Recent Posts

Pages: [1] 2 3 ... 10
Author:  Zeljka Zorz, Managing EditorMarch 19, 2019

Mirai, the infamous malware that turns Linux-based IoT devices into remotely controlled bots, has been updated to target new devices and device types.

Among these are LG SuperSign TVs (TV solutions meant to be installed in public areas and display information, images, video aimed at customers and employees) and WePresent WiPG-1000 Wireless Presentation systems, both of which are intended for use in business settings.

Full Article Here:
By Sergiu Gatlan

Two ongoing phishing campaigns are actively targeting Netflix and American Express (AMEX) customers to steal credit card and social security information as discovered by the Office 365 Threat Research team during the weekend.

As detailed by the Windows Defender Security Intelligence team on Twitter, "Two massive, still-active phishing campaigns targeting Netflix and AMEX emerged over the weekend, the Office 365 Threat Research team has discovered. Machine learning and detonation-based protections in Office 365 ATP protect customers both campaigns."

The phishing campaign targeting Naetflix clients redirects its victims to a realistic looking downloadable form designed to collect and exfiltrate credit card information (card number, expiration date, bank name, PIN, and security code) and billing information (name, e-mail, SSN, address, phone, and date of birth).

Full Article Here:

Author: Lindsey O'Donnell
March 19, 2019 10:53 am

When asked if the company plans to pay the ransom, its CFO said its main strategy is to use the backup data stored in the system.

Aluminum giant Norsk Hydro has fallen victim to a serious ransomware attack that has forced it to shut down or isolate several plants and send several more into manual mode, the company said on Tuesday morning.

Oslo, Norway-based Norsk Hydro, one of the world’s largest makers of aluminum, employs 35,000 people in up to 40 countries. The cyberattack, first detected by the company’s IT experts around midnight Norwegian time, has left the aluminum producer struggling to maintain operations despite shutting down some plants and going into manual mode for others.

Full Article Here:

By Ionut Arghire on March 19, 2019

A security researcher working with Google Project Zero has discovered a novel bug class that impacts Windows and some of its drivers.

Discovered by James Forshaw, the issue resides in the fact that some of the kernel mode drivers that Windows ships with do not perform all the necessary checks when handling specific requests, which could allow an attacker to escalate privileges.

Windows distinguishes between system calls by setting their PreviousMode fields to UserMode or KernelMode, to help determine if the arguments of the call are from a trusted or untrusted source.

This applies to the creation and opening of files as well, where kernel mode code can choose from various API functions, including some leading to I/O Manager internal function IopCreateFile. The thread’s PreviousMode is assigned to a specific variable to determine whether to check for valid parameters and buffers.

Full Article Here:
Security & Technology News / The Case of the Missing Data
« Last post by Antus67 on Today at 12:06:52 am »
Author: Mike McKee

The latest twist in the Equifax breach has serious implications for organizations.

When the Equifax breach — one of the largest breaches of all time — went public nearly a year-and-a-half ago, it was widely assumed that the data had been stolen for nefarious financial purposes. But as the resulting frenzy of consumer credit freezes and monitoring programs spread, investigators who were tracking the breach behind the scenes made an interesting discovery.

The data had up and vanished.

This was surprising because if the data had, in fact, been stolen with the ultimate goal of committing financial fraud, experts would have expected it to be sold on the Dark Web. At the very least, they would have expected to see a wave of fraudulent credit transactions.

Full Article Here:
VoodooShield / Re: VoodooShield v4 STABLE Thread
« Last post by HempOil on March 19, 2019, 08:34:11 pm »
Somehow I missed the post with the link to beta2. I just performed the upgrade from 4.99 beta to 4.99 beta2. No issues to report.
General Software / Re: Mozilla Firefox Quantum
« Last post by hayc59 on March 19, 2019, 07:25:47 pm »
Firefox v66.0 Released
Released: March 19 2019

• Mozilla sent Firefox Version 66.0 to the release channel today. 
The update addresses 21 CVE's of which five (5) are rated critical, seven (7) high, five (5) moderate and four (4) low in severity.

Firefox ESR has been updated to Version 60.6.

Direct Download: Firefox 66.0 for Windows | Fully Localized Versions
Direct Download: Firefox 64-bit
Download Mobile: Android & iSO
More Info: Release Notes
More Info: Security Advisories
General Software / Re: Paint.NET
« Last post by hayc59 on March 19, 2019, 06:45:53 pm »
Paint.Net v4.1.6 Released
March 18, 2019

Whats New
  • New: Completely redone high-res icons throughout the app which match the Microsoft Office style guidelines, with native support for up to 400% scaling (384 DPI)
  • New: File -> Save All (thanks [plain]@Bruce[/plain] Bowyer-Smyth!)
  • New: Turkish language
  • New: Move Layer commands are now present in the Layers menu, not just on the Layers window
  • New: Layers -> Rotate 180 (thanks @null54!)
  • New: Plugins can now use the UIScaleFactor class, which simplifies making decisions about DPI and scaling
  • Improved: Image thumbnail list at the top of the main window now reacts to horizontal mouse wheel or trackpad swiping
  • Improved: The Text Tool's "Font Size Metric" button now has a tooltip explaining it
  • Improved: When many images are open, Paint.NET now closes significantly faster (thanks [USER=11162]@bruce[/USER] Bowyer-Smyth for the fix!)
  • Improved: File -> Open Recent now has up to 10 images (up from 8 )
  • Changed: Ctrl+Shift+F6 and +F7 will now also reset the floating window sizes for History and Layers, respectively (same if you Ctrl+Shift+Click on the button at the top-right of the main window)
  • Changed: (for plugins) EffectFlags.SingleRenderCall is deprecated. Plugins should use the new EffectRenderingSchedule.None option instead.
  • Changed: Settings -> Plugin Errors now shows up even if there are no plugin errors. This ensures consistency, especially with the newly asynchronous nature of plugin loading (otherwise there's no way to distinguish "no errors" from "not done loading plugins").
  • Fixed: Items in the File -> Open Recent menu will no longer get bigger or smaller when moving between monitors with different DPIs
  • Fixed: An icon handle was being leaked every time a dialog was opened (thanks @null54 for the fix!)
  • Fixed a crash when running GPU effects (e.g. Black & White) on very large, very tall images
  • Fixed: "Bad" plugins can no longer ruin the undo system by rendering outside of the selection (thanks @BoltBait for helping out with this!)
Download: Paint.NET
By Lawrence Abrams

A new sextortion email campaign has started over the weekend that pretends to be from the CIA and states that you are involved in an investigation into the distribution and storage or child pornography. The scammers then demand $10,000 in bitcoin or you will be arrested on April 8th, 2019 as part of an international law enforcement operation.

The emails that are being sent have a email subject of "Central Intelligence Agency - Case #49237856", where the number is different for each email. Attached to the emails may be numerous images of the CIA seal.

Full Article Here:
Author:  Help Net SecurityMarch 18, 2019

20 percent of Americans suffer from security fatigue and don’t trust anyone to protect their personal data. As a result, some people feel they need to take matters into their own hands or at least work with organizations that give them a greater sense of control.

Findings from the nCipher Security survey of more than 1,000 American adults reveal many people want more control over their personal data privacy. Most want tighter controls of how others handle and safeguard their personal data.

Full Article Here:
Pages: [1] 2 3 ... 10