The Week in Ransomware - January 27th 2017 - Potato, Spora goes Global, and Sage 2.0
This week we continue to see lots of little ransomware being developed and new variants of existing ones. The big news is Spora and Sage 2.0 now being distributed by actors that normally distribute Locky and Cerber. This has caused a greater distribution of both of these ransomware infections. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-january-27th-2017-potato-spora-goes-global-and-sage-2-0/
This week we continue to see lots of little ransomware being developed and new variants of existing ones. The big news is Spora and Sage 2.0 now being distributed by actors that normally distribute Locky and Cerber. This has caused a greater distribution of both of these ransomware infections. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-january-27th-2017-potato-spora-goes-global-and-sage-2-0/
BleepingComputer
The Week in Ransomware - January 27th 2017 - Potato, Spora goes Global, and Sage 2.0
This week we continue to see lots of little ransomware being developed and new variants of existing ones. The big news is Spora and Sage 2.0 now being distributed by actors that normally distribute Locky and Cerber. This has caused a greater distributionβ¦
Windows Insider Build 15019 brings us a Game Mode for Increased Gaming Performance
Today Microsoft released Insider Preview Build 15019 for PC to insiders in the fast ring, This release includes a big update for Xbox Gaming including built-in streaming, new Games section in settings, and new mode called Game Mode that is supposed to help with game performance. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-insider-build-15019-brings-us-a-game-mode-for-increased-gaming-performance/
Today Microsoft released Insider Preview Build 15019 for PC to insiders in the fast ring, This release includes a big update for Xbox Gaming including built-in streaming, new Games section in settings, and new mode called Game Mode that is supposed to help with game performance. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-insider-build-15019-brings-us-a-game-mode-for-increased-gaming-performance/
BleepingComputer
Windows Insider Build 15019 brings us a Game Mode for Increased Gaming Performance
Today Microsoft released Insider Preview Build 15019 for PC to insiders in the fast ring, This release includes a big update for Xbox Gaming including built-in streaming, new Games section in settings, and new mode called Game Mode that is supposed to helpβ¦
XSender: The Source of All the Recent XMPP Spam
In recent months, security researchers, hackers, and other dwellers of the cyber-criminal underground have noticed an uptick in XMPP (formerly Jabber) spam. [...]
https://www.bleepingcomputer.com/news/security/xsender-the-source-of-all-the-recent-xmpp-spam/
In recent months, security researchers, hackers, and other dwellers of the cyber-criminal underground have noticed an uptick in XMPP (formerly Jabber) spam. [...]
https://www.bleepingcomputer.com/news/security/xsender-the-source-of-all-the-recent-xmpp-spam/
BleepingComputer
XSender: The Source of All the Recent XMPP Spam
In recent months, security researchers, hackers, and other dwellers of the cyber-criminal underground have noticed an uptick in XMPP (formerly Jabber) spam.
Ransomware Locks Guests Out of Their Rooms at Austrian Hotel
A ransomware infection has locked guests out of their rooms at Romantik Seehotel JΓ€gerwirt, a four-star hotel in the Austrian Alps, on the lip of the Turracher HΓΆhe mountain lake. [...]
https://www.bleepingcomputer.com/news/security/ransomware-locks-guests-out-of-their-rooms-at-austrian-hotel/
A ransomware infection has locked guests out of their rooms at Romantik Seehotel JΓ€gerwirt, a four-star hotel in the Austrian Alps, on the lip of the Turracher HΓΆhe mountain lake. [...]
https://www.bleepingcomputer.com/news/security/ransomware-locks-guests-out-of-their-rooms-at-austrian-hotel/
BleepingComputer
Ransomware Locks Guests Out of Their Rooms at Austrian Hotel
A ransomware infection has locked guests out of their rooms at Romantik Seehotel JΓ€gerwirt, a four-star hotel in the Austrian Alps, on the lip of the Turracher HΓΆhe mountain lake.
