The Week in Ransomware - January 25th 2019 - STOP Won't Stop!
This week we see STOP Ransomware becoming the most widespread ransomware targeting consumers and the enterprise that we have seen in a long time. This is due to a constant stream of variants being released, with a large amount of victims being infected through adware bundles promoted through crack sites. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-january-25th-2019-stop-wont-stop/
This week we see STOP Ransomware becoming the most widespread ransomware targeting consumers and the enterprise that we have seen in a long time. This is due to a constant stream of variants being released, with a large amount of victims being infected through adware bundles promoted through crack sites. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-january-25th-2019-stop-wont-stop/
BleepingComputer
The Week in Ransomware - January 25th 2019 - STOP Won't Stop!
This week we see STOP Ransomware becoming the most widespread ransomware targeting consumers and the enterprise that we have seen in a long time. This is due to a constant stream of variants being released, with a large amount of victims being infected throughβ¦
Google Chrome Adding Support for Signed HTTP Exchanges
The Google Chrome team is working on shipping a Signed HTTP Exchanges (SXG) feature with a future Chrome release allowing the browser to load and navigate signed web documents designed to look as originating from a particular source, regardless of the server they're loaded from. [...]
https://www.bleepingcomputer.com/news/google/google-chrome-adding-support-for-signed-http-exchanges/
The Google Chrome team is working on shipping a Signed HTTP Exchanges (SXG) feature with a future Chrome release allowing the browser to load and navigate signed web documents designed to look as originating from a particular source, regardless of the server they're loaded from. [...]
https://www.bleepingcomputer.com/news/google/google-chrome-adding-support-for-signed-http-exchanges/
BleepingComputer
Google Chrome Adding Support for Signed HTTP Exchanges
The Google Chrome team is working on shipping a Signed HTTP Exchanges (SXG) feature with a future Chrome release allowing the browser to load and navigate signed web documents designed to look as originating from a particular source, regardless of the serverβ¦
Microsoft 365 Suffers Massive Two Day Outage, Outlook and Exchange Down
The Microsoft 365 online productivity suite experienced a massive outage throughout the last two days, with users reporting that they couldn't access their mailboxes through multiple protocols [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-365-suffers-massive-two-day-outage-outlook-and-exchange-down/
The Microsoft 365 online productivity suite experienced a massive outage throughout the last two days, with users reporting that they couldn't access their mailboxes through multiple protocols [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-365-suffers-massive-two-day-outage-outlook-and-exchange-down/
BleepingComputer
Microsoft 365 Suffers Massive Two Day Outage, Outlook and Exchange Down
The Microsoft 365 online productivity suite experienced a massive outage throughout the last two days, with users reporting that they couldn't access their mailboxes through multiple protocols
Exploits for Cisco RV320/RV325 Routers Trip Scans for Unpatched Hosts
Disclosure of proof-of-exploit code for security bugs in Cisco routers for small businesses prompted hackers to scan for vulnerable devices in an attempt to take full control of them. [...]
https://www.bleepingcomputer.com/news/security/exploits-for-cisco-rv320-rv325-routers-trip-scans-for-unpatched-hosts/
Disclosure of proof-of-exploit code for security bugs in Cisco routers for small businesses prompted hackers to scan for vulnerable devices in an attempt to take full control of them. [...]
https://www.bleepingcomputer.com/news/security/exploits-for-cisco-rv320-rv325-routers-trip-scans-for-unpatched-hosts/
BleepingComputer
Exploits for Cisco RV320/RV325 Routers Trip Scans for Unpatched Hosts
Disclosure of proof-of-exploit code for security bugs in Cisco routers for small businesses prompted hackers to scan for vulnerable devices in an attempt to take full control of them.
Dailymotion Resets Passwords After Credential Stuffing Attack
Dailymotion on Friday announced that some accounts were the target of a credential stuffing attack. The video platform's security team discovered the unauthorized access attempts and stopped them.. [...]
https://www.bleepingcomputer.com/news/security/dailymotion-resets-passwords-after-credential-stuffing-attack/
Dailymotion on Friday announced that some accounts were the target of a credential stuffing attack. The video platform's security team discovered the unauthorized access attempts and stopped them.. [...]
https://www.bleepingcomputer.com/news/security/dailymotion-resets-passwords-after-credential-stuffing-attack/
BleepingComputer
Dailymotion Resets Passwords After Credential Stuffing Attack
Dailymotion on Friday announced that some accounts were the target of a credential stuffing attack. The video platform's security team discovered the unauthorized access attempts and stopped them..
