Category: BleepingComputer

The infamous blue screen of death (BSOD) on computers belonging to a company in the medical tech sector was the tell for a malware infection that spread across more than half the network. […]   Advertise on IT Security News.…

Read more →

To enhance the privacy of its users and reduce the complexity of updating User-Agent strings, Google Chrome plans to move to a new system that web sites can use to identify information about their visitors. […]   Advertise on IT Security…

Read more →

Intel patched six security vulnerabilities during the January 2020 Patch Tuesday, including a high severity vulnerability in VTune and a bug affecting the Intel Processor Graphics drivers for Windows and Linux. […]   Advertise on IT Security News. Read the…

Read more →

Microsoft released Windows Terminal Preview v.08 today and with it comes useful improvements that include a console search feature, tab sizing, and a new retro option that makes consoles look like an old CRT. […]   Advertise on IT Security News.…

Read more →

The U.S. National Security Agency (NSA) started a new chapter after discovering and reporting to Microsoft a vulnerability tracked as CVE-2020-0601 and impacting Windows 10 and Windows Server systems. […]   Advertise on IT Security News. Read the complete article:…

Read more →

Windows 7 has just received its last set of security updates. After today, Windows 7 won’t receive any security or non-security updates from Microsoft, and it is now considered an unsupported operating system. […]   Advertise on IT Security News.…

Read more →

Today is Microsoft’s January 2020 Patch Tuesday and also the Windows 7 end of life. This is going to be a stressful day for your Windows administrators, so be nice! […]   Advertise on IT Security News. Read the complete…

Read more →

Microsoft patched a spoofing vulnerability present in the Windows usermode cryptographic library, CRYPT32.DLL, on Windows 10, Windows Server 2016, and Windows Server 2019 systems. […]   Advertise on IT Security News. Read the complete article: Microsoft Fixes Windows CryptoAPI Spoofing Flaw Reported…

Read more →

Windows 10’s January 2020 cumulative updates are now rolling out with important fixes for Windows 10 November 2019 Update, May 2019 Update, and October 2018 Update. […]   Advertise on IT Security News. Read the complete article: Windows 10 Cumulative Updates KB4528760…

Read more →

A critical authentication bypass vulnerability allows anyone to log in as an administrator user on WordPress sites running an affected version of the InfiniteWP Client because of logical mistakes in the code. […]   Advertise on IT Security News. Read the complete…

Read more →

Adobe has released its monthly security updates that fix vulnerabilities in Adobe Experience Manager and Adobe Illustrator CC. All users are advised to install the applicable updates as soon as possible to resolve these vulnerabilities. […]   Advertise on IT…

Read more →

Pretending to be the Permanent Mission of Norway, the Emotet operators performed a targeted phishing attack against email addresses associated with users at the United Nations. […]   Advertise on IT Security News. Read the complete article: United Nations Targeted…

Read more →

The Ryuk Ransomware uses the Wake-on-Lan feature to turn on powered off devices on a compromised network to have greater success encrypting them. […]   Advertise on IT Security News. Read the complete article: Ryuk Ransomware Uses Wake-on-Lan To Encrypt Offline…

Read more →

It’s the end of an era: Windows 7 will reach end of support tomorrow, on January 14, a decade after its initial release, with Microsoft to no longer provide users with software updates and security updates or fixes. […]  …

Read more →

Microsoft will continue to support the new Microsoft Edge in Windows 7 even after the operating system reaches the end of life tomorrow. […]   Advertise on IT Security News. Read the complete article: Microsoft to Support the New Edge…

Read more →

DHS CISA released a public domain tool designed to help security staff to test if their organizations are vulnerable to ongoing attacks that might target the CVE-2019-19781 security flaw impacting the Citrix Application Delivery Controller (NetScaler ADC) and Citrix Gateway (NetScaler Gateway) products.…

Read more →

A group tracked as Ancient Tortoise is targeting accounts receivable specialists tricking them into sending over aging reports and thus collecting info on customers they can scam in later attack stages. […]   Advertise on IT Security News. Read the complete article: BEC…

Read more →

The Nemty Ransomware has outlined plans to create a blog that will be used to publish stolen data for ransomware victims who refuse to pay the ransom. […]   Advertise on IT Security News. Read the complete article: Nemty Ransomware to…

Read more →

After almost a three-week holiday vacation, the Emotet trojan is back and targeting the over eighty countries with malicious spam campaigns.  […]   Advertise on IT Security News. Read the complete article: Emotet Malware Restarts Spam Attacks After Holiday Break

