manager

Even though Bitdefender released a GandCrab decryptor today, it is not stopping the GandCrab developers from continuing to use new methods to distribute their ransomware. Today malware traffic analysis nao_sec discovered that EITest was being used to distribute the GandCrab ransomware as part of the HoeflerText Font Update scam. [...]

https://www.bleepingcomputer.com/news/security/eitest-hoeflertext-scam-distributing-gandcrab-and-netsupport-manager/

23,000 Users Lose SSL Certificates in Trustico-DigiCert Spat

Over 23,000 users will have their SSL certificates revoked by tomorrow morning, March 1, in an incident between two companies —Trustico and DigiCert— that is likely to have a huge impact on the CA (Certificate Authority) industry as a whole in the coming months. [...]

https://www.bleepingcomputer.com/news/security/23-000-users-lose-ssl-certificates-in-trustico-digicert-spat/

Trustico States They Stored Private Keys for Customers' SSL Certificates

Trustico, a reseller of SSL certificates, has admitted to storing the private keys of some of the SSL certificates it issued to its customers over the past years. [...]

https://www.bleepingcomputer.com/news/security/trustico-states-they-stored-private-keys-for-customers-ssl-certificates/

Infamous Russian Cyber-Espionage Group Hacks German Government

APT28, an infamous cyber-espionage unit that many security firms believe is acting at the behest of the Russian government, has hacked various German government agencies for more than a year. [...]

https://www.bleepingcomputer.com/news/government/infamous-russian-cyber-espionage-group-hacks-german-government/

AdBlock Adds Feature to Cache Popular JavaScript Libraries

Popular ad-blocking browser extension AdBlock has added a new feature that will cache popular JavaScript libraries locally on the users' computers. [...]

https://www.bleepingcomputer.com/news/software/adblock-adds-feature-to-cache-popular-javascript-libraries/

New DDoS Record Set at 1.3 Tbps Thanks to Memcached Servers

We have a new record for the largest DDoS attack ever detected. The new high mark is 1.3 Tbps (Terabits-per-second). [...]

https://www.bleepingcomputer.com/news/security/new-ddos-record-set-at-13-tbps-thanks-to-memcached-servers/

Microsoft Partners with Intel to Deliver CPU Microcode Fixes via Windows Updates

Microsoft said today that it would take Intel CPU microcode updates meant to fix the Spectre v2 vulnerability and ship these updates to users via a Windows update package. [...]

https://www.bleepingcomputer.com/news/security/microsoft-partners-with-intel-to-deliver-cpu-microcode-fixes-via-windows-updates/

New Tools Make Checking for Leaked Passwords a Lot Easier

The work that Australian security researcher Troy Hunt has done with the Have I Been Pwned project is yielding useful tools that developers and webmasters can now use to make sure users stop using silly and easy to guess passwords. [...]

https://www.bleepingcomputer.com/news/security/new-tools-make-checking-for-leaked-passwords-a-lot-easier/

"Fakeapp" Android Malware Steals Facebook Credentials, Logs into Accounts

A new Android malware strain can phish Facebook user credentials and then log into accounts to harvest account details, and even search and collect results using the Facebook app's search functionality. [...]

https://www.bleepingcomputer.com/news/security/fakeapp-android-malware-steals-facebook-credentials-logs-into-accounts/