Azorult Trojan Steals Passwords While Hiding as Google Update
The AZORult information stealer and downloader malware strain was observed by Minerva Labs' research team posing as a signed Google Update installer and achieving persistence by replacing the legitimate Google Updater program on compromised machines [...]
https://www.bleepingcomputer.com/news/security/azorult-trojan-steals-passwords-while-hiding-as-google-update/
The AZORult information stealer and downloader malware strain was observed by Minerva Labs' research team posing as a signed Google Update installer and achieving persistence by replacing the legitimate Google Updater program on compromised machines [...]
https://www.bleepingcomputer.com/news/security/azorult-trojan-steals-passwords-while-hiding-as-google-update/
BleepingComputer
Azorult Trojan Steals Passwords While Hiding as Google Update
The AZORult information stealer and downloader malware strain was observed by Minerva Labs' research team posing as a signed Google Update installer and achieving persistence by replacing the legitimate Google Updater program on compromised machines
Spam Campaign Follows the White Rabbit to NSFW Phishing Scams
A peculiar spam campaign is underway that contains attachments with links that redirect you to fake NSFW (not-safe-for-work) adult dating sites or affiliate sites for sites like Ashleymadison.com. After analysis by a researcher, it was discovered that blocking 7 IP address could protect your network from over 4,600 spam domains. [...]
https://www.bleepingcomputer.com/news/security/spam-campaign-follows-the-white-rabbit-to-nsfw-phishing-scams/
A peculiar spam campaign is underway that contains attachments with links that redirect you to fake NSFW (not-safe-for-work) adult dating sites or affiliate sites for sites like Ashleymadison.com. After analysis by a researcher, it was discovered that blocking 7 IP address could protect your network from over 4,600 spam domains. [...]
https://www.bleepingcomputer.com/news/security/spam-campaign-follows-the-white-rabbit-to-nsfw-phishing-scams/
BleepingComputer
Spam Campaign Follows the White Rabbit to NSFW Phishing Scams
A peculiar spam campaign is underway that contains attachments with links that redirect you to fake NSFW (not-safe-for-work) adult dating sites or affiliate sites for sites like Ashleymadison.com.
Windows System Guard Launch Causing Blank Boot Screens in UEFI PCs
Boot issues affecting Windows 10 v1809 and Windows Server 2019 systems with UEFI Secure Boot where enterprise security administrators who have deployed the Microsoft Security Baseline and enabled System Guard Secure Launch. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-system-guard-launch-causing-blank-boot-screens-in-uefi-pcs/
Boot issues affecting Windows 10 v1809 and Windows Server 2019 systems with UEFI Secure Boot where enterprise security administrators who have deployed the Microsoft Security Baseline and enabled System Guard Secure Launch. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-system-guard-launch-causing-blank-boot-screens-in-uefi-pcs/
BleepingComputer
Windows System Guard Launch Causing Blank Boot Screens in UEFI PCs
Boot issues affecting Windows 10 v1809 and Windows Server 2019 systems with UEFI Secure Boot where enterprise security administrators who have deployed the Microsoft Security Baseline and enabled System Guard Secure Launch.
TamperMonkey May Be the Next Victim of Google's Chrome Manifest V3 Changes
In the Google Groups post, the author for the Tampermonkey Chrome extension has stated that his program will be the next victim of Google's proposed Chrome Manifest V3 changes if they are put into practice. [...]
https://www.bleepingcomputer.com/news/google/tampermonkey-may-be-the-next-victim-of-googles-chrome-manifest-v3-changes/
In the Google Groups post, the author for the Tampermonkey Chrome extension has stated that his program will be the next victim of Google's proposed Chrome Manifest V3 changes if they are put into practice. [...]
https://www.bleepingcomputer.com/news/google/tampermonkey-may-be-the-next-victim-of-googles-chrome-manifest-v3-changes/
BleepingComputer
TamperMonkey May Be the Next Victim of Google's Chrome Manifest V3 Changes
In the Google Groups post, the author for the Tampermonkey Chrome extension has stated that his program will be the next victim of Google's proposed Chrome Manifest V3 changes if they are put into practice.
DNS DDoS Attack Protections to be Forcefully Enabled for Non-Compliant Sites
Multiple DNS software and service providers will update their DNS software to fight against DDoS attacks and speed up DNS traffic by stopping the implementation of DNS resolver workarounds still used by numerous DNS authoritative systems. [...]
https://www.bleepingcomputer.com/news/security/dns-ddos-attack-protections-to-be-forcefully-enabled-for-non-compliant-sites/
Multiple DNS software and service providers will update their DNS software to fight against DDoS attacks and speed up DNS traffic by stopping the implementation of DNS resolver workarounds still used by numerous DNS authoritative systems. [...]
https://www.bleepingcomputer.com/news/security/dns-ddos-attack-protections-to-be-forcefully-enabled-for-non-compliant-sites/
BleepingComputer
DNS DDoS Attack Protections to be Forcefully Enabled for Non-Compliant Sites
Multiple DNS software and service providers will update their DNS software to fight against DDoS attacks and speed up DNS traffic by stopping the implementation of DNS resolver workarounds still used by numerous DNS authoritative systems.
