Google Reducing Trust in Symantec Certificates Following Numerous Slip-Ups

Security - Posted On:2017-03-23 17:00:01 Source: bleepingcomputer

Google Chrome engineers announced today plans to gradually remove trust in old Symantec SSL certificates and intent to reduce the accepted validity period of newly issued Symantec certificates, following repeated slip-ups on the part of Symantec. [...]

Read More

New WikiLeaks Dump Provides Details on CIA's Mac and iPhone Hacking Tools

Security - Posted On:2017-03-23 16:00:00 Source: bleepingcomputer

WikiLeaks dumped 12 new documents today that provide a more in-depth look at the hacking techniques the CIA allegedly used to hack Apple devices, such as Macs and iPhones. [...]

Read More

This Security Expert Wants to Turn Defunct Online Stores into Malware Honeypots

Security - Posted On:2017-03-23 12:30:02 Source: bleepingcomputer

Willem de Groot, a Dutch security expert, is asking owners of defunct or soon-to-be-dead online stores to donate their domains so he can set up honeypots and track credit card stealing malware and other types of cyber-attacks on e-commerce targets. [...]

Read More

Bluetooth Bug Lets Burglars Disable Google Nest Cams

Security - Posted On:2017-03-23 10:44:58 Source: bleepingcomputer

Burglars can use a recently disclosed security flaw affecting several Google Nest cams to make vulnerable cameras go offline for approximately 60 to 90 seconds. The flaw can be exploited via the cameras' Bluetooth connection and can provide thieves with the time window they need to get close and break into a home unseen. [...]

Read More

SAP Infrastructure Could Be Used to Deploy Ransomware on Enterprise Networks

Security - Posted On:2017-03-23 08:59:58 Source: bleepingcomputer

A remote code execution flaw in the SAP Windows client opens the door for ransomware attacks targeting enterprises that rely on various SAP products to manage and keep track of their business operations. [...]

Read More

Word Document Spreads Macro Malware Targeting Both Windows and macOS

Security - Posted On:2017-03-23 06:29:58 Source: bleepingcomputer

After last month security researchers discovered the first-ever Word document spreading macro malware on macOS, last week, researchers from Fortinet spotted a Word document that contained macro scripts that distributed both Windows and macOS malware at the same time, depending on the OS it managed to infect. [...]

Read More

The Next Big Thing for Android Malware Is "Plugin Frameworks"

Security - Posted On:2017-03-22 19:00:00 Source: bleepingcomputer

Android malware is evolving, and a clear trend has become visible in the past six months, with several malware strains implementing their malicious behavior via plugin frameworks. [...]

Read More

Most Industrial Control Systems Get Infected with Malware by Accident

Security - Posted On:2017-03-22 12:15:01 Source: bleepingcomputer

The vast majority of malware incidents that take place at industrial facilities around the world are just accidental infections, albeit a very small number of targeted attacks have also been detected. [...]

Read More

Sneaky Lithuanian Crook Stole $100 Million from Two US Tech Companies

Security - Posted On:2017-03-22 09:59:57 Source: bleepingcomputer

A Lithuanian man swindled two US tech companies out of over $100 million after he tricked employees into wiring money to his own company's bank accounts. [...]

Read More

Malvertising Campaign on Adult Sites Spreads Ramnit Trojan

Security - Posted On:2017-03-22 08:44:57 Source: bleepingcomputer

Security researchers from Malwarebytes have discovered a new malvertising campaign targeting visitors of several adult websites, spreading the Ramnit trojan and focusing on users from Canada and the UK. [...]

Read More

Opera 44 Released with Support for Apple's Touch Bar

Security - Posted On:2017-03-22 06:29:58 Source: bleepingcomputer

Opera Software released today version 44 of the Opera web browser. This release's main feature is support for Apple's new Touch Bar display, which the company added for recent MacBook models. [...]

Read More

LastPass Bugs Allow Malicious Websites to Steal Passwords

Security - Posted On:2017-03-22 05:29:57 Source: bleepingcomputer

LastPass says it patched one of two separate bugs that affected its Chrome and Firefox browser extensions, which if exploited, would have allowed a third-party to extract passwords from users visiting a malicious website. [...]

Read More

New LLTP Ransomware Appears to be a Rewritten Venus Locker

Security - Posted On:2017-03-21 19:00:00 Source: bleepingcomputer

A new ransomware was discovered today by MalwareHunterTeam called LLTP Ransomware or LLTP Locker that is targeting Spanish speaking victims. On a closer look, this ransomware appears to be a rewritten version of the VenusLocker ransomware. [...]

Read More

Chinese Crooks Use Fake Cellular Telephony Towers to Spread Android Malware

Security - Posted On:2017-03-21 18:15:00 Source: bleepingcomputer

Malware authors in China are using fake base transceiver stations (BTSs), which is equipment usually installed on cellular telephone towers, to send spoofed SMS messages that contain links to Android malware. [...]

Read More

New Attack Uses Microsoft's Application Verifier to Hijack Antivirus Software

Security - Posted On:2017-03-21 16:00:00 Source: bleepingcomputer

A new technique named DoubleAgent, discovered by security researchers from Cybellum, allows an attacker to hijack security products and make them take malicious actions. [...]

Read More

Spam Sent by Necurs Botnet Is Trying & Succeeding in Altering Stock Market Prices

Security - Posted On:2017-03-21 13:15:02 Source: bleepingcomputer

The Necurs botnet is back and active again, but instead of spreading the Locky ransomware or the Dridex banking trojan, its operators are engaged in a spam scheme that tries to boost a company's stock market price artificially. [...]

Read More

The Polski-Vortex-Flotera Ransomware Connection

Security - Posted On:2017-03-21 10:59:57 Source: bleepingcomputer

A malware author that loves Polish hip hop music appears to be behind the Polski, Vortex, and Flotera (spelled ?l?t???) ransomware families that have made a small number of victims between January and March this year [...]

Read More

Google to Remove Chrome "Close Other Tabs" & "Close Tabs to the Right" Options

Security - Posted On:2017-03-21 06:44:58 Source: bleepingcomputer

Chrome engineers are planning to remove two options from Chrome that allow users to quickly close a large number of tabs with just a few clicks. [...]

Read More

Developer Complains Firefox Labels His Site as Insecure, Hilarity Ensues

Security - Posted On:2017-03-21 05:44:58 Source: bleepingcomputer

The developer of Oil and Gas International (OGI), a Texas-based website for petroleum industry news, has filed a complaint on the Mozilla bug tracker, accusing Firefox of wrongly labeling his website as insecure. [...]

Read More

Big Surprise: Chinese PUPs Deliver Backdoored Drivers

Security - Posted On:2017-03-20 17:45:00 Source: bleepingcomputer

Drivers secretly installed via PUPs packages for Chinese software contain backdoors enabling a third-party to load unsigned drivers or to execute code with higher privileges on a Windows machine. [...]

Read More