US States Considering Legislation to Introduce 'Right to Repair' for Electronics
Several US states have introduced bills aimed at establishing a user's "right to repair" for electronic devices, in the spirit of the Motor Vehicle Owners' Right to Repair Act that was passed by the US Congress in late 2013. [...]
https://www.bleepingcomputer.com/news/government/us-states-considering-legislation-to-introduce-right-to-repair-for-electronics/
Several US states have introduced bills aimed at establishing a user's "right to repair" for electronic devices, in the spirit of the Motor Vehicle Owners' Right to Repair Act that was passed by the US Congress in late 2013. [...]
https://www.bleepingcomputer.com/news/government/us-states-considering-legislation-to-introduce-right-to-repair-for-electronics/
BleepingComputer
US States Considering Legislation to Introduce 'Right to Repair' for Electronics
Several US states have introduced bills aimed at establishing a user's "right to repair" for electronic devices, in the spirit of the Motor Vehicle Owners' Right to Repair Act that was passed by the US Congress in late 2013.
Fake Bank Statements Spam Leads to Keylogger, Bitcoin Wallet & Browser Infostealer
A spam campaign posing as convincing bank transfer statements is tricking users into installing malware on their devices, malware that's capable of several damaging functions. [...]
https://www.bleepingcomputer.com/news/security/fake-bank-statements-spam-leads-to-keylogger-bitcoin-wallet-and-browser-infostealer/
A spam campaign posing as convincing bank transfer statements is tricking users into installing malware on their devices, malware that's capable of several damaging functions. [...]
https://www.bleepingcomputer.com/news/security/fake-bank-statements-spam-leads-to-keylogger-bitcoin-wallet-and-browser-infostealer/
BleepingComputer
Fake Bank Statements Spam Leads to Keylogger, Bitcoin Wallet & Browser Infostealer
A spam campaign posing as convincing bank transfer statements is tricking users into installing malware on their devices, malware that's capable of several damaging functions.
SVG Image Format Set for Wider Adoption in Malware Distribution
SVG has all the makings of a great malware distribution medium, and crooks are bound to migrate to this new file format, now that Google has moved to ban .js email attachments. [...]
https://www.bleepingcomputer.com/news/security/svg-image-format-set-for-wider-adoption-in-malware-distribution/
SVG has all the makings of a great malware distribution medium, and crooks are bound to migrate to this new file format, now that Google has moved to ban .js email attachments. [...]
https://www.bleepingcomputer.com/news/security/svg-image-format-set-for-wider-adoption-in-malware-distribution/
BleepingComputer
SVG Image Format Set for Wider Adoption in Malware Distribution
SVG has all the makings of a great malware distribution medium, and crooks are bound to migrate to this new file format, now that Google has moved to ban .js email attachments.
Are Recent Google Chrome Changes Alienating Hardcore Users?
Google has made a few changes to recent Chrome versions that most users are bound to disagree with since it takes away some of their control over the browser. [...]
https://www.bleepingcomputer.com/news/software/are-recent-google-chrome-changes-alienating-hardcore-users/
Google has made a few changes to recent Chrome versions that most users are bound to disagree with since it takes away some of their control over the browser. [...]
https://www.bleepingcomputer.com/news/software/are-recent-google-chrome-changes-alienating-hardcore-users/
BleepingComputer
Are Recent Google Chrome Changes Alienating Hardcore Users?
Google has made a few changes to recent Chrome versions that most users are bound to disagree with since it takes away some of their control over the browser.