Discover Card Users Affected by Data Breach, New Credit Cards Issued
Discover Financial Services learned that on August 13, 2018, "Discover card account might have been part of a data breach," according to a data breach notice filed on January 25, 2019, with the California Attorney General's office [...]
https://www.bleepingcomputer.com/news/security/discover-card-users-affected-by-data-breach-new-credit-cards-issued/
Discover Financial Services learned that on August 13, 2018, "Discover card account might have been part of a data breach," according to a data breach notice filed on January 25, 2019, with the California Attorney General's office [...]
https://www.bleepingcomputer.com/news/security/discover-card-users-affected-by-data-breach-new-credit-cards-issued/
BleepingComputer
Discover Card Users Affected by Data Breach, New Credit Cards Issued
Discover Financial Services learned that a number of Discover card accounts might have been part of a data breach according to a notice filed on January 25, 2019, with the California Attorney General's office
Disable FaceTime Now! Bug Lets Callers Snoop On You Without Permission
A serious Apple iOS bug has been discovered that allows FaceTime users to access the microphone and front facing camera of who they are calling even if the person does not answer the call. [...]
https://www.bleepingcomputer.com/news/security/disable-facetime-now-bug-lets-callers-snoop-on-you-without-permission/
A serious Apple iOS bug has been discovered that allows FaceTime users to access the microphone and front facing camera of who they are calling even if the person does not answer the call. [...]
https://www.bleepingcomputer.com/news/security/disable-facetime-now-bug-lets-callers-snoop-on-you-without-permission/
BleepingComputer
Disable FaceTime Now! Bug Lets Callers Snoop On You Without Permission
A serious Apple iOS bug has been discovered that allows FaceTime users to access the microphone and front facing camera of who they are calling even if the person does not answer the call.
Brave Browser Taunts Chrome, Edge, and Firefox in New Privacy Ad
Brave, a privacy-centric web browser, is running advertisements on partner sites that taunt the browser developer's competitors such as Google, Mozilla, Microsoft, and Opera. [...]
https://www.bleepingcomputer.com/news/software/brave-browser-taunts-chrome-edge-and-firefox-in-new-privacy-ad/
Brave, a privacy-centric web browser, is running advertisements on partner sites that taunt the browser developer's competitors such as Google, Mozilla, Microsoft, and Opera. [...]
https://www.bleepingcomputer.com/news/software/brave-browser-taunts-chrome-edge-and-firefox-in-new-privacy-ad/
BleepingComputer
Brave Browser Taunts Chrome, Edge, and Firefox in New Privacy Ad
Brave, a privacy-centric web browser, is running advertisements on partner sites that taunt the browser developer's competitors such as Google, Mozilla, Microsoft, and Opera.
Hackers Stole $1.7 Billion in Cryptocurrency Last Year
Cybercriminals going after digital coins had a good 2018, stealing a whopping $1.7 billion in cryptocurrency from exchange services, users, or investors. Different forms of scamming, extortion, hacking, and malware were the main methods used to get the money. [...]
https://www.bleepingcomputer.com/news/security/hackers-stole-17-billion-in-cryptocurrency-last-year/
Cybercriminals going after digital coins had a good 2018, stealing a whopping $1.7 billion in cryptocurrency from exchange services, users, or investors. Different forms of scamming, extortion, hacking, and malware were the main methods used to get the money. [...]
https://www.bleepingcomputer.com/news/security/hackers-stole-17-billion-in-cryptocurrency-last-year/
BleepingComputer
Hackers Stole $1.7 Billion in Cryptocurrency Last Year
Cybercriminals going after digital coins had a good 2018, stealing a whopping $1.7 billion in cryptocurrency from exchange services, users, or investors. Different forms of scamming, extortion, hacking, and malware were the main methods used to get the money.
Microsoft 365 Experiencing Issues, Users Unable to Access URLs From Emails
Microsoft 365 is experiencing issues again with customers reporting on Twitter and other social media platforms that they cannot open links from emails, after the multiple day outage that started on January 24 and affected Outlook and Exchange. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-365-experiencing-issues-users-unable-to-access-urls-from-emails/
Microsoft 365 is experiencing issues again with customers reporting on Twitter and other social media platforms that they cannot open links from emails, after the multiple day outage that started on January 24 and affected Outlook and Exchange. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-365-experiencing-issues-users-unable-to-access-urls-from-emails/
BleepingComputer
Microsoft 365 Experiencing Issues, Users Unable to Access URLs From Emails
Microsoft 365 is experiencing issues again with customers reporting on Twitter and other social media platforms that they cannot open links from emails, after the multiple day outage that started on January 24 and affected Outlook and Exchange.
