Apple Updates XProtect to Block 'Windows' Malware on Macs

Security - Posted On:2019-04-24 16:45:00 Source: bleepingcomputer

Apple's XProtect security software has been silently updated to include signatures that detect Windows PE files and Windows executables that can run on Macs by utilizing the Mono .NET framework. [...]

Read More

Qbot Malware Dropped via Context-Aware Phishing Campaign

Security - Posted On:2019-04-24 11:15:00 Source: bleepingcomputer

A phishing campaign dropping the Qbot banking Trojan with the help of delivery emails camouflaging as parts of previous conversations was spotted during late March 2019 by the JASK Special Operations team. [...]

Read More

Windows 10 1903 Gets Rid of Password Expiration Policies

Security - Posted On:2019-04-24 11:15:00 Source: bleepingcomputer

Microsoft announced the configuration baseline settings draft release for Windows 10 version 1903 (19H1) and for Windows Server version 1903, as well as the intention to drop password expiration policies starting with the Windows 10 May 2019 Update. [...]

Read More

Oops. 228K Danish Passports Have Swapped Fingerprint Data

Security - Posted On:2019-04-24 03:44:58 Source: bleepingcomputer

In a big oops, over 200,000 Danish passports were printed with the user's fingerprint's mistakenly swapped between the left and right hand. [...]

Read More

Chrome 74 Released with 39 Security Fixes and New Features

Security - Posted On:2019-04-23 20:29:59 Source: bleepingcomputer

Google has released Chrome 74 to the Stable desktop channel, which makes it available now for everyone to download. This version fixes numerous security vulnerabilities and adds new features such as support for reduced motion preferences and feature policy updates. [...]

Read More

Windows 10 May 2019 Update to Be Blocked If Using USB Drives

Security - Posted On:2019-04-23 18:44:59 Source: bleepingcomputer

Microsoft will block upgrades to the Windows 10 May 2019 Update if external media such as a USB device or SD card is attached to the computer. This is being done as USB devices can have their drive letters reassigned during the upgrade. [...]

Read More

DNSpionage Drops New Karkoff Malware, Cherry-Picks Its Victims

Security - Posted On:2019-04-23 15:30:00 Source: bleepingcomputer

The DNSpionage malware campaign has added a new reconnaissance stage showing that the attackers have become more picky with their targets, as well as a new .NET-based malware dubbed Karkoff and designed to allow them to execute code remotely on compromised hosts. [...]

Read More

Microsoft Not Giving Up on Classic Windows Paint Yet

Security - Posted On:2019-04-23 14:15:00 Source: bleepingcomputer

Microsoft Paint fans around the world can breathe a sigh of relief as Microsoft has decided to give it a stay of execution for at least the upcoming Windows 10 version 1903. [...]

Read More

Cybercrime's Total Earnings Skyrocketed to $2.7 Billion Says the FBI

Security - Posted On:2019-04-23 13:15:00 Source: bleepingcomputer

FBI's Internet Crime Complaint Center (IC3) published its 2018 Internet Crime Report which shows that cybercrime was behind $2,7 billion in total losses during 2018 as shown by 351,936 complaints received during the last year. [...]

Read More

Source Code for Carbanak Backdoor Shared with Larger Infosec Community

Security - Posted On:2019-04-23 12:15:01 Source: bleepingcomputer

For the past two years, the source code for the Carbanak banking malware has been sitting on VirusTotal scanning platform, available for any researcher that recognized it. [...]

Read More

Malware Hosted in Google Sites Sends Data to MySQL Server

Security - Posted On:2019-04-23 12:15:01 Source: bleepingcomputer

Security researchers found malware hosted on the Google Sites platform for building websites. The threat is a dropper for an information stealer that sends data to a MySQL server controlled by the attacker. [...]

Read More

ShadowHammer Targets Multiple Companies, ASUS Just One of Them

Security - Posted On:2019-04-23 09:44:57 Source: bleepingcomputer

ASUS was not the only company targeted by supply-chain attacks during the ShadowHammer hacking operation as discovered by Kaspersky, with at least six other organizations having been infiltrated by the attackers. [...]

Read More

Windows April Updates Also Have Problems with Mcafee Software

Security - Posted On:2019-04-22 18:29:59 Source: bleepingcomputer

With the release of the Microsoft April 2019 Patch Tuesday updates, some Windows users began to discover that Windows 7 and 8.1 was suddenly booting slower or would freeze. It was determined that this was due to conflicts with antivirus software such as Sophos, Avast, AVG, and now McAfee. [...]

Read More

Microsoft Windows Defender ATP APIs Now Generally Available

Security - Posted On:2019-04-22 17:15:00 Source: bleepingcomputer

Microsoft announced the general availability of the Windows Defender Advanced Threat Protection (ATP) programmatic application programming interface (API) which allows customers to create their custom apps using Microsoft Defender ATP's capabilities. [...]

Read More

Windows 7 Now Showing End of Support Warnings

Security - Posted On:2019-04-22 16:45:00 Source: bleepingcomputer

Microsoft has started to display alerts in Windows 7 stating that the operating system will reach end of support on January 14, 2020. This alert links to a page that then recommends users upgrade to Windows 10. [...]

Read More

Bodybuilding.com Security Breach, All Customer Passwords Reset

Security - Posted On:2019-04-22 15:45:00 Source: bleepingcomputer

Bodybuilding.com fitness and bodybuilding fan website notified its customers of a security breach detected during February 2019 which was the direct result of a phishing email received back in July 2018. [...]

Read More

Office 365 Custom Rules to Block Azure Blob Storage Phishing Attacks

Security - Posted On:2019-04-22 12:15:00 Source: bleepingcomputer

Phishing attacks which use Microsoft's Azure Blob Storage for hosting their landing pages to take advantage of windows.net subdomains' valid Microsoft SSL certificates can easily be blocked using custom Office 365 rules. [...]

Read More

Medical Information of Almost 150K Rehab Patients Exposed

Security - Posted On:2019-04-22 12:15:00 Source: bleepingcomputer

Over 4.91 million documents containing personally identifiable information (PII) of addiction rehab patients were exposed by a misconfigured ElasticSearch database publicly accessible for more than two years, from mid 2016 to late 2018. [...]

Read More

Microsoft Discontinues Windows 10 Sets Tabbed Window Feature

Security - Posted On:2019-04-21 14:30:01 Source: bleepingcomputer

The much anticipated Windows 10 tabbed window feature called Sets has been discontinued according to a tweet from a Microsoft senior project manager. [...]

Read More

Google Chrome is Testing a New Extension Menu

Security - Posted On:2019-04-21 13:30:05 Source: bleepingcomputer

In order to provide better access to extensions and a less cluttered interface, Google is testing a new Google Chrome extension menu that is accessible from the toolbar. This menu will contain a drop down list of all installed extensions, which can be utilized by selecting their icon. [...]

Read More