Citrix Learns About Internal Network Security Breach from FBI
Citrix found out from the FBI on March 6, 2019, about a security breach into its internal network which led to the cybercriminals behind the attack being able to access and steal a set of business documents. No Citrix products or services were impacted by the attack. [...]
https://www.bleepingcomputer.com/news/security/citrix-learns-about-internal-network-security-breach-from-fbi/
Citrix found out from the FBI on March 6, 2019, about a security breach into its internal network which led to the cybercriminals behind the attack being able to access and steal a set of business documents. No Citrix products or services were impacted by the attack. [...]
https://www.bleepingcomputer.com/news/security/citrix-learns-about-internal-network-security-breach-from-fbi/
BleepingComputer
Citrix Learns About Internal Network Security Breach from FBI
Citrix found out from the FBI on March 6, 2019, about a security breach into its internal network which led to the cybercriminals behind the attack being able to access and steal a set of business documents. No Citrix products or services were impacted byβ¦
The Week in Ransomware - March 8th 2019 - OpJerusalem, Jokeroo, and More
This week we had some interesting stories, with the two biggest being an alleged new Ransomware-as-a-Service called Jokeroo and the #OpJerusalem attack conducted against Israeli sites. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-march-8th-2019-opjerusalem-jokeroo-and-more/
This week we had some interesting stories, with the two biggest being an alleged new Ransomware-as-a-Service called Jokeroo and the #OpJerusalem attack conducted against Israeli sites. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-march-8th-2019-opjerusalem-jokeroo-and-more/
BleepingComputer
The Week in Ransomware - March 8th 2019 - OpJerusalem, Jokeroo, and More
This week we had some interesting stories, with the two biggest being an alleged new Ransomware-as-a-Service called Jokeroo and the #OpJerusalem attack conducted against Israeli sites.
Smart Car Alarms Ironically Expose Millions of Vehicles to Remote Hijacking
Aftermarket car alarm systems developed by Pandora and Viper have been found to be vulnerable to remote exploitation, enabling potential attackers to hijack the vehicles they're installed on and to spy on their owners. [...]
https://www.bleepingcomputer.com/news/security/smart-car-alarms-ironically-expose-millions-of-vehicles-to-remote-hijacking/
Aftermarket car alarm systems developed by Pandora and Viper have been found to be vulnerable to remote exploitation, enabling potential attackers to hijack the vehicles they're installed on and to spy on their owners. [...]
https://www.bleepingcomputer.com/news/security/smart-car-alarms-ironically-expose-millions-of-vehicles-to-remote-hijacking/
BleepingComputer
Smart Car Alarms Ironically Expose Millions of Vehicles to Remote Hijacking
Aftermarket car alarm systems developed by Pandora and Viper have been found to be vulnerable to remote exploitation, enabling potential attackers to hijack the vehicles they're installed on and to spy on their owners.
Cookie Walls Do Not Comply with the GDPR According to Dutch Watchdog
Cookie walls used by websites, app, and services to force their visitors to accept tracking cookies before being able to gain access do not comply with EU's GDPR said the Dutch Data Protection Authority in a statement published on Thursday. [...]
https://www.bleepingcomputer.com/news/security/cookie-walls-do-not-comply-with-the-gdpr-according-to-dutch-watchdog/
Cookie walls used by websites, app, and services to force their visitors to accept tracking cookies before being able to gain access do not comply with EU's GDPR said the Dutch Data Protection Authority in a statement published on Thursday. [...]
https://www.bleepingcomputer.com/news/security/cookie-walls-do-not-comply-with-the-gdpr-according-to-dutch-watchdog/
BleepingComputer
Cookie Walls Do Not Comply with the GDPR According to Dutch Watchdog
Cookie walls used by websites, app, and services to force their visitors to accept tracking cookies before being able to gain access do not comply with EU's GDPR said the Dutch Data Protection Authority in a statement published on Thursday.
Ransomware Attack on Jackson County Gets Cybercriminals $400,000
A ransomware attack hit the computers of Jackson County, Georgia, reducing government activity to a crawl until officials decided to pay cybercriminals $400,000 in exchange for the file decryption key. [...]
https://www.bleepingcomputer.com/news/security/ransomware-attack-on-jackson-county-gets-cybercriminals-400-000/
A ransomware attack hit the computers of Jackson County, Georgia, reducing government activity to a crawl until officials decided to pay cybercriminals $400,000 in exchange for the file decryption key. [...]
https://www.bleepingcomputer.com/news/security/ransomware-attack-on-jackson-county-gets-cybercriminals-400-000/
BleepingComputer
Ransomware Attack on Jackson County Gets Cybercriminals $400,000
A ransomware attack hit the computers of Jackson County, Georgia, reducing government activity to a crawl until officials decided to pay cybercriminals $400,000 in exchange for the file decryption key.