Emsisoft Website Hit by DDoS Attack as Company Releases Ransomware Decrypter
In the past week, two security firms, Dr.Web and Emsisoft, suffered DDoS attacks at the hands of cyber-criminals who attempted to bring down their websites as payback for meddling with their illegal activities. [...]
https://www.bleepingcomputer.com/news/security/emsisoft-website-hit-by-ddos-attack-as-company-releases-ransomware-decrypter/
In the past week, two security firms, Dr.Web and Emsisoft, suffered DDoS attacks at the hands of cyber-criminals who attempted to bring down their websites as payback for meddling with their illegal activities. [...]
https://www.bleepingcomputer.com/news/security/emsisoft-website-hit-by-ddos-attack-as-company-releases-ransomware-decrypter/
BleepingComputer
Emsisoft Website Hit by DDoS Attack as Company Releases Ransomware Decrypter
In the past week, two security firms, Dr.Web and Emsisoft, suffered DDoS attacks at the hands of cyber-criminals who attempted to bring down their websites as payback for meddling with their illegal activities.
Facebook Designs New Account Recovery System That's Actually Pretty Clever
Today, at the USENIX Enigma conference, Facebook engineers announced a new mechanism for recovering access to lost online accounts, which relies on the cooperation between different online services. [...]
https://www.bleepingcomputer.com/news/security/facebook-designs-new-account-recovery-system-thats-actually-pretty-clever/
Today, at the USENIX Enigma conference, Facebook engineers announced a new mechanism for recovering access to lost online accounts, which relies on the cooperation between different online services. [...]
https://www.bleepingcomputer.com/news/security/facebook-designs-new-account-recovery-system-thats-actually-pretty-clever/
BleepingComputer
Facebook Designs New Account Recovery System That's Actually Pretty Clever
Today, at the USENIX Enigma conference, Facebook engineers announced a new mechanism for recovering access to lost online accounts, which relies on the cooperation between different online services.
Federal Reserve Employee Admits to Installing Bitcoin Miner on Government Server
Nicholas Berthaume, a former employee of the US Federal Reserve in Washington, D.C., has pleaded guilty and was sentenced to 12 months probation for installing Bitcoin mining software on one of the government servers he was supposed to manage. [...]
https://www.bleepingcomputer.com/news/government/federal-reserve-employee-admits-to-installing-bitcoin-miner-on-government-server/
Nicholas Berthaume, a former employee of the US Federal Reserve in Washington, D.C., has pleaded guilty and was sentenced to 12 months probation for installing Bitcoin mining software on one of the government servers he was supposed to manage. [...]
https://www.bleepingcomputer.com/news/government/federal-reserve-employee-admits-to-installing-bitcoin-miner-on-government-server/
BleepingComputer
Federal Reserve Employee Admits to Installing Bitcoin Miner on Government Server
Nicholas Berthaume, a former employee of the US Federal Reserve in Washington, D.C., has pleaded guilty and was sentenced to 12 months probation for installing Bitcoin mining software on one of the government servers he was supposed to manage.
Rogue Netflix App Spreads Netix Ransomware That Targets Windows 7 and 10 Users
A ransomware family named Netix (RANSOM_NETIX.A) is targeting users who use special applications to access hacked Netflix accounts, locking their files and demanding a ransom payment of $100. [...]
https://www.bleepingcomputer.com/news/security/rogue-netflix-app-spreads-netix-ransomware-that-targets-windows-7-and-10-users/
A ransomware family named Netix (RANSOM_NETIX.A) is targeting users who use special applications to access hacked Netflix accounts, locking their files and demanding a ransom payment of $100. [...]
https://www.bleepingcomputer.com/news/security/rogue-netflix-app-spreads-netix-ransomware-that-targets-windows-7-and-10-users/
BleepingComputer
Rogue Netflix App Spreads Netix Ransomware That Targets Windows 7 and 10 Users
A ransomware family named Netix (RANSOM_NETIX.A) is targeting users who use special applications to access hacked Netflix accounts, locking their files and demanding a ransom payment of $100.
