Apple Updates XProtect to Block 'Windows' Malware on Macs
Security - Posted On:2019-04-24 16:45:00 Source: bleepingcomputer
Apple's XProtect security software has been silently updated to include signatures that detect Windows PE files and Windows executables that can run on Macs by utilizing the Mono .NET framework. [...]
Qbot Malware Dropped via Context-Aware Phishing Campaign
Security - Posted On:2019-04-24 11:15:00 Source: bleepingcomputer
A phishing campaign dropping the Qbot banking Trojan with the help of delivery emails camouflaging as parts of previous conversations was spotted during late March 2019 by the JASK Special Operations team. [...]
Windows 10 1903 Gets Rid of Password Expiration Policies
Security - Posted On:2019-04-24 11:15:00 Source: bleepingcomputer
Microsoft announced the configuration baseline settings draft release for Windows 10 version 1903 (19H1) and for Windows Server version 1903, as well as the intention to drop password expiration policies starting with the Windows 10 May 2019 Update. [...]
Oops. 228K Danish Passports Have Swapped Fingerprint Data
Security - Posted On:2019-04-24 03:44:58 Source: bleepingcomputer
In a big oops, over 200,000 Danish passports were printed with the user's fingerprint's mistakenly swapped between the left and right hand. [...]
Chrome 74 Released with 39 Security Fixes and New Features
Security - Posted On:2019-04-23 20:29:59 Source: bleepingcomputer
Google has released Chrome 74 to the Stable desktop channel, which makes it available now for everyone to download. This version fixes numerous security vulnerabilities and adds new features such as support for reduced motion preferences and feature policy updates. [...]
Windows 10 May 2019 Update to Be Blocked If Using USB Drives
Security - Posted On:2019-04-23 18:44:59 Source: bleepingcomputer
Microsoft will block upgrades to the Windows 10 May 2019 Update if external media such as a USB device or SD card is attached to the computer. This is being done as USB devices can have their drive letters reassigned during the upgrade. [...]
DNSpionage Drops New Karkoff Malware, Cherry-Picks Its Victims
Security - Posted On:2019-04-23 15:30:00 Source: bleepingcomputer
The DNSpionage malware campaign has added a new reconnaissance stage showing that the attackers have become more picky with their targets, as well as a new .NET-based malware dubbed Karkoff and designed to allow them to execute code remotely on compromised hosts. [...]
Microsoft Not Giving Up on Classic Windows Paint Yet
Security - Posted On:2019-04-23 14:15:00 Source: bleepingcomputer
Microsoft Paint fans around the world can breathe a sigh of relief as Microsoft has decided to give it a stay of execution for at least the upcoming Windows 10 version 1903. [...]
Cybercrime's Total Earnings Skyrocketed to $2.7 Billion Says the FBI
Security - Posted On:2019-04-23 13:15:00 Source: bleepingcomputer
FBI's Internet Crime Complaint Center (IC3) published its 2018 Internet Crime Report which shows that cybercrime was behind $2,7 billion in total losses during 2018 as shown by 351,936 complaints received during the last year. [...]
Source Code for Carbanak Backdoor Shared with Larger Infosec Community
Security - Posted On:2019-04-23 12:15:01 Source: bleepingcomputer
For the past two years, the source code for the Carbanak banking malware has been sitting on VirusTotal scanning platform, available for any researcher that recognized it. [...]
Malware Hosted in Google Sites Sends Data to MySQL Server
Security - Posted On:2019-04-23 12:15:01 Source: bleepingcomputer
Security researchers found malware hosted on the Google Sites platform for building websites. The threat is a dropper for an information stealer that sends data to a MySQL server controlled by the attacker. [...]
ShadowHammer Targets Multiple Companies, ASUS Just One of Them
Security - Posted On:2019-04-23 09:44:57 Source: bleepingcomputer
ASUS was not the only company targeted by supply-chain attacks during the ShadowHammer hacking operation as discovered by Kaspersky, with at least six other organizations having been infiltrated by the attackers. [...]
Windows April Updates Also Have Problems with Mcafee Software
Security - Posted On:2019-04-22 18:29:59 Source: bleepingcomputer
With the release of the Microsoft April 2019 Patch Tuesday updates, some Windows users began to discover that Windows 7 and 8.1 was suddenly booting slower or would freeze. It was determined that this was due to conflicts with antivirus software such as Sophos, Avast, AVG, and now McAfee. [...]
Microsoft Windows Defender ATP APIs Now Generally Available
Security - Posted On:2019-04-22 17:15:00 Source: bleepingcomputer
Microsoft announced the general availability of the Windows Defender Advanced Threat Protection (ATP) programmatic application programming interface (API) which allows customers to create their custom apps using Microsoft Defender ATP's capabilities. [...]
Windows 7 Now Showing End of Support Warnings
Security - Posted On:2019-04-22 16:45:00 Source: bleepingcomputer
Microsoft has started to display alerts in Windows 7 stating that the operating system will reach end of support on January 14, 2020. This alert links to a page that then recommends users upgrade to Windows 10. [...]
Bodybuilding.com Security Breach, All Customer Passwords Reset
Security - Posted On:2019-04-22 15:45:00 Source: bleepingcomputer
Bodybuilding.com fitness and bodybuilding fan website notified its customers of a security breach detected during February 2019 which was the direct result of a phishing email received back in July 2018. [...]
Office 365 Custom Rules to Block Azure Blob Storage Phishing Attacks
Security - Posted On:2019-04-22 12:15:00 Source: bleepingcomputer
Phishing attacks which use Microsoft's Azure Blob Storage for hosting their landing pages to take advantage of windows.net subdomains' valid Microsoft SSL certificates can easily be blocked using custom Office 365 rules. [...]
Medical Information of Almost 150K Rehab Patients Exposed
Security - Posted On:2019-04-22 12:15:00 Source: bleepingcomputer
Over 4.91 million documents containing personally identifiable information (PII) of addiction rehab patients were exposed by a misconfigured ElasticSearch database publicly accessible for more than two years, from mid 2016 to late 2018. [...]
Microsoft Discontinues Windows 10 Sets Tabbed Window Feature
Security - Posted On:2019-04-21 14:30:01 Source: bleepingcomputer
The much anticipated Windows 10 tabbed window feature called Sets has been discontinued according to a tweet from a Microsoft senior project manager. [...]
Google Chrome is Testing a New Extension Menu
Security - Posted On:2019-04-21 13:30:05 Source: bleepingcomputer
In order to provide better access to extensions and a less cluttered interface, Google is testing a new Google Chrome extension menu that is accessible from the toolbar. This menu will contain a drop down list of all installed extensions, which can be utilized by selecting their icon. [...]