The threat actors behind the SolarWinds attack could breach internal Microsoft accounts to view the source code for Microsoft products. […]
The post Microsoft: SolarWinds hackers accessed our source code appeared first on Secure Hunter Anti-Malware.
Flash Player will reach its end of life (EOL) on January 1, 2021, after always being a security risk to those who have used it over the years. […]
The post Adobe Flash Player is officially dead tomorrow appeared first on Secure Hunter Anti-Malware.
A data breach broker is selling the allegedly stolen user records for twenty-six companies on a hacker forum, BleepingComputer has learned. […]
The post Data breach broker selling user records stolen from 26 companies appeared first on Secure Hunter Anti-Malware.
Ticketmaster, a Live Nation subsidiary and a leading ticket distribution and sales company, was fined $10 million for illegally accessing the systems of competitor CrowdSurge using the credentials of one of its former employees. […]
The post Ticketmaster fined $10 million for breaking into rival’s systems appeared first on Secure Hunter Anti-Malware.
With the Flash Player officially reaching the end of life tomorrow, Adobe has started to display alerts on Windows computers recommending that users uninstall Flash Player. […]
The post Adobe now shows alerts in Windows 10 to uninstall Flash Player appeared first on Secure Hunter Anti-Malware.
T-Mobile has announced a data breach exposing customers’ proprietary network information (CPNI), including phone numbers and call records. […]
The post T-Mobile data breach exposed phone numbers, call records appeared first on Secure Hunter Anti-Malware.
The Cybersecurity and Infrastructure Security Agency (CISA) has ordered all US federal agencies to update the SolarWinds Orion platform to the latest version by the end of business hours on December 31, 2020. […]
The post DHS orders federal agencies to update SolarWinds Orion platform appeared first on Secure Hunter Anti-Malware.
The internal networks of Lithuania’s National Center for Public Health (NVSC) and several municipalities have been infected with Emotet malware following a large campaign targeting the country’s state institutions. […]
The post Emotet malware hits Lithuania’s National Public Health Center appeared first on Secure Hunter Anti-Malware.
A newly discovered and self-spreading Golang-based malware has been actively dropping XMRig cryptocurrency miners on Windows and Linux servers since early December. […]
The post New worm turns Windows, Linux servers into Monero miners appeared first on Secure Hunter Anti-Malware.
Cloud storage provider Wasabi suffered an outage after a domain used for storage endpoints was suspended for hosting malware. […]
The post Wasabi cloud storage service knocked offline for hosting malware appeared first on Secure Hunter Anti-Malware.
Weak credentials and login protections come with the risk of swatting for owners of connected devices with video and voice capabilities, warns the U.S. Federal Bureau of Investigation (FBI). […]
The post Swatters hijack smart home devices to watch emergency responders appeared first on Secure Hunter Anti-Malware.
Microsoft says that the end goal of the SolarWinds supply chain compromise was to pivot to the victims’ cloud assets after deploying the Sunburst/Solorigate backdoor on their local networks. […]
The post Microsoft: SolarWinds hackers’ goal was the victims’ cloud data appeared first on Secure Hunter Anti-Malware.
The Voyager cryptocurrency brokerage platform halted trading yesterday after suffering a cyberattack targeting their DNS configuration. […]
The post Voyager cryptocurrency broker halted trading due to cyberattack appeared first on Secure Hunter Anti-Malware.
The US Treasury Department’s Financial Crimes Enforcement Network (FinCEN) warned financial institutions of ransomware actively targeting vaccine research organizations. […]
The post US Treasury warns of ransomware targeting COVID-19 vaccine research appeared first on Secure Hunter Anti-Malware.
Japan’s Kawasaki Heavy Industries announced a security breach and potential data leak after unauthorized access to a Japanese company server from multiple overseas offices. […]
The post Kawasaki discloses security breach, potential data leak appeared first on Secure Hunter Anti-Malware.
