The Week in Ransomware - April 13th 2018 - PUBG Ransomware, Matrix, and More
Not too much new ransomware released this week, but rather just general ransomware news. One item of interest was the joke ransomware called PUBG Ransomware that made you play Player's Unknown Battleground in order to decrypt your files. Other than that, it was just news about new variants that were released or about variants. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-april-13th-2018-pubg-ransomware-matrix-and-more/
Not too much new ransomware released this week, but rather just general ransomware news. One item of interest was the joke ransomware called PUBG Ransomware that made you play Player's Unknown Battleground in order to decrypt your files. Other than that, it was just news about new variants that were released or about variants. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-april-13th-2018-pubg-ransomware-matrix-and-more/
BleepingComputer
The Week in Ransomware - April 13th 2018 - PUBG Ransomware, Matrix, and More
Not too much new ransomware released this week, but rather just general ransomware news. One item of interest was the joke ransomware called PUBG Ransomware that made you play Player's Unknown Battleground in order to decrypt your files. Other than that,β¦
Researchers Take Down Network of 52,000 Infected Servers Distributing Malware
Security researchers from Abuse.ch, BrillantIT, and Proofpoint have sinkholed the command and control infrastructure behind EITest, a network of hacked servers abused by cyber-criminals to redirect users to malware, exploits kits, and tech support scams. [...]
https://www.bleepingcomputer.com/news/security/researchers-take-down-network-of-52-000-infected-servers-distributing-malware/
Security researchers from Abuse.ch, BrillantIT, and Proofpoint have sinkholed the command and control infrastructure behind EITest, a network of hacked servers abused by cyber-criminals to redirect users to malware, exploits kits, and tech support scams. [...]
https://www.bleepingcomputer.com/news/security/researchers-take-down-network-of-52-000-infected-servers-distributing-malware/
BleepingComputer
Researchers Take Down Network of 52,000 Infected Servers Distributing Malware
Security researchers from Abuse.ch, BrillantIT, and Proofpoint have sinkholed the command and control infrastructure behind EITest, a network of hacked servers abused by cyber-criminals to redirect users to malware, exploits kits, and tech support scams.
Microsoft Engineer Charged in Reveton Ransomware Case
A Microsoft network engineer is facing federal charges in Florida for helping launder money obtained from victims of the Reventon ransomware. [...]
https://www.bleepingcomputer.com/news/security/microsoft-engineer-charged-in-reveton-ransomware-case/
A Microsoft network engineer is facing federal charges in Florida for helping launder money obtained from victims of the Reventon ransomware. [...]
https://www.bleepingcomputer.com/news/security/microsoft-engineer-charged-in-reveton-ransomware-case/
BleepingComputer
Microsoft Engineer Charged in Reveton Ransomware Case
A Microsoft network engineer is facing federal charges in Florida for helping launder money obtained from victims of the Reventon ransomware.
FTC: "Warranty Void If Removed" Stickers Are Illegal
The US Federal Trade Commission (FTC) sent letters this week to six major companies containing warnings that using "warranty void if removed" or similarly worded stickers on their products is illegal. [...]
https://www.bleepingcomputer.com/news/government/ftc-warranty-void-if-removed-stickers-are-illegal/
The US Federal Trade Commission (FTC) sent letters this week to six major companies containing warnings that using "warranty void if removed" or similarly worded stickers on their products is illegal. [...]
https://www.bleepingcomputer.com/news/government/ftc-warranty-void-if-removed-stickers-are-illegal/
BleepingComputer
FTC: "Warranty Void If Removed" Stickers Are Illegal
The US Federal Trade Commission (FTC) sent letters this week to six major companies containing warnings that using "warranty void if removed" or similarly worded stickers on their products is illegal.