STOP Ransomware Installing Password Stealing Trojans on Victims
In addition to encrypting a victim's files, the STOP ransomware family has also started to install the Azorult password-stealing Trojan on victim's computer to steal account credentials, cryptocurrency wallets, desktop files, and more. [...]
https://www.bleepingcomputer.com/news/security/stop-ransomware-installing-password-stealing-trojans-on-victims/
In addition to encrypting a victim's files, the STOP ransomware family has also started to install the Azorult password-stealing Trojan on victim's computer to steal account credentials, cryptocurrency wallets, desktop files, and more. [...]
https://www.bleepingcomputer.com/news/security/stop-ransomware-installing-password-stealing-trojans-on-victims/
BleepingComputer
STOP Ransomware Installing Password Stealing Trojans on Victims
In addition to encrypting a victim's files, the STOP ransomware family has also started to install the Azorult password-stealing Trojan on victim's computer to steal account credentials, cryptocurrency wallets, desktop files, and more.
Microsoft Asks Users to Call Windows 10 Devs About ALT+TAB Feature
Microsoft has started to display notifications in the Windows 10 Action Center asking users to have a phone call with Microsoft developers and provide direct feedback about the ALT+TAB feature in Windows. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-asks-users-to-call-windows-10-devs-about-alt-tab-feature/
Microsoft has started to display notifications in the Windows 10 Action Center asking users to have a phone call with Microsoft developers and provide direct feedback about the ALT+TAB feature in Windows. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-asks-users-to-call-windows-10-devs-about-alt-tab-feature/
BleepingComputer
Microsoft Asks Users to Call Windows 10 Devs About ALT+TAB Feature
Microsoft has started to display notifications in the Windows 10 Action Center asking users to have a phone call with Microsoft developers and provide direct feedback about the ALT+TAB feature in Windows.
Game Development Companies Backdoored in Supply-Chain Attacks
Two popular games and a gaming platform developed by Asian companies were compromised following a series of successful supply-chain attacks which allowed the attackers to include a malicious payload designed to provide them with a backdoor. [...]
https://www.bleepingcomputer.com/news/security/game-development-companies-backdoored-in-supply-chain-attacks/
Two popular games and a gaming platform developed by Asian companies were compromised following a series of successful supply-chain attacks which allowed the attackers to include a malicious payload designed to provide them with a backdoor. [...]
https://www.bleepingcomputer.com/news/security/game-development-companies-backdoored-in-supply-chain-attacks/
BleepingComputer
Game Development Companies Backdoored in Supply-Chain Attacks
Two popular games and a gaming platform developed by Asian companies were compromised following a series of successful supply-chain attacks which allowed the attackers to include a malicious payload designed to provide them with a backdoor.
Creepy Database Lists 'BreedReady' Status for 1.8 Million Women
A database left unprotected online reveals a creepy set of details collected on more than 1.8 million women in China. Apart from the regular info one would expect, like name, age, and date of birth, the data set also includes a "BreedReady" status. [...]
https://www.bleepingcomputer.com/news/security/creepy-database-lists-breedready-status-for-18-million-women/
A database left unprotected online reveals a creepy set of details collected on more than 1.8 million women in China. Apart from the regular info one would expect, like name, age, and date of birth, the data set also includes a "BreedReady" status. [...]
https://www.bleepingcomputer.com/news/security/creepy-database-lists-breedready-status-for-18-million-women/
BleepingComputer
Creepy Database Lists 'BreedReady' Status for 1.8 Million Women
A database left unprotected online reveals a creepy set of details collected on more than 1.8 million women in China. Apart from the regular info one would expect, like name, age, and date of birth, the data set also includes a "BreedReady" status.
Samsung Galaxy S10 Face Recognition Can Easily Be Bypassed
The face recognition-based screen lock feature in the Samsung Galaxy S10 can be easily fooled using a photo or a video of the owner as shown by multiple reports coming from customers, experts and tech reviewers. [...]
https://www.bleepingcomputer.com/news/security/samsung-galaxy-s10-face-recognition-can-easily-be-bypassed/
The face recognition-based screen lock feature in the Samsung Galaxy S10 can be easily fooled using a photo or a video of the owner as shown by multiple reports coming from customers, experts and tech reviewers. [...]
https://www.bleepingcomputer.com/news/security/samsung-galaxy-s10-face-recognition-can-easily-be-bypassed/
BleepingComputer
Samsung Galaxy S10 Face Recognition Can Easily Be Bypassed
The face recognition-based screen lock feature in the Samsung Galaxy S10 can be easily fooled using a photo or a video of the owner as shown by multiple reports coming from customers, experts and tech reviewers.