German cruise line AIDA Cruises is dealing with mysterious “IT restrictions” that have led to the cancellation of New Year’s Eve cruises embarking this past weekend. […]
The post Aida Cruises cancels trips due to mysterious “IT restrictions” appeared first on Secure Hunter Anti-Malware.
The email accounts of multiple members of parliament (MPs) were compromised following a cyberattack as revealed today by the Parliament of Finland. […]
The post Finnish Parliament attackers hack lawmakers’ email accounts appeared first on Secure Hunter Anti-Malware.
The Cybersecurity and Infrastructure Security Agency (CISA) has released a PowerShell-based tool that helps detect potentially compromised applications and accounts in Azure/Microsoft 365 environments. […]
The post CISA releases Azure, Microsoft 365 malicious activity detection tool appeared first on Secure Hunter Anti-Malware.
Home appliances giant Whirlpool suffered a ransomware attack by the Nefilim ransomware gang who stole data before encrypting devices. […]
The post Home appliance giant Whirlpool hit in Nefilim ransomware attack appeared first on Secure Hunter Anti-Malware.
21 WeLeakInfo customers have been arrested across the UK for using stolen credentials downloaded from WeLeakInfo following an operation coordinated by the UK National Crime Agency (NCA). […]
The post UK NCA visits WeLeakInfo users to warn of using stolen data appeared first on Secure Hunter Anti-Malware.
A recently discovered multi-platform credit card skimmer can harvest payment info on compromised stores powered by Shopify, BigCommerce, Zencart, and Woocommerce. […]
The post Multi-platform card skimmer found on Shopify, BigCommerce stores appeared first on Secure Hunter Anti-Malware.
A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads a legitimate image file from image hosting service Imgur to decode a Cobalt Strike script. […]
The post GitHub-hosted malware calculates Cobalt Strike payload from Imgur pic appeared first on Secure Hunter Anti-Malware.
A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads a legitimate image file from image hosting service Imgur to decode a Cobalt Strike script. […]
The post GitHub-based malware calculates Cobalt Strike payload from Imgur pic appeared first on Secure Hunter Anti-Malware.
With Cloud PC, Microsoft would handle your device configuration in your organization with regular updates, security improvements, and managed support. Cloud PC appears to be a part of the company’s “Windows as a Service” tagline, which has become more apparent this year. […]
The post Windows 10 Cloud PC: What is known about Microsoft’s new service appeared first on Secure Hunter Anti-Malware.
Japanese game developer Koei Tecmo has disclosed a data breach and taken their European and American websites offline after stolen data was posted to a hacker forum. […]
The post Koei Tecmo discloses data breach after hacker leaks stolen data appeared first on Secure Hunter Anti-Malware.
SolarWinds has released an updated advisory for the additional SuperNova malware discovered to have been distributed through the company’s network management platform. […]
The post SolarWinds releases updated advisory for new SUPERNOVA malware appeared first on Secure Hunter Anti-Malware.
Apple users are experiencing problems setting up new devices or accessing files stored on the cloud due to an ongoing iCloud outage that has lasted for more than 24 hours. […]
The post Apple iCloud outage prevents device activations, access to data appeared first on Secure Hunter Anti-Malware.
The Dridex malware gang is delivering a nasty gift for the holidays using a spam campaign pretending to be Amazon Gift Cards. […]
The post Fake Amazon gift card emails deliver the Dridex malware appeared first on Secure Hunter Anti-Malware.
Leading cybersecurity firm CrowdStrike was notified by Microsoft that threat actors had attempted to read the company’s emails through compromised by Microsoft Azure credentials. […]
The post CrowdStrike releases free Azure security tool after failed hack appeared first on Secure Hunter Anti-Malware.
North Korean nation-state hackers tracked as the Lazarus Group have recently compromised organizations involved in COVID-19 research and vaccine development. […]
The post North Korean state hackers breach COVID-19 research entities appeared first on Secure Hunter Anti-Malware.