Old JavaScript Crypto Flaw Puts Bitcoin Funds at Risk
Security researchers are warning that old Bitcoin addresses generated in the browser or through JavaScript-based wallet apps might be affected by a cryptographic flaw that allows attackers to brute-force private keys, take control of users' wallets, and steal funds. [...]
https://www.bleepingcomputer.com/news/security/old-javascript-crypto-flaw-puts-bitcoin-funds-at-risk/
Security researchers are warning that old Bitcoin addresses generated in the browser or through JavaScript-based wallet apps might be affected by a cryptographic flaw that allows attackers to brute-force private keys, take control of users' wallets, and steal funds. [...]
https://www.bleepingcomputer.com/news/security/old-javascript-crypto-flaw-puts-bitcoin-funds-at-risk/
BleepingComputer
Old JavaScript Crypto Flaw Puts Bitcoin Funds at Risk
Security researchers are warning that old Bitcoin addresses generated in the browser or through JavaScript-based wallet apps might be affected by a cryptographic flaw that allows attackers to brute-force private keys, take control of users' wallets, and stealβ¦
Intel SPI Flash Flaw Lets Attackers Alter or Delete BIOS/UEFI Firmware
Intel has addressed a vulnerability in the configuration of several CPU series that allow an attacker to alter the behavior of the chip's SPI Flash memory βa mandatory component used during the boot-up process [1, 2, 3]. [...]
https://www.bleepingcomputer.com/news/security/intel-spi-flash-flaw-lets-attackers-alter-or-delete-bios-uefi-firmware/
Intel has addressed a vulnerability in the configuration of several CPU series that allow an attacker to alter the behavior of the chip's SPI Flash memory βa mandatory component used during the boot-up process [1, 2, 3]. [...]
https://www.bleepingcomputer.com/news/security/intel-spi-flash-flaw-lets-attackers-alter-or-delete-bios-uefi-firmware/
BleepingComputer
Intel SPI Flash Flaw Lets Attackers Alter or Delete BIOS/UEFI Firmware
Intel has addressed a vulnerability in the configuration of several CPU series that allow an attacker to alter the behavior of the chip's SPI Flash memory βa mandatory component used during the boot-up process [1, 2, 3].
Windows Servers Targeted for Cryptocurrency Mining via IIS Flaw
Hackers are leveraging an IIS 6.0 vulnerability to take over Windows servers and install a malware strain that mines the Electroneum cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/windows-servers-targeted-for-cryptocurrency-mining-via-iis-flaw/
Hackers are leveraging an IIS 6.0 vulnerability to take over Windows servers and install a malware strain that mines the Electroneum cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/windows-servers-targeted-for-cryptocurrency-mining-via-iis-flaw/
BleepingComputer
Windows Servers Targeted for Cryptocurrency Mining via IIS Flaw
Hackers are leveraging an IIS 6.0 vulnerability to take over Windows servers and install a malware strain that mines the Electroneum cryptocurrency.
Retired Airline Manager Who Hacked Former Employer Caught Thanks to VPN Logs
An Alaska judge sentenced a 59-year-old woman, a former director at Peninsula Airlines (PenAir), for hacking her former employer and wreaking havoc for two days inside the company's flight reservations system. [...]
https://www.bleepingcomputer.com/news/security/retired-airline-manager-who-hacked-former-employer-caught-thanks-to-vpn-logs/
An Alaska judge sentenced a 59-year-old woman, a former director at Peninsula Airlines (PenAir), for hacking her former employer and wreaking havoc for two days inside the company's flight reservations system. [...]
https://www.bleepingcomputer.com/news/security/retired-airline-manager-who-hacked-former-employer-caught-thanks-to-vpn-logs/
BleepingComputer
Retired Airline Manager Who Hacked Former Employer Caught Thanks to VPN Logs
An Alaska judge sentenced a 59-year-old woman, a former director at Peninsula Airlines (PenAir), for hacking her former employer and wreaking havoc for two days inside the company's flight reservations system.