New "Final Warning" Sextortion Emails State Adult Sites Infected You
A new sextortion email campaign with a subject of "This is a final warning" is underway that states a hacker infected the recipient's computer while they were visiting an adult web site and demand an extortion payment or the video will be released to family and friends. [...]
https://www.bleepingcomputer.com/news/security/new-final-warning-sextortion-emails-state-adult-sites-infected-you/
A new sextortion email campaign with a subject of "This is a final warning" is underway that states a hacker infected the recipient's computer while they were visiting an adult web site and demand an extortion payment or the video will be released to family and friends. [...]
https://www.bleepingcomputer.com/news/security/new-final-warning-sextortion-emails-state-adult-sites-infected-you/
BleepingComputer
New "Final Warning" Sextortion Emails State Adult Sites Infected You
A new sextortion email campaign with a subject of "This is a final warning" is underway that states a hacker infected the recipient's computer while they were visiting an adult web site and demand an extortion payment or the video will be released to familyβ¦
Medical IoT Devices with Outdated Operating Sytems Exposed to Hacking
Medical IoT (IoMT) devices are in many cases left exposed to attacks because of outdated or legacy operating systems which, in many cases, are very easy to hack into and expose a throve of sensitive patient data, highly sought over on the black market. [...]
https://www.bleepingcomputer.com/news/security/medical-iot-devices-with-outdated-operating-sytems-exposed-to-hacking/
Medical IoT (IoMT) devices are in many cases left exposed to attacks because of outdated or legacy operating systems which, in many cases, are very easy to hack into and expose a throve of sensitive patient data, highly sought over on the black market. [...]
https://www.bleepingcomputer.com/news/security/medical-iot-devices-with-outdated-operating-sytems-exposed-to-hacking/
BleepingComputer
Medical IoT Devices with Outdated Operating Sytems Exposed to Hacking
Medical IoT (IoMT) devices are in many cases left exposed to attacks because of outdated or legacy operating systems which, in many cases, are very easy to hack into and expose a throve of sensitive patient data, highly sought over on the black market.
NVIDIA Removing Support For 3D Vision in Game Ready Drivers
In a support document posted this month, NVIDIA has stated that they will no longer support 3D Vision in GeForce Game Ready drivers after the upcoming April 2019 Release 418 driver. [...]
https://www.bleepingcomputer.com/news/hardware/nvidia-removing-support-for-3d-vision-in-game-ready-drivers/
In a support document posted this month, NVIDIA has stated that they will no longer support 3D Vision in GeForce Game Ready drivers after the upcoming April 2019 Release 418 driver. [...]
https://www.bleepingcomputer.com/news/hardware/nvidia-removing-support-for-3d-vision-in-game-ready-drivers/
BleepingComputer
NVIDIA Removing Support For 3D Vision in Game Ready Drivers
In a support document posted this month, NVIDIA has stated that they will no longer support 3D Vision in GeForce Game Ready drivers after the upcoming April 2019 Release 418 driver.
Google Chrome to Block Drive-By-Downloads from Ad Frames
Google is planning to add automated prevention of all downloads initiated from within ad frames which lack user activation, as part of an effort to boost the security of Chrome users by blocking possibly malicious drive-by-downloads. [...]
https://www.bleepingcomputer.com/news/security/google-chrome-to-block-drive-by-downloads-from-ad-frames/
Google is planning to add automated prevention of all downloads initiated from within ad frames which lack user activation, as part of an effort to boost the security of Chrome users by blocking possibly malicious drive-by-downloads. [...]
https://www.bleepingcomputer.com/news/security/google-chrome-to-block-drive-by-downloads-from-ad-frames/
BleepingComputer
Google Chrome to Block Drive-By-Downloads from Ad Frames
Google is planning to add automated prevention of all downloads initiated from within ad frames which lack user activation, as part of an effort to boost the security of Chrome users by blocking possibly malicious drive-by-downloads.
Windows 10 to Automatically Remove Updates That Cause Problems
Windows 10 will automatically uninstall Windows updates that cause startup failures due to incompatibility or issues in new software according to a support document published by Microsoft today. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-to-automatically-remove-updates-that-cause-problems/
Windows 10 will automatically uninstall Windows updates that cause startup failures due to incompatibility or issues in new software according to a support document published by Microsoft today. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-to-automatically-remove-updates-that-cause-problems/
BleepingComputer
Windows 10 to Automatically Remove Updates That Cause Problems
Windows 10 will automatically uninstall Windows updates that cause startup failures due to incompatibility or issues in new software according to a support document published by Microsoft today.
