Built-In Lazy Loading Lands in Google Chrome Canary

As Bleeping Computer first reported back in January this year, Google has started rolling out support for built-in lazy loading inside Chrome. [...]

https://www.bleepingcomputer.com/news/google/built-in-lazy-loading-lands-in-google-chrome-canary/

Hackers Can Falsify Patient Vitals

Hackers can falsify patients' vitals by emulating data sent from medical equipment clients to central monitoring systems, a McAfee security researcher revealed over the weekend at the DEF CON 26 security conference. [...]

https://www.bleepingcomputer.com/news/security/hackers-can-falsify-patient-vitals/

Adobe Patches Flash Player, Acrobat, Reader, Creative Cloud Desktop App, More

A few minutes ago, Adobe published its monthly Patch Tuesday updates train for the month of August 2018. This month, Adobe's security team patched vulnerabilities in products such as Flash Player (multimedia player), Experience Manager (enterprise CMS), Acrobat and Reader (PDF readers/editors), and the Creative Cloud Desktop App. [...]

https://www.bleepingcomputer.com/news/security/adobe-patches-flash-player-acrobat-reader-creative-cloud-desktop-app-more/

Windows 10 Preview Build 17738 Released With Fixes for Edge & the Start Menu

You can always tell when Microsoft is getting close to finishing a major update as they start to release Windows 10 Insider Preview builds that do not contain any new features and are comprised of only bug fixes and minor improvements. Such is the case with today's release of Windows 10 Insider Preview Build 17738. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-preview-build-17738-released-with-fixes-for-edge-and-the-start-menu/

Researchers Disclose New Foreshadow (L1TF) Vulnerabilities Affecting Intel CPUs

Academics and private sector researchers have revealed details today about three new vulnerabilities affecting Intel CPUs. [...]

https://www.bleepingcomputer.com/news/security/researchers-disclose-new-foreshadow-l1tf-vulnerabilities-affecting-intel-cpus/

Google Chrome Gets Insertable Emojis. Here's How to Enable Them.

For all of you emoji lovers out there, Google is adding a context menu to Chrome that allows you to open a emoji panel that can be used to insert emojis into any editable input field. [...]

https://www.bleepingcomputer.com/news/google/google-chrome-gets-insertable-emojis-heres-how-to-enable-them/

Microsoft August 2018 Patch Tuesday Fixes 60 Security Flaws, Including Two Zero-Days

Microsoft's monthly Patch Tuesday security updates are out, and for August 2018, the Redmond-based OS maker has fixed 60 security flaws, including two zero-days under active attacks. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-august-2018-patch-tuesday-fixes-60-security-flaws-including-two-zero-days/

Microsoft Releases Windows 10 Cumulative Updates KB4343909 and KB4343897

Microsoft has started rolling out new cumulative updates for Windows 10 April 2018 Update (version 1803) and Windows 10 Fall Creators Update (version 1709). The update fixes a variety of issues in Windows 10.  [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-cumulative-updates-kb4343909-and-kb4343897/

Microsoft Released the Windows 7 & 8.1 KB4343901 & KB4343898 Cumulative Updates

In this article we will outline the cumulative updates for Windows 7, Windows 8.1, and Windows Server 2008. There are numerous fixes and security updates resolved with these updates, so it is strongly advised that everyone install them as soon as possible. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-released-the-windows-7-and-81-kb4343901-and-kb4343898-cumulative-updates/

VORACLE Attack Can Recover HTTP Data From VPN Connections

A new attack named VORACLE can recover HTTP traffic sent via encrypted VPN connections under certain conditions. [...]

https://www.bleepingcomputer.com/news/security/voracle-attack-can-recover-http-data-from-vpn-connections/

Microsoft Cortana Flaw Could Allow Browsing on Locked Systems

Security researchers have shown that having Microsoft Cortana enabled on the Windows lock screen could be a security risk. In such a configuration, users could compromise a system or lead to or impersonate a user using credentials stored in the browser cache. [...]

https://www.bleepingcomputer.com/news/security/microsoft-cortana-flaw-could-allow-browsing-on-locked-systems/

Former Microsoft Engineer Gets 18 Months in Prison for Role in Ransomware Scheme

On Monday, a Florida judge sentenced a former Microsoft network engineer to 18 months in prison for his role in helping launder money obtained from victims of the Reveton ransomware. [...]

https://www.bleepingcomputer.com/news/security/former-microsoft-engineer-gets-18-months-in-prison-for-role-in-ransomware-scheme/

Firefox Add-On With 220,000+ Installs Caught Collecting Users’ Browsing History

A popular Firefox add-on is secretly logging users' browsing history, according to reports from the author of the uBlock Origin ad blocker and Mike Kuketz, a German privacy and security blogger. [...]

https://www.bleepingcomputer.com/news/security/firefox-add-on-with-220-000-installs-caught-collecting-users-browsing-history/

Microsoft Pulls Windows 10 Your Phone Release and Sets it Insider Only Again

Earlier today there were reports of the Windows 10 Your Phone app being released and working with Windows 10 Build 1803. Unfortunately, it seems things were not working so well and Microsoft has decided to pull its release so it does not work with Windows 10 build 1803 and keep it only with Windows Insiders for the time being. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-pulls-windows-10-your-phone-release-and-sets-it-insider-only-again/

Chrome Bug Lets Attackers Steal Web Secrets via Audio or Video HTML Tags

Google has patched a vulnerability in the Chrome browser that allows an attacker to retrieve sensitive information from other sites via audio or video HTML tags. [...]

https://www.bleepingcomputer.com/news/security/chrome-bug-lets-attackers-steal-web-secrets-via-audio-or-video-html-tags/

Microsoft Office For Windows Updated With New Features for Insiders

Microsoft has just announced a new and large update for Office desktop for Windows. This update is rolling out to the Office Insiders and it bumps the productivity suite to version 1808 (Build 10730.20030). The updated version of Office is available for Insiders enrolled in the Monthly Channel (Targeted) level. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-office-for-windows-updated-with-new-features-for-insiders/

Hackers Steal $13.5 Million Across Three Days From Indian Bank

Representatives of Cosmos Bank, India's second-largest cooperative bank, revealed this week that hackers breached the bank's servers over the weekend and stole over 940 million rupees ($13.5 million) across three days. [...]

https://www.bleepingcomputer.com/news/security/hackers-steal-135-million-across-three-days-from-indian-bank/

Microsoft Edge Beta On iOS Updated With Breaking News and More

Microsoft Edge Beta for iOS is getting a big update with a bunch of new features. These changes include the new breaking news alerts, the ability to reorganize the favorites folder, and much more. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-beta-on-ios-updated-with-breaking-news-and-more/

Princess Evolution Ransomware is a RaaS With a Slick Payment Site

A new variant of the Princess Locker ransomware is being distributed called Princess Evolution. Like its predecessor, Princess Evolution is a Ransomware as a Service, or RaaS, that is being promoted on underground criminal forums. [...]

https://www.bleepingcomputer.com/news/security/princess-evolution-ransomware-is-a-raas-with-a-slick-payment-site/

Synthetic Clicks (Still) Work for Sensitive macOS Security Alerts

Bypassing security prompts in High Sierra, the latest version of macOS, is still possible with synthetic clicks thanks to a bug triggered by just two lines of code. [...]

https://www.bleepingcomputer.com/news/security/synthetic-clicks-still-work-for-sensitive-macos-security-alerts/