Sangoma disclosed a data breach after files were stolen during a recent Conti ransomware attack and published online. […]
The post FreePBX developer Sangoma hit with Conti ransomware attack appeared first on Secure Hunter Anti-Malware.
Google is experimenting with increased storage for the browser cache to reduce the performance hit caused by the recently added partitioned cache feature. […]
The post Google Chrome is testing larger cache sizes to increase performance appeared first on Secure Hunter Anti-Malware.
The NetGalley book promotion site has suffered a data breach that allowed threat actors to access a database with members’ personal information. […]
The post NetGalley discloses data breach after website was hacked appeared first on Secure Hunter Anti-Malware.
Cosmin Iordache is the first bug bounty hunter to earn more than $2,000,000 in bounty awards through the vulnerability coordination and bug bounty program HackerOne. […]
The post Hacker earns $2 million in bug bounties on HackerOne appeared first on Secure Hunter Anti-Malware.
Citrix has confirmed today that an ongoing ‘DDoS attack pattern’ using DTLS as an amplification vector is affecting Citrix Application Delivery Controller (ADC) networking appliances with EDT enabled. […]
The post Citrix confirms ongoing DDoS attack impacting NetScaler ADCs appeared first on Secure Hunter Anti-Malware.
Iranian cyber actors are likely behind a campaign that encouraged deadly violence against U.S. state officials certifying the 2020 election results. […]
The post FBI: Iran behind pro-Trump ‘enemies of the people’ doxing site appeared first on Secure Hunter Anti-Malware.
A large scale phishing scam is underway that pretends to be a security notice from Chase stating that fraudulent activity has been detected and caused the recipient’s account to be blocked. […]
The post PSA: Active Chase phishing scam pretends to be fraud alerts appeared first on Secure Hunter Anti-Malware.
Microsoft has added support for security incident email notifications to the Microsoft 365 Defender enterprise threat protection solution. […]
The post Microsoft 365 admins can now get security incident email alerts appeared first on Secure Hunter Anti-Malware.
Back in June, Microsoft released a fix for a vulnerability in the Windows operating system that enabled attackers to increase their permissions to kernel level on a compromised machine. The patch did not stick. […]
The post Windows zero-day with bad patch gets new public exploit code appeared first on Secure Hunter Anti-Malware.
Emsisoft has provided BleepingComputer visitors an exclusive holiday deal where you can get 20% off Emsisoft Anti-Malware until the end of the year. […]
The post Holiday deal exclusive: Get 20% off Emsisoft Anti-Malware appeared first on Secure Hunter Anti-Malware.
United Kingdom’s Information Commissioner’s Office (ICO) has warned organizations that fell victim to the SolarWinds hack that they are required to report data breaches within three days after their discovery. […]
The post UK privacy watchdog warns SolarWinds victims to report data breaches appeared first on Secure Hunter Anti-Malware.
The US Department of Homeland Security (DHS) warned American businesses of the data theft risks behind using equipment and data services provided by companies linked with the People’s Republic of China (PRC). […]
The post DHS warns of data theft risk when using Chinese products appeared first on Secure Hunter Anti-Malware.
QNAP has released security updates to fix multiple high severity security vulnerabilities impacting network-attached storage (NAS) devices running the QES, QTS, and QuTS hero operating systems. […]
The post QNAP fixes high severity QTS, QES, and QuTS hero vulnerabilities appeared first on Secure Hunter Anti-Malware.
U.S. President-Elect Joe Biden has criticized the Trump administration over the lack of response regarding the SolarWinds response and for failing to officially attribute the attacks. […]
The post Biden blasts Trump administration over SolarWinds attack response appeared first on Secure Hunter Anti-Malware.
Roanoke College has delayed their spring semester by almost a month after a cyberattack has impacted files and data access. […]
The post Roanoke College delays spring semester after cyberattack appeared first on Secure Hunter Anti-Malware.