What To Expect at the RSA 2018 Conference This Week
The RSA Conference, an annual security conference with over 40,000 attendees expected this year, runs from April 16th through the 20th. Additionally, there will be 500 vendors who will be on site to brandish the latest tech in the field. [...]
https://www.bleepingcomputer.com/news/security/what-to-expect-at-the-rsa-2018-conference-this-week/
The RSA Conference, an annual security conference with over 40,000 attendees expected this year, runs from April 16th through the 20th. Additionally, there will be 500 vendors who will be on site to brandish the latest tech in the field. [...]
https://www.bleepingcomputer.com/news/security/what-to-expect-at-the-rsa-2018-conference-this-week/
BleepingComputer
What To Expect at the RSA 2018 Conference This Week
The RSA Conference, an annual security conference with over 40,000 attendees expected this year, runs from April 16th through the 20th. Additionally, there will be 500 vendors who will be on site to brandish the latest tech in the field.
Eleven Drug Convictions After Extracting Fingerprint From WhatsApp Photo
Police in South Wales employed a pioneering fingerprint technique which led to the conviction a drug ring. An image of a man holding ecstasy tablets in his palm was discovered on the cell phone of one of the detained suspects. It was then sent to the Scientific Support Unit of the South Wales Police. [...]
https://www.bleepingcomputer.com/news/government/eleven-drug-convictions-after-extracting-fingerprint-from-whatsapp-photo/
Police in South Wales employed a pioneering fingerprint technique which led to the conviction a drug ring. An image of a man holding ecstasy tablets in his palm was discovered on the cell phone of one of the detained suspects. It was then sent to the Scientific Support Unit of the South Wales Police. [...]
https://www.bleepingcomputer.com/news/government/eleven-drug-convictions-after-extracting-fingerprint-from-whatsapp-photo/
BleepingComputer
Eleven Drug Convictions After Extracting Fingerprint From WhatsApp Photo
Police in South Wales employed a pioneering fingerprint technique which led to the conviction a drug ring. An image of a man holding ecstasy tablets in his palm was discovered on the cell phone of one of the detained suspects. It was then sent to the Scientificβ¦
Crooks Hijack Router DNS Settings to Redirect Users to Android Malware
Malware authors have hijacked DNS settings on vulnerable routers to redirect users to sites hosting Android malware. [...]
https://www.bleepingcomputer.com/news/security/crooks-hijack-router-dns-settings-to-redirect-users-to-android-malware/
Malware authors have hijacked DNS settings on vulnerable routers to redirect users to sites hosting Android malware. [...]
https://www.bleepingcomputer.com/news/security/crooks-hijack-router-dns-settings-to-redirect-users-to-android-malware/
BleepingComputer
Crooks Hijack Router DNS Settings to Redirect Users to Android Malware
Malware authors have hijacked DNS settings on vulnerable routers to redirect users to sites hosting Android malware.
Chinese Mobile Device Maker ZTE Banned From Buying U.S. Goods
The U.S. Department of Commerce's Bureau of Industry and Security (BIS) announced yesterday that Chinese telecommunications company, ZTE, has been banned from purchasing goods from U.S. companies. This order was issued due to a breach of a settlement between ZTE and the US government after ZTE was found violating Iran and North Korea [...]
https://www.bleepingcomputer.com/news/security/chinese-mobile-device-maker-zte-banned-from-buying-us-goods/
The U.S. Department of Commerce's Bureau of Industry and Security (BIS) announced yesterday that Chinese telecommunications company, ZTE, has been banned from purchasing goods from U.S. companies. This order was issued due to a breach of a settlement between ZTE and the US government after ZTE was found violating Iran and North Korea [...]
https://www.bleepingcomputer.com/news/security/chinese-mobile-device-maker-zte-banned-from-buying-us-goods/
BleepingComputer
Chinese Mobile Device Maker ZTE Banned From Buying U.S. Goods
The U.S. Department of Commerce's Bureau of Industry and Security (BIS) announced yesterday that Chinese telecommunications company, ZTE, has been banned from purchasing goods from U.S. companies. This order was issued due to a breach of a settlement betweenβ¦
US, UK Accuse Russia of Hacking Home Routers and ISPs to Conduct MitM Attacks
A joint alert issued by the Department of Homeland Security (DHS), the Federal Bureau of Investigation (FBI), and the United Kingdom's National Cyber Security Centre (NCSC) warns that Russian state-sponsored cyber actors are actively targeting home and enterprise routers. [...]