Apple Takes Down iCloud Activation Lock Page After Disclosure of Security Flaw
Following the public disclosure of a security flaw in the iCloud Activation Lock web page that allowed phone thieves to reactivate devices to other Apple user accounts, the company has decided to shut down the page for the time being. [...]
https://www.bleepingcomputer.com/news/apple/apple-takes-down-icloud-activation-lock-page-after-disclosure-of-security-flaw/
Following the public disclosure of a security flaw in the iCloud Activation Lock web page that allowed phone thieves to reactivate devices to other Apple user accounts, the company has decided to shut down the page for the time being. [...]
https://www.bleepingcomputer.com/news/apple/apple-takes-down-icloud-activation-lock-page-after-disclosure-of-security-flaw/
BleepingComputer
Apple Takes Down iCloud Activation Lock Page After Disclosure of Security Flaw
Following the public disclosure of a security flaw in the iCloud Activation Lock web page that allowed phone thieves to reactivate devices to other Apple user accounts, the company has decided to shut down the page for the time being.
Fake Chrome Font Pack Update Alerts Infecting Visitors with Spora Ransomware
Yesterday, Brad Duncan, a Threat Intelligence Analyst for Palo Alto Networks Unit 42, wrote a blog article discussing how the EITest Chrome Font Update campaign, which was previously discovered by Kafeine, is now distributing the Spora Ransomware instead. [...]
https://www.bleepingcomputer.com/news/security/fake-chrome-font-pack-update-alerts-infecting-visitors-with-spora-ransomware/
Yesterday, Brad Duncan, a Threat Intelligence Analyst for Palo Alto Networks Unit 42, wrote a blog article discussing how the EITest Chrome Font Update campaign, which was previously discovered by Kafeine, is now distributing the Spora Ransomware instead. [...]
https://www.bleepingcomputer.com/news/security/fake-chrome-font-pack-update-alerts-infecting-visitors-with-spora-ransomware/
BleepingComputer
Fake Chrome Font Pack Update Alerts Infecting Visitors with Spora Ransomware
Yesterday, Brad Duncan, a Threat Intelligence Analyst for Palo Alto Networks Unit 42, wrote a blog article discussing how the EITest Chrome Font Update campaign, which was previously discovered by Kafeine, is now distributing the Spora Ransomware instead.
Spanish Police Claim to Have Arrested Phineas Fisher - Hacking Team Hacker
Spain's National Police Corps have detained a man in the city of Salamanca, who they suspect of being Phineas Fisher, a famous hacker who has breached the Gamma Group and Hacking Team, two companies that sold cyber-surveillance software to oppressive regimes. [...]
https://www.bleepingcomputer.com/news/security/spanish-police-claim-to-have-arrested-phineas-fisher-hacking-team-hacker/
Spain's National Police Corps have detained a man in the city of Salamanca, who they suspect of being Phineas Fisher, a famous hacker who has breached the Gamma Group and Hacking Team, two companies that sold cyber-surveillance software to oppressive regimes. [...]
https://www.bleepingcomputer.com/news/security/spanish-police-claim-to-have-arrested-phineas-fisher-hacking-team-hacker/
BleepingComputer
Spanish Police Claim to Have Arrested Phineas Fisher - Hacking Team Hacker
Spain's National Police Corps have detained a man in the city of Salamanca, who they suspect of being Phineas Fisher, a famous hacker who has breached Gamma Group and Hacking Team, two companies that sold cyber-surveillance software to oppressive regimes.
31 Netgear Router Models Affected by Flaw That Exposes Admin Password
Netgear has issued patches that resolve a simple bug in the firmware of 20 different router models that allow an attacker to expose the router's web panel admin password, which they can use to take over the device. [...]
https://www.bleepingcomputer.com/news/hardware/31-netgear-router-models-affected-by-flaw-that-exposes-admin-password/
Netgear has issued patches that resolve a simple bug in the firmware of 20 different router models that allow an attacker to expose the router's web panel admin password, which they can use to take over the device. [...]
https://www.bleepingcomputer.com/news/hardware/31-netgear-router-models-affected-by-flaw-that-exposes-admin-password/
BleepingComputer
31 Netgear Router Models Affected by Flaw That Exposes Admin Password
Netgear has issued patches that resolve a simple bug in the firmware of 20 different router models that allow an attacker to expose the router's web panel admin password, which they can use to take over the device.