Law enforcement agencies around the world in a coordinated effort took down and seized the infrastructure supporting Safe-Inet and Insorg VPN and proxy services known for catering cybercriminal activity. […]
The post Safe-Inet, Insorg VPN services shut down by law enforcement appeared first on Secure Hunter Anti-Malware.
A Microsoft root certificate is expiring at the end of this month, and Microsoft warns that removing it could cause problems with the operating system. […]
The post Microsoft: Don’t delete Windows 10 root certificate expiring this month appeared first on Secure Hunter Anti-Malware.
US Senator Ron Wyden said that dozens of US Treasury email accounts were compromised by the threat actors behind the SolarWinds hack. […]
The post SolarWinds hackers breached US Treasury officials’ email accounts appeared first on Secure Hunter Anti-Malware.
US federal agencies have warned about scammers exploiting the public’s interest in the COVID-19 vaccine to harvest personal information and steal money through multiple ongoing and emerging fraud schemes. […]
The post FBI warns of ongoing COVID-19 vaccine related fraud schemes appeared first on Secure Hunter Anti-Malware.
Security researchers have shared lists of organizations where threat actors deployed Sunburst/Solarigate malware, after ongoing investigations of the SolarWinds supply chain attack. […]
The post SolarWinds victims revealed after cracking the Sunburst malware DGA appeared first on Secure Hunter Anti-Malware.
Trucking and freight logistics company Forward Air has suffered a ransomware attack by a new ransomware gang that has impacted the company’s business operations. […]
The post Trucking giant Forward Air hit by new Hades ransomware gang appeared first on Secure Hunter Anti-Malware.
British cryptocurrency exchange EXMO has disclosed that unknown attackers withdrew almost 5% of its total assets after compromising its hot wallets. […]
The post EXMO cryptocurrency exchange hacked, loses 5% of total assets appeared first on Secure Hunter Anti-Malware.
Almost a dozen Dell Wyse thin client models are vulnerable to critical issues that could be exploited by a remote attacker to run malicious code and gain access to arbitrary files. […]
The post Critical bugs in Dell Wyse ThinOS allow thin client take over appeared first on Secure Hunter Anti-Malware.
The US Department of Justice has seized two domain names used to impersonate the official websites of biotechnology companies Moderna and Regeneron involved in the development of COVID-19 vaccines. […]
The post US seizes domains used for COVID-19 vaccine phishing attacks appeared first on Secure Hunter Anti-Malware.
VMware is the latest company to confirm that it had its systems breached in the recent SolarWinds attacks and said that the hackers did not make any attempts of further exploitation after gaining access through the deployed backdoor. […]
The post VMware latest to confirm breach in SolarWinds hacking campaign appeared first on Secure Hunter Anti-Malware.
According to new code references found in the open-source Chromium platform, Chromium-based browsers should soon be able to take advantage of Google’s personalized news feed called ‘Discover’. […]
The post Google is bringing Discover to other Chromium browsers appeared first on Secure Hunter Anti-Malware.
A threat actor has leaked the stolen email and mailing addresses for Ledger cryptocurrency wallet users on a hacker forum for free. […]
The post Physical addresses of 270K Ledger owners leaked on hacker forum appeared first on Secure Hunter Anti-Malware.
While analyzing artifacts from the SolarWinds Orion supply-chain attack, security researchers discovered another backdoor that is likely from a second threat actor. […]
The post New SUPERNOVA backdoor found in SolarWinds cyberattack analysis appeared first on Secure Hunter Anti-Malware.
Microsoft has acknowledged a new issue impacting Windows 10 customers that might cause booting to fail on devices where the chkdsk tool has been used to repair logical file system errors. […]
The post Microsoft fixes Windows 10 chkdsk bug causing boot failures appeared first on Secure Hunter Anti-Malware.