https://www.bleepingcomputer.com/news/government/us-uk-accuse-russia-of-hacking-home-routers-and-isps-to-conduct-mitm-attacks/
A joint alert issued by the Department of Homeland Security (DHS), the Federal Bureau of Investigation (FBI), and the United Kingdom's National Cyber Security Centre (NCSC) warns that Russian state-sponsored cyber actors are actively targeting home and enterprise routers. [...]
https://www.bleepingcomputer.com/news/government/us-uk-accuse-russia-of-hacking-home-routers-and-isps-to-conduct-mitm-attacks/
BleepingComputer
US, UK Accuse Russia of Hacking Home Routers and ISPs to Conduct MitM Attacks
A joint alert issued by the Department of Homeland Security (DHS), the Federal Bureau of Investigation (FBI), and the United Kingdom's National Cyber Security Centre (NCSC) warns that Russian state-sponsored cyber actors are actively targeting home and enterpriseβ¦
More Than Half of Android Apps for Kids Are Violating US Privacy Laws
Privacy experts have analyzed 5,855 child-directed Android apps and have found that more than half β57%β are potentially violating the Children's Online Privacy Protection Act (COPPA), a US law protecting children's private data online. [...]
https://www.bleepingcomputer.com/news/security/more-than-half-of-android-apps-for-kids-are-violating-us-privacy-laws/
Privacy experts have analyzed 5,855 child-directed Android apps and have found that more than half β57%β are potentially violating the Children's Online Privacy Protection Act (COPPA), a US law protecting children's private data online. [...]
https://www.bleepingcomputer.com/news/security/more-than-half-of-android-apps-for-kids-are-violating-us-privacy-laws/
BleepingComputer
More Than Half of Android Apps for Kids Are Violating US Privacy Laws
Privacy experts have analyzed 5,855 child-directed Android apps and have found that more than half β57%β are potentially violating the Children's Online Privacy Protection Act (COPPA), a US law protecting children's private data online.
Microsoft Releases Windows 10 Insider Build 17134 (RS4) To Include Security Vulnerabilities
Today, Microsoft released Windows 10 Insider Preview Build 17134 (Redstone 4) to insiders on the fast ring. This build does not contain any new features, but rather acts as a new build with security updates included that fix the vulnerabilities from KB4100375. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-insider-build-17134-rs4-to-include-security-vulnerabilities/
Today, Microsoft released Windows 10 Insider Preview Build 17134 (Redstone 4) to insiders on the fast ring. This build does not contain any new features, but rather acts as a new build with security updates included that fix the vulnerabilities from KB4100375. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-insider-build-17134-rs4-to-include-security-vulnerabilities/
BleepingComputer
Microsoft Releases Windows 10 Insider Build 17134 (RS4) To Include Security Vulnerabilities
Today, Microsoft released Windows 10 Insider Preview Build 17134 (Redstone 4) to insiders on the fast ring. This build does not contain any new features, but rather acts as a new build with security updates included that fix the vulnerabilities from KB4100375.
TaskRabbit Takes Down App and Website After Getting Hacked
TaskRabbit, a web-based service that connects freelance handymen with clients in various local US markets, has emailed customers admitting it suffered a security breach. [...]
https://www.bleepingcomputer.com/news/security/taskrabbit-takes-down-app-and-website-after-getting-hacked/
TaskRabbit, a web-based service that connects freelance handymen with clients in various local US markets, has emailed customers admitting it suffered a security breach. [...]
https://www.bleepingcomputer.com/news/security/taskrabbit-takes-down-app-and-website-after-getting-hacked/
BleepingComputer
TaskRabbit Takes Down App and Website After Getting Hacked
TaskRabbit, a web-based service that connects freelance handymen with clients in various local US markets, has emailed customers admitting it suffered a security breach.