Read more →

An Android banking Trojan dubbed Faketoken has recently been observed by security researchers while draining its victims’ accounts to fuel offensive mass text campaigns targeting mobile devices from all over the world. […]   Advertise on IT Security News. Read the complete…

Read more →

With the Windows 7 end of life fast approaching, users need to decide whether they want to upgrade them to Windows 10 or get a new PC. For now, users can still use a method to upgrade their Windows 7…

Read more →

For the first time, the operators behind the Sodinokibi Ransomware have released files stolen from one of their victims because a ransom was not paid in time. […]   Advertise on IT Security News. Read the complete article: Sodinokibi Ransomware Publishes…

Read more →

An Android malware strain camouflaged as a system app is used by threat actors to disable the Google Play Protect service, generate fake reviews, install malicious apps, show ads, and more. […]   Advertise on IT Security News. Read the…

Read more →

This week we have seen new ransomware operators targeting businesses, stolen data published, and the Sodinokibi Ransomware being confirmed as behind the Travelex cyber attack. […]   Advertise on IT Security News. Read the complete article: The Week in Ransomware – January…

Read more →

Numerous working exploits for the Citrix ADC (NetScaler) CVE-2019-1978 vulnerability are finally here and have been publicly posted in numerous locations. There is no patch available for this vulnerability, but Citrix has provided mitigations, which should be applied now! […]…

Read more →

Attackers have compromised a website collecting donations for the victims of the Australia bushfires and injected a malicious script that steals the payment information of the donors. […]   Advertise on IT Security News. Read the complete article: Australia Bushfire Donors…

Read more →

The Maze Ransomware operators have released an additional 14GB of files that they claim were stolen from one of their victims for not paying a ransomware demand. […]   Advertise on IT Security News. Read the complete article: Maze Ransomware…

Read more →

A malicious ad campaign is underway in Google Search results that lead users to fake Amazon support sites and tech support scams. […]   Advertise on IT Security News. Read the complete article: Beware of Amazon Prime Support Scams in Google…

Read more →

Albany International Airport staff announced that the New York airport’s administrative servers were hit by Sodinokibi Ransomware following a cyberattack that took place over Christmas. […]   Advertise on IT Security News. Read the complete article: Sodinikibi Ransomware Hits New York…

Read more →

The US Cybersecurity and Infrastructure Security Agency (CISA) today alerted organizations to patch their Pulse Secure VPN servers as a defense against ongoing attacks trying to exploit a known remote code execution (RCE) vulnerability. […]   Advertise on IT Security News. Read the…

Read more →

Distractionware has released the source code for their VVVVVV platform game to mark its 10th anniversary. You can now download the game engine to make your own modifications or get a better understanding of how the game works. […]   Advertise…

Read more →

Microsoft introduced new secure default settings dubbed ‘Security Defaults’ to Azure Active Directory (Azure AD), now available for all license levels, including trial tenants. […]   Advertise on IT Security News. Read the complete article: Microsoft Enables Security Defaults in…

Read more →

Multiple European websites for the Perricone MD anti-aging skin-care brand have been compromised with scripts that steal customer payment card info when making a purchase. […]   Advertise on IT Security News. Read the complete article: Card-Stealing Scripts Infect Perricone’s…

Read more →

Google has officially stated that they will continue to support the Chrome browser in Windows 7 to give businesses more time to migrate to Windows 10. […]   Advertise on IT Security News. Read the complete article: Google Chrome Will Support…

Read more →

Like moths to a flame, new ransomware targeting businesses keep appearing every day as their enticed by the prospects of million-dollar ransom payments. An example of this is a new ransomware called Ako that is targeting the entire network rather…

Read more →

Roughly 1,700 applications infected with the Joker Android malware (also known as Bread) have been detected and removed by Google’s Play Protect from the Play Store since the company started tracking it in early 2017. […]   Advertise on IT Security…

Read more →

The KDE Community wants Windows 7 users to migrate to the Plasma desktop environment after Microsoft’s 10-year-old OS will reach end of support next week and stops receiving security and bug fixes. […]   Advertise on IT Security News. Read…

Read more →

Microsoft says that drivers requiring approval will no longer be released during and around Windows 10 feature update rollouts and Patch Tuesdays (Monthly Quality and Security updates issued on the second Tuesday of each month). […]   Advertise on IT…