Firefox 65 Released with Updated Content Blocking, MSI Installers, and More
Mozilla has officially released Firefox 65 to the Windows, Mac, Linux, and Android release channels. This version comes with enhanced tracking protection, language support, streaming enhancements, WebP image support, and improved performance. [...]
https://www.bleepingcomputer.com/news/software/firefox-65-released-with-updated-content-blocking-msi-installers-and-more/
Mozilla has officially released Firefox 65 to the Windows, Mac, Linux, and Android release channels. This version comes with enhanced tracking protection, language support, streaming enhancements, WebP image support, and improved performance. [...]
https://www.bleepingcomputer.com/news/software/firefox-65-released-with-updated-content-blocking-msi-installers-and-more/
BleepingComputer
Firefox 65 Released with Updated Content Blocking, MSI Installers, and More
Mozilla has officially released Firefox 65 to the Windows, Mac, Linux, and Android release channels. This version comes with enhanced tracking protection, language support, streaming enhancements, WebP image support, and improved performance.
Microsoft Adds New Privacy and Compliance Features to Microsoft 365
Microsoft announced the addition of new privacy and personal data protection features to Microsoft 365 to allow customers to respect provisions from privacy laws enacted on a worldwide basis after EU's GDPR went into effect. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-adds-new-privacy-and-compliance-features-to-microsoft-365/
Microsoft announced the addition of new privacy and personal data protection features to Microsoft 365 to allow customers to respect provisions from privacy laws enacted on a worldwide basis after EU's GDPR went into effect. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-adds-new-privacy-and-compliance-features-to-microsoft-365/
BleepingComputer
Microsoft Adds New Privacy and Compliance Features to Microsoft 365
Microsoft announced the addition of new privacy and personal data protection features to Microsoft 365 to allow customers to respect provisions from privacy laws enacted on a worldwide basis after EU's GDPR went into effect.
Apple Disabled Group FaceTime While Working on Bug Fix
In order to prevent people from abusing a serious FaceTime bug that was discovered yesterday, Apple appears to have disabled the Group FaceTime feature while they work on a security update. [...]
https://www.bleepingcomputer.com/news/apple/apple-disabled-group-facetime-while-working-on-bug-fix/
In order to prevent people from abusing a serious FaceTime bug that was discovered yesterday, Apple appears to have disabled the Group FaceTime feature while they work on a security update. [...]
https://www.bleepingcomputer.com/news/apple/apple-disabled-group-facetime-while-working-on-bug-fix/
BleepingComputer
Apple Disabled Group FaceTime While Working on Bug Fix
In order to prevent people from abusing a serious FaceTime bug that was discovered yesterday, Apple appears to have disabled the Group FaceTime feature while they work on a security update.
Theoretical Ransomware Attack Could Lead to Global Damages Says Report
According to a speculative cyber risk scenario prepared by Cambridge University for risk management purposes, a ransomware strain that would manage to impact more than 600,000 businesses worldwide within 24 hours would potentially lead to damages of billions not covered by insurers [...]
https://www.bleepingcomputer.com/news/security/theoretical-ransomware-attack-could-lead-to-global-damages-says-report/
According to a speculative cyber risk scenario prepared by Cambridge University for risk management purposes, a ransomware strain that would manage to impact more than 600,000 businesses worldwide within 24 hours would potentially lead to damages of billions not covered by insurers [...]
https://www.bleepingcomputer.com/news/security/theoretical-ransomware-attack-could-lead-to-global-damages-says-report/
BleepingComputer
Theoretical Ransomware Attack Could Lead to Global Damages Says Report
According to a speculative cyber risk scenario prepared by Cambridge University for risk management purposes, a ransomware strain that would manage to impact more than 600,000 businesses worldwide within 24 hours would potentially lead to damages of billionsβ¦
New LockerGoga Ransomware Allegedly Used in Altran Attack
Hackers have infected the systems of Altran Technologies with malware that spread through the company network, affecting operations in some European countries. To protect client data and its assets, Altran decided to shut down its network and applications. [...]
https://www.bleepingcomputer.com/news/security/new-lockergoga-ransomware-allegedly-used-in-altran-attack/
Hackers have infected the systems of Altran Technologies with malware that spread through the company network, affecting operations in some European countries. To protect client data and its assets, Altran decided to shut down its network and applications. [...]
https://www.bleepingcomputer.com/news/security/new-lockergoga-ransomware-allegedly-used-in-altran-attack/
BleepingComputer
New LockerGoga Ransomware Allegedly Used in Altran Attack
Hackers have infected the systems of Altran Technologies with malware that spread through the company network, affecting operations in some European countries. To protect client data and its assets, Altran decided to shut down its network and applications.