How a Security Test for DropBox Revealed 3 Apple Zero Day Vulnerabilities
When Dropbox hired a security firm to perform a Red Team cyber attack simulation on their services, little did they know that they would discover zero day vulnerabilities in Apple products that could affect much more than Dropbox. [...]
https://www.bleepingcomputer.com/news/security/how-a-security-test-for-dropbox-revealed-3-apple-zero-day-vulnerabilities/
When Dropbox hired a security firm to perform a Red Team cyber attack simulation on their services, little did they know that they would discover zero day vulnerabilities in Apple products that could affect much more than Dropbox. [...]
https://www.bleepingcomputer.com/news/security/how-a-security-test-for-dropbox-revealed-3-apple-zero-day-vulnerabilities/
BleepingComputer
How a Security Test for DropBox Revealed 3 Apple Zero Day Vulnerabilities
When Dropbox hired a security firm to perform a Red Team cyber attack simulation on their services, little did they know that they would discover zero day vulnerabilities in Apple products that could affect much more than Dropbox.
Split View Mode Is Now Available for Skype on Windows 10
This new update to Microsoft's modernized Skype 8 brings Split View which allows you to simultaneously open multiple Skype chats. It's a pretty useful feature if you'd like to chat with multiple people at the same time. [...]
https://www.bleepingcomputer.com/news/microsoft/split-view-mode-is-now-available-for-skype-on-windows-10/
This new update to Microsoft's modernized Skype 8 brings Split View which allows you to simultaneously open multiple Skype chats. It's a pretty useful feature if you'd like to chat with multiple people at the same time. [...]
https://www.bleepingcomputer.com/news/microsoft/split-view-mode-is-now-available-for-skype-on-windows-10/
BleepingComputer
Split View Mode Is Now Available for Skype on Windows 10
This new update to Microsoft's modernized Skype 8 brings Split View which allows you to simultaneously open multiple Skype chats. It's a pretty useful feature if you'd like to chat with multiple people at the same time.
PSA: Phishing Levels Rise Ahead of Black Friday and Cyber Monday
With the shopping season underway, cybercriminals are making efforts to capitalize from key holidays and users' craze for Black Friday and Cyber Monday discounts. [...]
https://www.bleepingcomputer.com/news/security/psa-phishing-levels-rise-ahead-of-black-friday-and-cyber-monday/
With the shopping season underway, cybercriminals are making efforts to capitalize from key holidays and users' craze for Black Friday and Cyber Monday discounts. [...]
https://www.bleepingcomputer.com/news/security/psa-phishing-levels-rise-ahead-of-black-friday-and-cyber-monday/
BleepingComputer
PSA: Phishing Levels Rise Ahead of Black Friday and Cyber Monday
With the shopping season underway, cybercriminals are making efforts to capitalize from key holidays and users' craze for Black Friday and Cyber Monday discounts.
US Postal Service Exposes Data of 60 Million Users for Over a Year
The US Postal Service ignored for more than a year an authentication oversight that exposed the account details of 60 million users to anyone that logged into the web service. [...]
https://www.bleepingcomputer.com/news/security/us-postal-service-exposes-data-of-60-million-users-for-over-a-year/
The US Postal Service ignored for more than a year an authentication oversight that exposed the account details of 60 million users to anyone that logged into the web service. [...]
https://www.bleepingcomputer.com/news/security/us-postal-service-exposes-data-of-60-million-users-for-over-a-year/
BleepingComputer
US Postal Service Exposes Data of 60 Million Users for Over a Year
The US Postal Service ignored for more than a year an authentication oversight that exposed the account details of 60 million users to anyone that logged into the web service.
Aurora / Zorro Ransomware Actively Being Distributed
A ransomware that has been distributed since the summer of 2018 has started to pick up steam in the latest variant. This new variant is currently being called Zorro Ransomware, but has also been called Aurora Ransomware in the past. [...]
https://www.bleepingcomputer.com/news/security/aurora-zorro-ransomware-actively-being-distributed/
A ransomware that has been distributed since the summer of 2018 has started to pick up steam in the latest variant. This new variant is currently being called Zorro Ransomware, but has also been called Aurora Ransomware in the past. [...]
https://www.bleepingcomputer.com/news/security/aurora-zorro-ransomware-actively-being-distributed/
BleepingComputer
Aurora / Zorro Ransomware Actively Being Distributed
A ransomware that has been distributed since the summer of 2018 has started to pick up steam in the latest variant. This new variant is currently being called Zorro Ransomware, but has also been called Aurora Ransomware in the past.