Yatron Ransomware Plans to Spread Using EternalBlue NSA Exploits
A new Ransomware-as-a-Service called Yatron is being promoted on Twitter that plans on using the EternalBlue and DoublePulsar exploits to spread to other computer on a network. This ransomware will also attempt to delete encrypted files if a payment has not been made in 72 hours. [...]
https://www.bleepingcomputer.com/news/security/yatron-ransomware-plans-to-spread-using-eternalblue-nsa-exploits/
A new Ransomware-as-a-Service called Yatron is being promoted on Twitter that plans on using the EternalBlue and DoublePulsar exploits to spread to other computer on a network. This ransomware will also attempt to delete encrypted files if a payment has not been made in 72 hours. [...]
https://www.bleepingcomputer.com/news/security/yatron-ransomware-plans-to-spread-using-eternalblue-nsa-exploits/
BleepingComputer
Yatron Ransomware Plans to Spread Using EternalBlue NSA Exploits
A new Ransomware-as-a-Service called Yatron is being promoted on Twitter that plans on using the EternalBlue and DoublePulsar exploits to spread to other computer on a network. This ransomware will also attempt to delete encrypted files if a payment has notβ¦
Adobe Releases March 2019 Security Fixes for Photoshop CC and Digital Editions
Adobe has published their monthly Patch Tuesday updates for the month of March 2019. These updates fix security arbitrary code execution vulnerabilities in Photoshop and Adobe Digital Editions. [...]
https://www.bleepingcomputer.com/news/security/adobe-releases-march-2019-security-fixes-for-photoshop-cc-and-digital-editions/
Adobe has published their monthly Patch Tuesday updates for the month of March 2019. These updates fix security arbitrary code execution vulnerabilities in Photoshop and Adobe Digital Editions. [...]
https://www.bleepingcomputer.com/news/security/adobe-releases-march-2019-security-fixes-for-photoshop-cc-and-digital-editions/
BleepingComputer
Adobe Releases March 2019 Security Fixes for Photoshop CC and Digital Editions
Adobe has published their monthly Patch Tuesday updates for the month of March 2019. These updates fix security arbitrary code execution vulnerabilities in Photoshop and Adobe Digital Editions.
Microsoft Testing Android Screen Mirroring on Windows 10 PCs
Microsoft has added beta support Android app screen mirroring in Windows 10 Build 1803 or newer for the latest Insider builds. At the moment the feature is only compatible with a limited number of devices but it will be supported by all smartphones running Android version 7.0 or later. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-testing-android-screen-mirroring-on-windows-10-pcs/
Microsoft has added beta support Android app screen mirroring in Windows 10 Build 1803 or newer for the latest Insider builds. At the moment the feature is only compatible with a limited number of devices but it will be supported by all smartphones running Android version 7.0 or later. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-testing-android-screen-mirroring-on-windows-10-pcs/
BleepingComputer
Microsoft Testing Android Screen Mirroring on Windows 10 PCs
Microsoft has added beta support Android app screen mirroring in Windows 10 Build 1803 or newer for the latest Insider builds. At the moment the feature is only compatible with a limited number of devices but it will be supported by all smartphones runningβ¦
Malware Spreads As a Worm, Uses Cryptojacking Module to Mine for Monero
A modular malware with worm capabilities exploits known vulnerabilities in servers running ElasticSearch, Hadoop, Redis, Spring, Weblogic, ThinkPHP, and SqlServer to spread from one server to another and mine for Monero cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/malware-spreads-as-a-worm-uses-cryptojacking-module-to-mine-for-monero/
A modular malware with worm capabilities exploits known vulnerabilities in servers running ElasticSearch, Hadoop, Redis, Spring, Weblogic, ThinkPHP, and SqlServer to spread from one server to another and mine for Monero cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/malware-spreads-as-a-worm-uses-cryptojacking-module-to-mine-for-monero/
BleepingComputer
Malware Spreads As a Worm, Uses Cryptojacking Module to Mine for Monero
A modular malware with worm capabilities exploits known vulnerabilities in servers running ElasticSearch, Hadoop, Redis, Spring, Weblogic, ThinkPHP, and SqlServer to spread from one server to another and mine for Monero cryptocurrency.
Microsoft Releases the March 2019 Updates for Office
Microsoft released the March 2019 Office Update today, which consists of 6 security updates and 28 non-security updates. A some of these updates resolve critical vulnerabilities, it is strongly advised that you install them as soon as possible. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-the-march-2019-updates-for-office/
Microsoft released the March 2019 Office Update today, which consists of 6 security updates and 28 non-security updates. A some of these updates resolve critical vulnerabilities, it is strongly advised that you install them as soon as possible. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-the-march-2019-updates-for-office/
BleepingComputer
Microsoft Releases the March 2019 Updates for Office
Microsoft released the March 2019 Office Update today, which consists of 6 security updates and 28 non-security updates. A some of these updates resolve critical vulnerabilities, it is strongly advised that you install them as soon as possible.