Epic Fail: Linux Encryption App Cryptkeeper Has Universal Password: 'p'
A data encryption app for Linux users named Cryptkeeper has a bug that allows anyone to decrypt locked content using the password "p". [...]
https://www.bleepingcomputer.com/news/security/epic-fail-linux-encryption-app-cryptkeeper-has-universal-password-p/
A data encryption app for Linux users named Cryptkeeper has a bug that allows anyone to decrypt locked content using the password "p". [...]
https://www.bleepingcomputer.com/news/security/epic-fail-linux-encryption-app-cryptkeeper-has-universal-password-p/
BleepingComputer
Epic Fail: Linux Encryption App Cryptkeeper Has Universal Password: 'p'
A data encryption app for Linux users named Cryptkeeper has a bug that allows anyone to decrypt locked content using the password "p".
CryptoMix variant named CryptoShield 1.0 Ransomware Distributed by Exploit Kits
A new CryptoMix variant called CryptoShield 1.0 Ransomware has been discovered by ProofPoint security researcher Kafeine being distributed via EITest and the RIG exploit kit. [...]
https://www.bleepingcomputer.com/news/security/cryptomix-variant-named-cryptoshield-1-0-ransomware-distributed-by-exploit-kits/
A new CryptoMix variant called CryptoShield 1.0 Ransomware has been discovered by ProofPoint security researcher Kafeine being distributed via EITest and the RIG exploit kit. [...]
https://www.bleepingcomputer.com/news/security/cryptomix-variant-named-cryptoshield-1-0-ransomware-distributed-by-exploit-kits/
BleepingComputer
CryptoMix variant named CryptoShield 1.0 Ransomware Distributed by Exploit Kits
A new CryptoMix variant called CryptoShield 1.0 Ransomware has been discovered by ProofPoint security researcher Kafeine being distributed via EITest and the RIG exploit kit.
GitLab Goes Down After Employee Deletes the Wrong Folder
GitLab.com, a web service for hosting and syncing source code, similar to GitHub, has gone down last night at around 18:00 ET, January 31, and after 11 hours, at the time of publishing, the website is still down. [...]
https://www.bleepingcomputer.com/news/hardware/gitlab-goes-down-after-employee-deletes-the-wrong-folder/
GitLab.com, a web service for hosting and syncing source code, similar to GitHub, has gone down last night at around 18:00 ET, January 31, and after 11 hours, at the time of publishing, the website is still down. [...]
https://www.bleepingcomputer.com/news/hardware/gitlab-goes-down-after-employee-deletes-the-wrong-folder/
BleepingComputer
GitLab Goes Down After Employee Deletes the Wrong Folder
GitLab.com, a web service for hosting and syncing source code, similar to GitHub, has gone down last night at around 18:00 ET, January 31, and after 11 hours, at the time of publishing, the website is still down.
Mobile Security Firm Wants to Buy Expired Zero-Days
Zimperium, the mobile security company that discovered the Stagefright bug in the summer of 2015, announced yesterday its intention to buy fully-working exploits for former Android and iOS zero-days. [...]
https://www.bleepingcomputer.com/news/security/mobile-security-firm-wants-to-buy-expired-zero-days/
Zimperium, the mobile security company that discovered the Stagefright bug in the summer of 2015, announced yesterday its intention to buy fully-working exploits for former Android and iOS zero-days. [...]
https://www.bleepingcomputer.com/news/security/mobile-security-firm-wants-to-buy-expired-zero-days/
BleepingComputer
Mobile Security Firm Wants to Buy Expired Zero-Days
Zimperium, the mobile security company that discovered the Stagefright bug in the summer of 2015, announced yesterday its intention to buy fully-working exploits for former Android and iOS zero-days.