Rotexy Mobile Trojan Launches 70k+ Attacks in Three Months
A mobile spyware that turned into a banking trojan with ransomware capabilities managed to launch over 70,000 attacks in the course of just three months. [...]
https://www.bleepingcomputer.com/news/security/rotexy-mobile-trojan-launches-70k-attacks-in-three-months/
A mobile spyware that turned into a banking trojan with ransomware capabilities managed to launch over 70,000 attacks in the course of just three months. [...]
https://www.bleepingcomputer.com/news/security/rotexy-mobile-trojan-launches-70k-attacks-in-three-months/
BleepingComputer
Rotexy Mobile Trojan Launches 70k+ Attacks in Three Months
A mobile spyware that turned into a banking trojan with ransomware capabilities managed to launch over 70,000 attacks in the course of just three months.
First GDPR Sanction in Germany Fines Flirty Chat Platform EUR 20,000
Following a hack that resulted in leaking online about 808,000 email addresses and over 1.8 million usernames and passwords, a social network website in Germany received a fine of EUR 20,000 from the Baden-WΓΌrttemberg Data Protection Office. [...]
https://www.bleepingcomputer.com/news/security/first-gdpr-sanction-in-germany-fines-flirty-chat-platform-eur-20-000/
Following a hack that resulted in leaking online about 808,000 email addresses and over 1.8 million usernames and passwords, a social network website in Germany received a fine of EUR 20,000 from the Baden-WΓΌrttemberg Data Protection Office. [...]
https://www.bleepingcomputer.com/news/security/first-gdpr-sanction-in-germany-fines-flirty-chat-platform-eur-20-000/
BleepingComputer
First GDPR Sanction in Germany Fines Flirty Chat Platform EUR 20,000
Following a hack that resulted in leaking online about 808,000 email addresses and over 1.8 million usernames and passwords, a social network website in Germany received a fine of EUR 20,000 from the Baden-WΓΌrttemberg Data Protection Office.
Google is Adding Force-Installed Extension Removal to the Chrome Cleanup Tool
Google is adding the ability to remove force-installed extensions, or ones installed by Windows group policies, to the Chrome Cleanup Tool. [...]
https://www.bleepingcomputer.com/news/google/google-is-adding-force-installed-extension-removal-to-the-chrome-cleanup-tool/
Google is adding the ability to remove force-installed extensions, or ones installed by Windows group policies, to the Chrome Cleanup Tool. [...]
https://www.bleepingcomputer.com/news/google/google-is-adding-force-installed-extension-removal-to-the-chrome-cleanup-tool/
BleepingComputer
Google is Adding Force-Installed Extension Removal to the Chrome Cleanup Tool
Google is adding the ability to remove force-installed extensions, or ones installed by Windows group policies, to the Chrome Cleanup Tool.
The Week in Ransomware - November 23rd 2018 - STOP, Dharma, and More
This week has mostly been releases of new variants of existing ransomware. Not much of interest other than the developer of the DelphiMorix ransomware trolling ransomware researchers by utilizing their aliases as the extensions for encrypted files. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-november-23rd-2018-stop-dharma-and-more/
This week has mostly been releases of new variants of existing ransomware. Not much of interest other than the developer of the DelphiMorix ransomware trolling ransomware researchers by utilizing their aliases as the extensions for encrypted files. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-november-23rd-2018-stop-dharma-and-more/
BleepingComputer
The Week in Ransomware - November 23rd 2018 - STOP, Dharma, and More
This week has mostly been releases of new variants of existing ransomware. Not much of interest other than the developer of the DelphiMorix ransomware trolling ransomware researchers by utilizing their aliases as the extensions for encrypted files.
ECC Memory Vulnerable to Rowhammer Attack
Memory modules with error-correcting code (ECC) protection are vulnerable to Rowhammer, an attack that can help corrupt data the computer stores in its volatile memory chips. [...]
https://www.bleepingcomputer.com/news/security/ecc-memory-vulnerable-to-rowhammer-attack/
Memory modules with error-correcting code (ECC) protection are vulnerable to Rowhammer, an attack that can help corrupt data the computer stores in its volatile memory chips. [...]
https://www.bleepingcomputer.com/news/security/ecc-memory-vulnerable-to-rowhammer-attack/
BleepingComputer
ECC Memory Vulnerable to Rowhammer Attack
Memory modules with error-correcting code (ECC) protection are vulnerable to Rowhammer, an attack that can help corrupt data the computer stores in its volatile memory chips.
