Night Eye Extension Adds a Dark Mode to Websites

There's a new extension in the marketplace that brings dark mode to websites like BleepingComputer, Facebook, Google, Quora and others. Called Night Eye, the extension basically tweaks the contrast within the websites to dark grey. [...]

https://www.bleepingcomputer.com/news/software/night-eye-extension-adds-a-dark-mode-to-websites/

Over 80 Cisco Products Affected by FragmentSmack DoS Bug

Cisco is currently looking into its product line to determine the ones using Linux kernel 3.9 or above, which is vulnerable to the FragmentSmack denial-of-service (DoS) bug. [...]

https://www.bleepingcomputer.com/news/security/over-80-cisco-products-affected-by-fragmentsmack-dos-bug/

Mozilla Launches Firefox Monitor Data Breach Notification Service

Mozilla has announced today the release of Firefox Monitor, a free service to help users find out whether or not their accounts have been part of a breach. This new service was created in partnership with Troy Hunt's Have I been Pwned, whose data is being supplied to Mozilla to power the Firefox Monitor service.  [...]

https://www.bleepingcomputer.com/news/software/mozilla-launches-firefox-monitor-data-breach-notification-service/

Magecart Attacks Grow Rampant in September

Attacks that compromise websites with scripts that steal payment card data from checkout pages have increased to hundreds of thousands of attempts in little over a month. [...]

https://www.bleepingcomputer.com/news/security/magecart-attacks-grow-rampant-in-september/

Chrome 70 Lets you Control Automatic Login and Deletes Google Cookies

In a blog entry posted today, Chrome product manager Zake Koch explains that even though they introduced unwanted changes with good intentions, based on user feedback they have decided to roll them back and give users more control over how their browser behaves.  [...]

https://www.bleepingcomputer.com/news/google/chrome-70-lets-you-control-automatic-login-and-deletes-google-cookies/

GandCrab v5 Ransomware Utilizing the ALPC Task Scheduler Exploit

The GandCrab v5 ransomware has started to use the recently disclosed Task Scheduler ALPC vulnerability to gain System privileges on an infected computer.  This vulnerability was recently patched by Microsoft in the September 2018 Patch Tuesday, but many companies may not have installed the patch. [...]

https://www.bleepingcomputer.com/news/security/gandcrab-v5-ransomware-utilizing-the-alpc-task-scheduler-exploit/

Hide and Seek Botnet Adds Infection Vector for Android Devices

Since its discovery early this year, the Hide and Seek IoT botnet has been increasing its infection capabilities with new vectors. The latest samples look for exposed Android devices that have the wireless debugging feature enabled. [...]

https://www.bleepingcomputer.com/news/security/hide-and-seek-botnet-adds-infection-vector-for-android-devices/

Windows 10 October 2018 Update is RTM: Clues Leads to Final Build 17763

Windows 10 October 2018 Update is likely to land in the first week of October as Microsoft has reportedly completed the development of Windows 10 version 1809. If the findings and reports are believed to be true, Windows 10 Build 17763 is the final version of October 2018 update that everyone is going to get next month. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-october-2018-update-is-rtm-clues-leads-to-final-build-17763/

Windows 10 Build 18247 (19H1) Released With Continued Task Manager Problems

Today Microsoft released Windows 10 Insider Preview Build 18247 (19H1) to the Insiders on the Skip Ahead ring. Really not much to report with this build as it is primarily a bug fix build. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-build-18247-19h1-released-with-continued-task-manager-problems/

Trojanized App In Google Play Steals Bank Customers' Euros

ESET security researcher Stefanko Lukas says that the audio recording features worked as expected, so victims would have no reason to be suspicious of harmful activity. [...]

https://www.bleepingcomputer.com/news/security/trojanized-app-in-google-play-steals-bank-customers-euros/

Windows 10 Cumulative Updates Build 17134.320 and 16299.699 Released

Microsoft has today re-issued the KB4458469 and KB4457136 for Windows 10 April 2018 Update (version 1803) and Windows 10 Fall Creators Update (version 1709). Microsoft says that patch has been re-released because of a missing solution and if your PC is on 17134.319 or 16299.697, you're recommended to check for updates. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-cumulative-updates-build-17134320-and-16299699-released/

APT28 Uses LoJax, First UEFI Rootkit Seen in the Wild

Security researchers tracking the operations of a cyber-espionage group found the first evidence of a rootkit for the Unified Extensible Firmware Interface (UEFI) being used in the wild. [...]

https://www.bleepingcomputer.com/news/security/apt28-uses-lojax-first-uefi-rootkit-seen-in-the-wild/

Cloudflare Becomes a Registrar, Sells Domains At Cost

Cloudflare has announced that they are expanding their domain registrar services so that all of their customers can register or renew a domain at cost. You heard me right. No more paying extra fees to register a domain. You pay what Cloudflare pays for a domain registration or renewal. [...]

https://www.bleepingcomputer.com/news/technology/cloudflare-becomes-a-registrar-sells-domains-at-cost/

Cisco Releases Alerts for 14 High Severity Bugs

The severity level for some of the vulnerabilities is high because they can be exploited remotely by an attacker, without having to authenticate. [...]

https://www.bleepingcomputer.com/news/security/cisco-releases-alerts-for-14-high-severity-bugs/

New VirusTotal Enterprise Offers Private Graphs, Faster Searches

Chronicle - Alphabet's cybersecurity subsidiary, has released a new service offering called VirusTotal Enterprise. This new service is designed to cater to companies that need a way to quickly analyze a malware or other threat and graph its activities in their organization. [...]

https://www.bleepingcomputer.com/news/security/new-virustotal-enterprise-offers-private-graphs-faster-searches/

Port of San Diego Affected by a Ransomware Attack

On September 25th, the Port of San Diego announced that their information technology systems had been disrupted by a cyber attack. In an announcement today, it was announced that this disruption was caused by a ransomware attack. [...]

https://www.bleepingcomputer.com/news/security/port-of-san-diego-affected-by-a-ransomware-attack/

Microsoft Is Ending Support for Skype Classic on November 1st

Back in July, Microsoft announced that it will discontinue the Skype Classic app on September 1st but due to public backlash, the company decided to delay the demise of the app and support it beyond September. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-is-ending-support-for-skype-classic-on-november-1st/

Google Experiments With Showing Search Queries in Chrome 71 Address Bar

In Chrome 71, Google is performing an experiment where the browser will show a Google search query in the address bar instead of the Google search results URL. [...]

https://www.bleepingcomputer.com/news/google/google-experiments-with-showing-search-queries-in-chrome-71-address-bar/

New Iot Botnet Torii Uses Six Methods for Persistence, Has No Clear Purpose

Security researchers discovered a new IoT botnet that is in a league superior to the Mirai variants that rise and fall on a daily basis. [...]

https://www.bleepingcomputer.com/news/security/new-iot-botnet-torii-uses-six-methods-for-persistence-has-no-clear-purpose/

Cryptojacking Android Apps Continue To Plague Google Play Store

Two-dozen Android apps recently made it into Google Play with code that turns users' phones into cryptocurrency mining workers. Some of them target users in the US by using the guise of educational tools. [...]

https://www.bleepingcomputer.com/news/security/cryptojacking-android-apps-continue-to-plague-google-play-store/