Website Uses "Add Extension to Leave" Popups to Infect Chrome Users

A malvertising campaign has specifically targeted and redirected Chrome users to a website they couldn't leave unless they agreed to install a rogue Chrome extension. [...]

https://www.bleepingcomputer.com/news/security/website-uses-add-extension-to-leave-popups-to-infect-chrome-users/

Cyber-Espionage Group Uses Microphones and Dropbox to Spy on Ukrainian Targets

A well-organized cyber-espionage group is infecting computers at selected targets in the Ukraine, turning on their microphone to record nearby audio, stealing documents, and storing exfiltrated data inside Dropbox accounts, according to security firm CyberX, who recently came across the malware used in these attacks. [...]

https://www.bleepingcomputer.com/news/security/cyber-espionage-group-uses-microphones-and-dropbox-to-spy-on-ukrainian-targets/

Bitcoin Trader Hit By "Severe DDoS Attack" as Bitcoin Price Nears All-Time High

Top Bitcoin trading platform Bitfinex was hit yesterday late night by what its experts categorized as a "severe DDoS attack." [...]

https://www.bleepingcomputer.com/news/security/bitcoin-trader-hit-by-severe-ddos-attack-as-bitcoin-price-nears-all-time-high/

New Trump Locker Ransomware Is a Fraud, Just VenusLocker in Disguise

Yesterday, Bleeping Computer's Lawrence Abrams came across a new ransomware family that he named Trump Locker based on the email address crooks listed in the ransom note, and an image of US President Donald Trump the ransomware displayed before its ransom note. [...]

https://www.bleepingcomputer.com/news/security/new-trump-locker-ransomware-is-a-fraud-just-venuslocker-in-disguise/

New macOS Patcher Ransomware Locks Data for Good, No Way to Recover Your Files

A newly discovered ransomware family calling itself Patcher is targeting macOS users, but according to security researchers from ESET, who discovered the ransomware last week, Patcher bungles the encryption process and leaves affected users with no way of recovering their files. [...]

https://www.bleepingcomputer.com/news/security/new-macos-patcher-ransomware-locks-data-for-good-no-way-to-recover-your-files/

Android Ransomware Asks Victims to Speak Unlock Code

A new variant of the Lockdroid Android ransomware has chosen a unique way of unlocking devices by asking users to speak a code provided after paying the ransom. [...]

https://www.bleepingcomputer.com/news/security/android-ransomware-asks-victims-to-speak-unlock-code/

Linux Project Patches 11-Year-Old Security Flaw That Gives Attackers Root Access

The Linux team has patched a security flaw in the Linux kernel that can be exploited to gain root-level code execution rights from a low-privileged process. [...]

https://www.bleepingcomputer.com/news/security/linux-project-patches-11-year-old-security-flaw-that-gives-attackers-root-access/

Malware Uses Blinking Hard Drive LEDs to Transmit Data to Nearby Cameras

Custom-made malware installed on an offline computer can use a hard drive's LED to send out sensitive data from infected computers to nearby cameras. [...]

https://www.bleepingcomputer.com/news/security/malware-uses-blinking-hard-drive-leds-to-transmit-data-to-nearby-cameras/

Google Announces First-Ever SHA1 Collision Attack

The SHA1 (Secure Hash Algorithm 1) cryptographic hash function is now officially dead and useless, after Google announced today the first ever successful collision attack. [...]

https://www.bleepingcomputer.com/news/security/google-announces-first-ever-sha1-collision-attack/

UK Police Arrest Suspect Behind Mirai Malware Attacks on Deutsche Telekom

German police announced today that fellow police officers from the UK have arrested a suspect behind a serious cyber-attack that crippled German ISP Deutsche Telekom at the end of November 2016. [...]

https://www.bleepingcomputer.com/news/security/uk-police-arrest-suspect-behind-mirai-malware-attacks-on-deutsche-telekom/

EU Unimpressed with Upcoming Windows 10 Privacy Controls

EU's main privacy watchdog has expressed displeasure with Microsoft's new privacy controls that the company announced last month and plans to ship with Windows 10 Creators Update, scheduled for launch later in April. [...]

https://www.bleepingcomputer.com/news/microsoft/eu-unimpressed-with-upcoming-windows-10-privacy-controls/

Leaked Android Banking Trojan Spotted in Disguise on the Google Play Store

Just as security experts have predicted, the source code of a potent Android banking trojan that was leaked online in mid-December 2016, is now being seen in live attacks on a regular basis. [...]

https://www.bleepingcomputer.com/news/security/leaked-android-banking-trojan-spotted-in-disguise-on-the-google-play-store/

Typo in Cloudflare Server Source Code Leaks Customer Info, Cookies, Passwords

A typo in the source code of a Cloudflare component has exposed the personal information of users visiting sites protected by Cloudflare's service, along with potentially more sensitive details such as cookies, passwords, authentication tokens, API keys, and others. [...]

https://www.bleepingcomputer.com/news/security/typo-in-cloudflare-server-source-code-leaks-customer-info-cookies-passwords/

World's Largest Spam Botnet Adds DDoS Feature

Necurs, the world's largest spam botnet with nearly 5 million infected bots, of which one million active each day, has added a new module that can be used for launching DDoS attacks. [...]

https://www.bleepingcomputer.com/news/security/worlds-largest-spam-botnet-adds-ddos-feature/

Removing User Admin Rights Mitigates 94% of All Critical Microsoft Vulnerabilities

Just by preventing access to admin accounts, a system administrator could safeguard all the computers under his watch and prevent attackers from exploiting 94% of all the critical vulnerabilities Microsoft patched during the past year. [...]

https://www.bleepingcomputer.com/news/microsoft/removing-user-admin-rights-mitigates-94-percent-of-all-critical-microsoft-vulnerabilities/

The Week in Ransomware - February 24th 2017 - Trump Locker, MacOS RW, and CryptoMix

Lots of small little ransomware infections released this week that will most likely never make it into major circulation. The stories  of interest this week are the Avast decryptor for offline CryptoMix infections, Trump Locker, and a new macOS ransomware called Packer. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-february-24th-2017-trump-locker-macos-rw-and-cryptomix/

Google Goes Public with Unpatched Microsoft Edge and IE Vulnerability

Google has gone public with details of a second unpatched vulnerability in Microsoft products, this time in Edge and Internet Explorer, after last week they've published details about a bug in the Windows GDI (Graphics Device Interface) component. [...]

https://www.bleepingcomputer.com/news/security/google-goes-public-with-unpatched-microsoft-edge-and-ie-vulnerability/

Database Ransom Attacks Have Now Hit MySQL Servers

After the ransacking of MongoDB, ElasticSearch, Hadoop, and CouchDB servers, attackers are now hijacking hundreds of MySQL databases, deleting their content, and leaving a ransom note behind asking for a 0.2 Bitcoin ($235) payment. [...]

https://www.bleepingcomputer.com/news/security/database-ransom-attacks-have-now-hit-mysql-servers/

New RaaS Portal Preparing to Spread Unlock26 Ransomware

A new Ransomware-as-a-Service (RaaS) portal named Dot-Ransomware is behind the Unlock26 ransomware discovered this past week. [...]

https://www.bleepingcomputer.com/news/security/new-raas-portal-preparing-to-spread-unlock26-ransomware/

Hacker Group Defaces Hundreds of Websites After Hacking UK Hosting Firm

[...]

https://www.bleepingcomputer.com/news/security/hacker-group-defaces-hundreds-of-websites-after-hacking-uk-hosting-firm/