MageCart Skimmer Hits Hundreds of Sites In Ad Supply Chain Attack

Most attackers who utilize malicious scripts known as MageCart to steal payment information usually try to keep a low profile to stay undetected on the sites they compromise. New research shows how one MageCart criminal group recently compromised an advertising script to inject MageCart into hundreds of sites at the same time. [...]

https://www.bleepingcomputer.com/news/security/magecart-skimmer-hits-hundreds-of-sites-in-ad-supply-chain-attack/

LoJax Command and Control Domains Still Active

Security researchers have uncovered new details about the infrastructure used by LoJax UEFI rootkit used in attacks from APT28. The analysis revealed two command and control (C2) servers were still active in early 2019. [...]

https://www.bleepingcomputer.com/news/security/lojax-command-and-control-domains-still-active/

Over 140 International Airlines Affected by Major Security Breach

Potential attackers could view and change private information in flight bookings made by millions of customers of major international airlines because of a security issue in the Amadeus online booking system [...]

https://www.bleepingcomputer.com/news/security/over-140-international-airlines-affected-by-major-security-breach/

EU Copyright Directive to Turn Google into Ghost Town

Google's search results will look like a deserted town according to the search giant, with no article titles, no images, and no news summaries if the SERP templates following the EU Copyright Directive provisions will go live [...]

https://www.bleepingcomputer.com/news/google/eu-copyright-directive-to-turn-google-into-ghost-town/

Windows 10 Insider Build 18317 Released and Breaks WSL Again

The latest update to Windows 10 19H1 separates Cortana from search, improves the Windows Insider page and also focuses on Start Menu reliability. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-18317-released-and-breaks-wsl-again/

Microsoft and VirusTotal Team Up to Detect Malicious Signed MSI Files

Microsoft and Chronicle's VirusTotal have teamed up to better detect signed MSI files that have been modified to include malicious Java archives.  [...]

https://www.bleepingcomputer.com/news/security/microsoft-and-virustotal-team-up-to-detect-malicious-signed-msi-files/

Windows 10 19H1 Update Splits Up Windows Search and Cortana

Windows 10 19H1 which is supposed to launch in April 2019 will finally split up Windows Search and Cortana to offer the best search and voice-first digital assistant experience. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-19h1-update-splits-up-windows-search-and-cortana/

Bipartisan Bill Introduced to Ban Sale of US Tech to Chinese Companies

Bipartisan Telecommunications Denial Order Enforcement Act (H.R. 7255) was introduced today to impose a ban on selling US technology to Huawei and ZTE, as well as other Chinese companies in violation of sanctions laws and export control. [...]

https://www.bleepingcomputer.com/news/government/bipartisan-bill-introduced-to-ban-sale-of-us-tech-to-chinese-companies/

Emsisoft Browser Security Protects You from Malicious Sites

For those looking for extra protection while browsing the web, Emsisoft has a released a browser extension that will block you from interacting with known phishing, malware, or scam sites. [...]

https://www.bleepingcomputer.com/news/security/emsisoft-browser-security-protects-you-from-malicious-sites/

Banks in West Africa Hit with Off-The-Shelf Malware, Free Tools

Attacks hitting financial organizations in West Africa since at least mid-2017 rely on off-the-shelf malware, free hacking tools, and utilities already available on the target systems to steal credentials, install backdoors, and run commands. [...]

https://www.bleepingcomputer.com/news/security/banks-in-west-africa-hit-with-off-the-shelf-malware-free-tools/

Flaw in Telegram Reveals Awful OpSec from Malware Author

A weakness in the protection of messages delivered using the Telegram Bot API gave researchers access to the communication flow between a piece of malware and its operator. [...]

https://www.bleepingcomputer.com/news/security/flaw-in-telegram-reveals-awful-opsec-from-malware-author/

Rocke's Cryptominers Kills Competition, Uninstall Cloud Security Products

Analysis of new malware samples used by the Rocke group for cryptojacking reveals code that uninstalls from Linux servers multiple cloud security and monitoring products developed by Tencent Cloud and Alibaba Cloud [...]

https://www.bleepingcomputer.com/news/security/rockes-cryptominers-kills-competition-uninstall-cloud-security-products/

Fake GPS Apps with 50M Installs Just Show Ads and Run Google Maps

19 Android apps with over 50 million installs were found on the Google Play store that state that they are full featured GPS apps, but instead simply show an advertisement and then show Google Maps. [...]

https://www.bleepingcomputer.com/news/security/fake-gps-apps-with-50m-installs-just-show-ads-and-run-google-maps/

Android Apps Steal Banking Info, Use Motion Sensor to Evade Detection

Two Android apps infected with a banking malware dropper were found on the Google Play Store, already having been installed on thousands of Android devices and sporting dozens of fake five-star ratings. [...]

https://www.bleepingcomputer.com/news/security/android-apps-steal-banking-info-use-motion-sensor-to-evade-detection/

Microsoft Launches Azure DevOps Bounty Program

Microsoft Security Response Center (MSRC) announced the launch of a bug bounty program starting January 17 and targeting the Azure DevOps services and the latest release of Azure DevOps server [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-launches-azure-devops-bounty-program/

ES File Explorer Flaws Put 100 Million Users' Data at Risk, Fix Promised

ES File Explorer users now have to wait to see what issue will be fixed in the next update: the always-on web server giving access to all their files to anyone on the same Wi-Fi network or the MitM attack vulnerability [...]

https://www.bleepingcomputer.com/news/security/es-file-explorer-flaws-put-100-million-users-data-at-risk-fix-promised/

Data Breach Collection with 773 Million Email Entries Leaked Online

A giant 87 gigabyte archive consisting of 773 million unique email addresses and their associated cracked, or dehashed, passwords has been spotted being promoted on an online hacking forum. This file is being called "Collection #1" and was designed to easily be used in credential stuffing attacks. [...]

https://www.bleepingcomputer.com/news/security/data-breach-collection-with-773-million-email-entries-leaked-online/

Twitter Fixes Four Year Old Bug in Android App Exposing Private Tweets

Twitter announced today that an issue in its app for Android exposed some users' protected tweets for over four years, if they made certain changes to their account settings. [...]

https://www.bleepingcomputer.com/news/security/twitter-fixes-four-year-old-bug-in-android-app-exposing-private-tweets/

BlackRouter Ransomware Promoted as a RaaS by Iranian Developer

A ransomware called BlackRouter has been discovered being promoted as a Ransomware-as-a-Service on Telegram by an Iranian developer. This same actor previousl distributed another ransomware called Blackheart and promotes other infections such as a RAT. [...]

https://www.bleepingcomputer.com/news/security/blackrouter-ransomware-promoted-as-a-raas-by-iranian-developer/

Windows Zero-Day Bug that Overwrites Files Gets Interim Fix

A micropatch has been released today for a vulnerability in Windows that allows overwriting files, even system one, with arbitrary data. [...]

https://www.bleepingcomputer.com/news/security/windows-zero-day-bug-that-overwrites-files-gets-interim-fix/