Read more →

The attackers behind the Sodinokibi Ransomware are applying pressure on Travelex to pay a multi-million dollar ransom by stating they will release or sell stolen data that allegedly contains customer’s personal information. […]   Advertise on IT Security News. Read the complete…

Read more →

Instead of relying on premade and well-known toolkits, the threat actors behind the TrickBot trojan decided to develop a private post-exploitation toolkit called PowerTrick to spread malware laterally throughout a network. […]   Advertise on IT Security News. Read the complete…

Read more →

The number of routers infected with coin miners dropped by 78% in countries of the ASEAN (Association of Southeast Asian Nations) region following a five-month-long operation coordinated by the INTERPOL. […]   Advertise on IT Security News. Read the complete article:…

Read more →

Security researchers found several vulnerabilities within TikTok’s infrastructure that made it possible for potential attackers to hijack accounts to manipulate users’ videos and steal their personal information. […]   Advertise on IT Security News. Read the complete article: TikTok Flaws Allowed Hackers…

Read more →

Security researchers have observed ongoing scans for Citrix Application Delivery Controller (NetScaler ADC) and Citrix Gateway (NetScaler Gateway) servers vulnerable to attacks exploiting CVE-2019-19781 during the last week. […]   Advertise on IT Security News. Read the complete article: Attackers Are…

Read more →

Mozilla released Firefox 72.0.1 and Firefox ESR 68.4.1 to patch a critical and actively exploited severity vulnerability that could potentially allow attackers to execute code or trigger crashes on machines running vulnerable Firefox versions. […]   Advertise on IT Security News. Read…

Read more →

Since network administrators didn’t already have enough on their plate, they now have to worry about a new ransomware called SNAKE that is targeting their networks and aiming to encrypt all of the devices connected to it […]   Advertise on…

Read more →

Microsoft has released Windows 10 Insider Preview Build 19541 to Insiders in the Fast ring, which now allows you to list the architecture of processes listed in Task Manager and Windows will now notify you when an application is using location…

Read more →

The Tails Project released a new version of the security-focused Tails Linux distribution and advises users to upgrade as soon as possible to fix multiple security vulnerabilities impacting the previous Tails 4.1.1 version. […]   Advertise on IT Security News. Read the complete…

Read more →

Microsoft released the January 2020 non-security Microsoft Office updates that come with crash and memory leak fixes, as well as performance and stability improvements for Windows Installer (MSI) editions of Office 2016. […]   Advertise on IT Security News. Read the complete…

Read more →

The personal and medical information of 49,351 patients was exposed following a security incident involving two employees’ email accounts as disclosed by Minnesota-based Alomere Health. […]   Advertise on IT Security News. Read the complete article: Medical Info of Roughly 50K Exposed…

Read more →

A cryptomining botnet has been attacking unpatched routers since at least May 2019. It exploits a small set of critical vulnerabilities and targets multiple CPU architectures. […]   Advertise on IT Security News. Read the complete article: Go-Based LiquorBot Adapts…

Read more →

An attacker is attempting to take advantage of the recent warnings about possible Iranian cyberattacks by using it as a theme for a phishing attack that tries to collect Microsoft login credentials. […]   Advertise on IT Security News. Read the…

Read more →

Mozilla has officially released Firefox 72 for Windows, Mac, and Linux and with it comes hidden browser notification prompts and fingerprinter blocking enabled by default in Enhanced Tracking Protection. […]   Advertise on IT Security News. Read the complete article: Firefox…

Read more →

The website of popular photography and imaging retailer Focus Camera got hacked late last year by MageCart attackers to inject malicious code that stole customer payment card details. […]   Advertise on IT Security News. Read the complete article: MageCart…

Read more →

Scammers have taken an old browser scam and invigorated it using a clever and new tactic that takes advantage of your web browser’s full-screen mode to show a fake Windows 10 desktop stating your computer is locked. […]   Advertise…

Read more →

The Federal Trade Commission (FTC) finalized a settlement with a Utah-based tech company that got hacked and had the personal info of over a million clients stolen following a series of more than 20 undetected network intrusions. […]   Advertise…

Read more →

At CES 2020, Nvidia has released GeForce Game Ready Driver 441.87 and with it comes a few new features, including one that allows you to set a maximum frame rate that will be used by 3D games and applications. […]   Advertise on IT…

Read more →

A former corporate executive for integrated marketing solutions firm Rakuten Marketing swindled roughly $6 million between August 2015 and at least May 2019 using a shell company named Interactive Systems. […]   Advertise on IT Security News. Read the complete article: IT Executive Steals $6…

