Recent Posts

Pages: [1] 2 3 ... 10
1
Author:  Lawrence Abrams



The Tor Project has raised $86,000 for a Bug Bash Fund that will be used to pay developers to quickly fix critical bugs such as fulor privacy issues that leak personal information about a Tor user.

Last month, the Tor Project announced that any donations made to the organization in August 2019 would be added to a Bug Bash Fund that would be used to pay for developers to fix critical bugs that come up.

full article here:https://www.bleepingcomputer.com/news/security/tors-bug-bash-fund-raises-86k-to-fix-critical-issues/

2
Author: Mayank Parmar



The latest version of the Microsoft Edge Dev browser now includes an experimental Extensions menu that offers a more organized way to manage the installed extensions in the browser. In order to use this feature, though, you will need to start Edge with special command line arguments, which we will describe in this article.

As Microsoft Edge is based on the Chromium browser, the same open-source platform that powers Google Chrome, Edge has access to a larger set of features including ones developed by Google engineers.

full article here:https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-gets-a-new-extensions-menu-heres-how-to-enable-it/
3
VoodooShield / Re: WhitelistCloud 1.00 beta
« Last post by simmerskool on September 15, 2019, 09:28:01 am »
Just curious... does this key have anything to do with WLC?

HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74B5BBCA-9666-439F-8C36-38B6AFA95AE3}

This got flagged by Windows Defender and there's not much new on this system.

I'm not seeing that rule on my win7 and also I have WLC firewall rules disabled since I'm currently running 3d-party fw, cruelcomodo.  So not much help, sorry.  :(
4
VoodooShield / Re: WhitelistCloud 1.00 beta
« Last post by Shmu26 on September 15, 2019, 06:51:53 am »
Dism-gui a much simpler tool does all I need.
What do you use it for?
5
Security & Technology News / Ohio Gamer Sentenced to 15 Months Prison in 'Swatting' Case
« Last post by Antus67 on September 15, 2019, 03:14:17 am »
Author: Associated Press on September 14, 2019

An Ohio gamer upset about a $1.50 bet while playing Call of Duty: WWII online was sentenced Friday to 15 months in prison for recruiting a prankster to make a bogus emergency call that resulted in the fatal shooting of a Kansas man by police.

Casey Viner, 19, of North College Hill, Ohio, also is restricted from gaming activity for two years while he is on supervised release after serving his prison term, U.S. District Judge Eric Melgren said in announcing the sentence.

full article here:https://www.securityweek.com/ohio-gamer-sentenced-15-months-prison-swatting-case
6
Security & Technology News / US Sanctions 3 Cyber Attack Groups Tied to DPRK
« Last post by Antus67 on September 15, 2019, 03:11:19 am »
Author: Dark Reading Staff

Lazarus Group, Bluenoroff, and Andariel were named and sanctioned by the US Treasury for ongoing attacks on financial systems.
Today, three North Korean state-sponsored malicious cyber groups were sanctioned by the U.S. government for their role in North Korea’s malicious cyber activity on critical infrastructure. Lazarus Group, Bluenoroff, and Andariel were identified as "agencies, instrumentalities, or controlled entities of the Government of North Korea" by the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) in documents announcing the sanctions.

full article here:https://www.darkreading.com/attacks-breaches/us-sanctions-3-cyber-attack-groups-tied-to-dprk/d/d-id/1335805
7
VoodooShield / Re: WhitelistCloud 1.00 beta
« Last post by Telos on September 14, 2019, 08:20:00 pm »
Just curious... does this key have anything to do with WLC?

HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74B5BBCA-9666-439F-8C36-38B6AFA95AE3}

This got flagged by Windows Defender and there's not much new on this system.
8
Auuthor: Ionut Ilascu



The U.S. Treasury signed sanctions against three hacking groups actively engaged in cyber operations meant to bring financial assets to the government of North Korea.

The groups are Lazarus, Bluenoroff, and Andariel, well-known in the security industry for cyber operations aimed at cyberespionage, data theft, monetary reward, and data destruction.

By signing the sanctions, the U.S. Treasury U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) puts a lock on all properties and financial assets owned by the three groups in the U.S. and prohibits all dealings involving these goods.

full article here;https://www.bleepingcomputer.com/news/security/north-korean-hackers-behind-wannacry-and-sony-hack-sanctioned-by-usa/
9
Security & Technology News / Sandboxie becomes freeware, soon-to-be open source
« Last post by Antus67 on September 14, 2019, 01:44:52 am »
Author:  Zeljka Zorz, Managing Editor
September 13, 2019

Sophos plans to open source Sandboxie, a relatively popular Windows utility that allows users to run applications in a sandbox. Until that happens, they’ve made the utility free.



Sandboxie creates a virtual container in which untrusted programs can be run or installed so that they can’t maliciously modify the underlying OS or data on the host machine.

full article here;https://www.helpnetsecurity.com/2019/09/13/sandboxie-windows-sandbox/
10
Author:
Tara Seals
September 13, 2019  12:06 pm



At every turn, the info-stealer uses legitimate services to get around normal email, endpoint and network defenses.

Facebook and YouTube profiles are at the heart of an ongoing phishing campaign spreading the Astaroth trojan, bent on the eventual exfiltration of sensitive information. The attack is sophisticated in that it uses normally trusted sources as cover for malicious activities – thus evading usually effective email and network security layers.

The attack starts with an .HTM file attached to an email, according to Aaron Riley, researcher at Cofense. He noted in an analysis this week that the emails come in three “flavors” – an invoice theme, a show ticket theme and a civil lawsuit theme.

full article here:https://threatpost.com/astaroth-spy-trojan-facebook-youtube/148327/
Pages: [1] 2 3 ... 10