Russia Bans 1.8 Million Amazon and Google IPs in Attempt to Block Telegram
Roskomnadzor, Russia's telecommunications watchdog, banned today over 1.8 million IP addresses belonging to Amazon and Google's cloud infrastructure. [...]
https://www.bleepingcomputer.com/news/government/russia-bans-18-million-amazon-and-google-ips-in-attempt-to-block-telegram/
Roskomnadzor, Russia's telecommunications watchdog, banned today over 1.8 million IP addresses belonging to Amazon and Google's cloud infrastructure. [...]
https://www.bleepingcomputer.com/news/government/russia-bans-18-million-amazon-and-google-ips-in-attempt-to-block-telegram/
BleepingComputer
Russia Bans 1.8 Million Amazon and Google IPs in Attempt to Block Telegram
Roskomnadzor, Russia's telecommunications watchdog, banned today over 1.8 million IP addresses belonging to Amazon and Google's cloud infrastructure.
Microsoft Announces Custom Chip and Linux Distro to Secure IoT Devices
Yesterday, at the RSA 2018 security conference, Microsoft announced a new security-focused product named Azure Sphere. According to Microsoft chief financial officer Brad Smith, Microsoft created Azure Sphere for the sole purpose of securing Internet of Things (IoT) devices. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-announces-custom-chip-and-linux-distro-to-secure-iot-devices/
Yesterday, at the RSA 2018 security conference, Microsoft announced a new security-focused product named Azure Sphere. According to Microsoft chief financial officer Brad Smith, Microsoft created Azure Sphere for the sole purpose of securing Internet of Things (IoT) devices. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-announces-custom-chip-and-linux-distro-to-secure-iot-devices/
BleepingComputer
Microsoft Announces Custom Chip and Linux Distro to Secure IoT Devices
Yesterday, at the RSA 2018 security conference, Microsoft announced a new security-focused product named Azure Sphere. According to Microsoft chief financial officer Brad Smith, Microsoft created Azure Sphere for the sole purpose of securing Internet of Thingsβ¦
Windows 10 Spring Creators Update Delayed Because of Higher Percentage of BSODs
Microsoft admitted yesterday that the reason it did not launch the Spring Creators Update for Windows 10 last week was because of technical issues the company encountered with the supposed final release. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-spring-creators-update-delayed-because-of-higher-percentage-of-bsods/
Microsoft admitted yesterday that the reason it did not launch the Spring Creators Update for Windows 10 last week was because of technical issues the company encountered with the supposed final release. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-spring-creators-update-delayed-because-of-higher-percentage-of-bsods/
BleepingComputer
Windows 10 Spring Creators Update Delayed Because of Higher Percentage of BSODs
Microsoft admitted yesterday that the reason it did not launch the Spring Creators Update for Windows 10 last week was because of technical issues the company encountered with the supposed final release.
Federal Agencies Hit With More Data Breaches Than Other Sectors - 330 Million at Risk
According to Thales e-Security's 2018 Data Threat ReportβFederal Government Edition, US federal agencies are experiencing more data breaches than other sectors. [...]
https://www.bleepingcomputer.com/news/government/federal-agencies-hit-with-more-data-breaches-than-other-sectors-330-million-at-risk/
According to Thales e-Security's 2018 Data Threat ReportβFederal Government Edition, US federal agencies are experiencing more data breaches than other sectors. [...]
https://www.bleepingcomputer.com/news/government/federal-agencies-hit-with-more-data-breaches-than-other-sectors-330-million-at-risk/
BleepingComputer
Federal Agencies Hit With More Data Breaches Than Other Sectors - 330 Million at Risk
According to Thales e-Security's 2018 Data Threat ReportβFederal Government Edition, US federal agencies are experiencing more data breaches than other sectors.