Chrome and Firefox Developers Aim to Remove Support for FTP
Google developers have wanted to remove FTP support from Chrome for years and an upcoming change in how files stored on FTP servers are rendered in the browser may be the first step in its ultimate removal. [...]
https://www.bleepingcomputer.com/news/google/chrome-and-firefox-developers-aim-to-remove-support-for-ftp/
Google developers have wanted to remove FTP support from Chrome for years and an upcoming change in how files stored on FTP servers are rendered in the browser may be the first step in its ultimate removal. [...]
https://www.bleepingcomputer.com/news/google/chrome-and-firefox-developers-aim-to-remove-support-for-ftp/
BleepingComputer
Chrome and Firefox Developers Aim to Remove Support for FTP
Google developers have wanted to remove FTP support from Chrome for years and an upcoming change in how files stored on FTP servers are rendered in the browser may be the first step in its ultimate removal.
Backdoor in Popular JavaScript Library Set to Steal Cryptocurrency
A JavaScript library that scores over two million downloads every week has been injected with malicious code for stealing coins from a cryptocurrency wallet. [...]
https://www.bleepingcomputer.com/news/security/backdoor-in-popular-javascript-library-set-to-steal-cryptocurrency/
A JavaScript library that scores over two million downloads every week has been injected with malicious code for stealing coins from a cryptocurrency wallet. [...]
https://www.bleepingcomputer.com/news/security/backdoor-in-popular-javascript-library-set-to-steal-cryptocurrency/
BleepingComputer
Backdoor in Popular JavaScript Library Set to Steal Cryptocurrency
A JavaScript library that scores over two million downloads every week has been injected with malicious code for stealing coins from a cryptocurrency wallet.
New BEC Scams Take Advantage of the California Wildfires
Whenever there is a tragedy, some lowlife will try to take advantage of it. Such is the case with a new round of BEC scams that try to take leverage the California wildfires to defraud their victims. [...]
https://www.bleepingcomputer.com/news/security/new-bec-scams-take-advantage-of-the-california-wildfires/
Whenever there is a tragedy, some lowlife will try to take advantage of it. Such is the case with a new round of BEC scams that try to take leverage the California wildfires to defraud their victims. [...]
https://www.bleepingcomputer.com/news/security/new-bec-scams-take-advantage-of-the-california-wildfires/
BleepingComputer
New BEC Scams Take Advantage of the California Wildfires
Whenever there is a tragedy, some lowlife will try to take advantage of it. Such is the case with a new round of BEC scams that try to take leverage the California wildfires to defraud their victims.
Uber Fined for Covering Up 2016 Data Breach
The time has come for Uber to pay the piper for the data breach two years ago that leaked personal details of 57 million users and drivers as two data protection offices in Europe set fines that collectively amount to over 1 million euros. [...]
https://www.bleepingcomputer.com/news/security/uber-fined-for-covering-up-2016-data-breach/
The time has come for Uber to pay the piper for the data breach two years ago that leaked personal details of 57 million users and drivers as two data protection offices in Europe set fines that collectively amount to over 1 million euros. [...]
https://www.bleepingcomputer.com/news/security/uber-fined-for-covering-up-2016-data-breach/
BleepingComputer
Uber Fined for Covering Up 2016 Data Breach
The time has come for Uber to pay the piper for the data breach two years ago that leaked personal details of 57 million users and drivers as two data protection offices in Europe set fines that collectively amount to over 1 million euros.
Windows Defender Can Detect Accessibility Tool Backdoors
Windows Defender will now detect when accessibility programs such as sethc.exe or utilman.exe have been hijacked by an Image File Execution Options debugger so that they can be used as a backdoor. [...]
https://www.bleepingcomputer.com/news/security/windows-defender-can-detect-accessibility-tool-backdoors/
Windows Defender will now detect when accessibility programs such as sethc.exe or utilman.exe have been hijacked by an Image File Execution Options debugger so that they can be used as a backdoor. [...]
https://www.bleepingcomputer.com/news/security/windows-defender-can-detect-accessibility-tool-backdoors/
BleepingComputer
Windows Defender Can Detect Accessibility Tool Backdoors
Windows Defender will now detect when accessibility programs such as sethc.exe or utilman.exe have been hijacked by an Image File Execution Options debugger so that they can be used as a backdoor.