Read more →

It’s been more than six days since a cyber attack took down the services of the international foreign currency exchange company Travelex and BleepingComputer was able to confirm that the company systems were infected with Sodinokibi ransomware. […]   Advertise…

Read more →

The U.S. Department of Homeland Security (DHS) warned in a terrorism threat alert issued through the National Terrorism Advisory System (NTAS) that potential cyberattacks carried out by Iranian-backed actors against the U.S. have the potential to disrupt critical infrastructure. […]…

Read more →

Edge will not be tied to Windows 10 releases and updates will be shipped regularly through its own channels. Microsoft also plans to use ‘Experimentation and Configuration Service (ECS)’ in Edge to request and receive different kinds of configurations, feature…

Read more →

The Kali Linux distribution is going to switch to a new security model by defaulting to a non-root user starting with the upcoming 2020.1 release. […]   Advertise on IT Security News. Read the complete article: Kali Linux to Default to…

Read more →

A USB cable and some scripting can save sensitive data on your laptop from grab-and-go thieving situations when working in a public place. […]   Advertise on IT Security News. Read the complete article: BusKill Cable Starts a Self-Destruct Routine…

Read more →

Linux users who are running Battlefield V under Wine with DXVK are being permanently banned from Electronic Art’s Battlefield V because the anti-cheat system is mistakenly detecting them as cheating. […]   Advertise on IT Security News. Read the complete article:…

Read more →

Normally ransomware activity slows down over the December break, but this year was an exception with a quite a few interesting, and sad, stories such as FBI alerts being issued, companies being shut down, and organizations being encrypted by a…

Read more →

The Clop Ransomware continues to evolve with a new and integrated process killer that targets some interesting processes belonging to Windows 10 apps, text editors, programming IDEs and languages, and office applications. […]   Advertise on IT Security News. Read…

Read more →

Several major Microsoft products will reach their end of support during 2020, with Office 2010, Visual Studio 2010, Windows 7, Windows Server 2008 (including 2008R2), and multiple Windows 10 versions including 1803 and 1903 being some of the most important…

Read more →

Organizations in the private sector received an alert from the F.B.I. about operators of the Maze ransomware focusing on companies in the U.S. to encrypt information on their systems after stealing it first. […]   Advertise on IT Security News.…

Read more →

Christopher C. Krebs, Director of Cybersecurity and Infrastructure Security Agency issued a warning about a potential new wave of Iranian cyber-attacks targeting U.S. assets after Maj. Gen. Qassim Suleimani was killed by a U.S. airstrike at the Baghdad airport in Iraq. […]  …

Read more →

Colorado Town of Erie lost more than $1 million to a business email compromise scam (BEC) that ended with the town’s employees sending the funds to a bank account controlled by scammers. […]   Advertise on IT Security News. Read…

Read more →

The anonymous operators behind the Maze Ransomware are being sued by a victim for illegally accessing their network, stealing data, encrypting computers, and publishing the stolen data after a ransom was not paid.  […]   Advertise on IT Security News. Read…

Read more →

The anonymous operators behind the Maze Ransomware are being sued by a victim for illegally accessing their network, stealing data, encrypting computers, and publishing the stolen data after a ransom was not paid.  […]   Advertise on IT Security News. Read…

Read more →

As of January 1st, 2020, Python 2.7 has officially reached the end of life and will no longer receive security updates, bug fixes, or other improvements going forward. […]   Advertise on IT Security News. Read the complete article: Python…

Read more →

Landry’s, a U.S. restaurant chain and property owner has disclosed that they were infected with a point-of-sale (POS) malware that allowed attackers to steal customer’s credit card information. […]   Advertise on IT Security News. Read the complete article: Popular U.S.…

Read more →

2019 has come and gone and with it were many stories about new security improvements, data breaches, Windows improvements and bugs, vulnerabilities, fun software, and a wide range of interesting topics. This article lists the ten most viewed stories at…

Read more →

To celebrate the holidays, ransomware operators are providing discounts or season’s greetings to entice victims into paying a ransom demand. […]   Advertise on IT Security News. Read the complete article: Ransomware Attackers Offer Holiday Discounts and Greetings

Read more →

The Poloniex cryptocurrency trading platform has reset some of their user’s passwords after a list of alleged username and password combinations was found circulating on Twitter. […]   Advertise on IT Security News. Read the complete article: Poloniex Forces Password Reset After Data Leak…

Read more →