Windows 10 Cumulative Updates Released With Fix For File Association Bug
Microsoft has released another cumulative update for Windows 10 with some fixes. The update is not available for Windows 10 October 2018 Update and you will see it only if you've Windows 10 April 2018 Update and Fall Creators Update installed. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-cumulative-updates-released-with-fix-for-file-association-bug/
Microsoft has released another cumulative update for Windows 10 with some fixes. The update is not available for Windows 10 October 2018 Update and you will see it only if you've Windows 10 April 2018 Update and Fall Creators Update installed. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-cumulative-updates-released-with-fix-for-file-association-bug/
BleepingComputer
Windows 10 Cumulative Updates Released With Fix For File Association Bug
Microsoft has released another cumulative update for Windows 10 with some fixes. The update is not available for Windows 10 October 2018 Update and you will see it only if you've Windows 10 April 2018 Update and Fall Creators Update installed.
3ve Ad-Fraud Botnet with Billions of Daily Ad Requests Shut Down
A massive ad-fraud operation that caused tens of millions of dollars in losses has been dismantled. The illegal business at one point controlled more than one million compromised IP addresses in North America and Europe. [...]
https://www.bleepingcomputer.com/news/security/3ve-ad-fraud-botnet-with-billions-of-daily-ad-requests-shut-down/
A massive ad-fraud operation that caused tens of millions of dollars in losses has been dismantled. The illegal business at one point controlled more than one million compromised IP addresses in North America and Europe. [...]
https://www.bleepingcomputer.com/news/security/3ve-ad-fraud-botnet-with-billions-of-daily-ad-requests-shut-down/
BleepingComputer
3ve Ad-Fraud Botnet with Billions of Daily Ad Requests Shut Down
A massive ad-fraud operation that caused tens of millions of dollars in losses has been dismantled. The illegal business at one point controlled more than one million compromised IP addresses in North America and Europe.
Sennheiser Headset Software Could Allow Man-in-the-Middle SSL Attacks
When users have been installing Sennheiser's HeadSetup software, little did they know that they were also installing a root certificate into the Trusted Root CA Certificate store. To make matters worse, the software was also installing an encrypted version of the certificate's private key that was not as secure as they thought. [...]
https://www.bleepingcomputer.com/news/security/sennheiser-headset-software-could-allow-man-in-the-middle-ssl-attacks/
When users have been installing Sennheiser's HeadSetup software, little did they know that they were also installing a root certificate into the Trusted Root CA Certificate store. To make matters worse, the software was also installing an encrypted version of the certificate's private key that was not as secure as they thought. [...]
https://www.bleepingcomputer.com/news/security/sennheiser-headset-software-could-allow-man-in-the-middle-ssl-attacks/
BleepingComputer
Sennheiser Headset Software Could Allow Man-in-the-Middle SSL Attacks
When users have been installing Sennheiser's HeadSetup software, little did they know that they were also installing a root certificate into the Trusted Root CA Certificate store. To make matters worse, the software was also installing an encrypted versionβ¦
Tech Support Scams Using Multiple Obfuscation Methods to Bypass Detection
You have probably run into a web site that pretends to be Microsoft stating that something is wrong with your computer and telling you to call their phone number for help. While most antivirus software will detect these types of tech support scams, new tactics are being used by their creators to make them more difficult to detect. [...]
https://www.bleepingcomputer.com/news/security/tech-support-scams-using-multiple-obfuscation-methods-to-bypass-detection/
You have probably run into a web site that pretends to be Microsoft stating that something is wrong with your computer and telling you to call their phone number for help. While most antivirus software will detect these types of tech support scams, new tactics are being used by their creators to make them more difficult to detect. [...]
https://www.bleepingcomputer.com/news/security/tech-support-scams-using-multiple-obfuscation-methods-to-bypass-detection/
BleepingComputer
Tech Support Scams Using Multiple Obfuscation Methods to Bypass Detection
You have probably run into a web site that pretends to be Microsoft stating that something is wrong with your computer and telling you to call their phone number for help. While most antivirus software will detect these types of tech support scams, new tacticsβ¦
The One Planet York Data Breach That Was a Data Leak
A data breach notification from the City of York has gone awry as new details shed light over the incident, revealing a completely inappropriate response to a responsible disclosure of a vulnerability potentially affecting thousands of users. [...]
https://www.bleepingcomputer.com/news/security/the-one-planet-york-data-breach-that-was-a-data-leak/
A data breach notification from the City of York has gone awry as new details shed light over the incident, revealing a completely inappropriate response to a responsible disclosure of a vulnerability potentially affecting thousands of users. [...]
https://www.bleepingcomputer.com/news/security/the-one-planet-york-data-breach-that-was-a-data-leak/
BleepingComputer
The One Planet York Data Breach That Was a Data Leak
A data breach notification from the City of York has gone awry as new details shed light over the incident, revealing a completely inappropriate response to a responsible disclosure of a vulnerability potentially affecting thousands of users.