Flavor and fragrance developer Symrise has suffered a Clop ransomware attack where the attackers allegedly stole 500 GB of unencrypted files and encrypted close to 1,000 devices. […]
The post Flavors designer Symrise halts production after Clop ransomware attack appeared first on Secure Hunter Anti-Malware.
Recently discovered Gitpaste-12 worm that spreads via GitHub and also hosts malicious payload on Pastebin, has returned with over 30 vulnerability exploits, according to researchers at Juniper Labs. […]
The post Gitpaste-12 worm botnet returns with 30+ vulnerability exploits appeared first on Secure Hunter Anti-Malware.
Google says that the global authentication system outage which affected most consumer-facing series on Monday was caused by a bug in the automated quota management system impacting the Google User ID Service. […]
The post Google explains the cause of the recent YouTube, Gmail outage appeared first on Secure Hunter Anti-Malware.
A new Windows 10 utility called TaskbarGroups lets you group shortcuts on the taskbar so they can easily be launched without taking up a lot of space. […]
The post New Windows 10 tool lets you group your taskbar shortcuts appeared first on Secure Hunter Anti-Malware.
Windows Hello, which is an all-in-one biometric authentication process integrated into Windows 10, is slowly growing in popularity. […]
The post Windows Hello is now being used by 84% of Windows 10 users appeared first on Secure Hunter Anti-Malware.
Since the SolarWinds supply chain attack was disclosed last Sunday, there has been a whirlwind of news, technical details, and analysis released about the hack. Because the amount of information that was released in such a short time is definitely overwhelming, we have published this as a roundup of this week’s SolarWinds news. […]
The post The SolarWinds cyberattack: The hack, the victims, and what we know appeared first on Secure Hunter Anti-Malware.
The SolarWinds supply chain attack has dominated this week’s cybersecurity news, but there was still plenty of ransomware news this week. […]
The post The Week in Ransomware – December 18th 2020 – Targeting Israel appeared first on Secure Hunter Anti-Malware.
A list of dozens of online stores hacked by a web skimming group was inadvertently leaked by a dropper used to deploy a stealthy remote access trojan (RAT) on compromised e-commerce sites. […]
The post Stealthy Magecart malware mistakenly leaks list of hacked stores appeared first on Secure Hunter Anti-Malware.
Microsoft’s December 2020 Windows 10 updates are conflicting with the Corsair Utility Engine software and causing the operating system to go into a BSOD crash loop. […]
The post Windows 10 updates cause CorsairVBusDriver BSOD crash loop appeared first on Secure Hunter Anti-Malware.
Europol and the European Commission have launched a new decryption platform that will help boost Europol’s ability to gain access to information stored in encrypted media collected during criminal investigations. […]
The post Europol launches new decryption platform for law enforcement appeared first on Secure Hunter Anti-Malware.
An advisory from the U.S. National Security Agency is providing Microsoft Azure administrators guidance to detect and protect against threat actors looking to access resources in the cloud by forging authentication information. […]
The post NSA warns of hackers forging cloud authentication information appeared first on Secure Hunter Anti-Malware.
Google has disabled a feature that displays a warning when submitting insecure forms after receiving many complaints from users and website administrators. […]
The post Google Chrome disables insecure form warnings after complaints appeared first on Secure Hunter Anti-Malware.
Microsoft said that over 40 of its customers had their networks infiltrated by hackers following the SolarWinds supply chain attack after they installed backdoored versions of the Orion IT monitoring platform. […]
The post Microsoft identifies 40+ victims of SolarWinds hack, 80% from US appeared first on Secure Hunter Anti-Malware.
Microsoft has confirmed that they were hacked in the recent SolarWinds attacks but denied that their software was compromised in a supply-chain attack to infect customers. […]
The post Microsoft confirms breach in SolarWinds hack, denies infecting others appeared first on Secure Hunter Anti-Malware.
A severe authentication bypass vulnerability has been reported in Bouncy Castle, a popular open-source cryptography library. When exploited, the vulnerability (CVE-2020-28052) can allow an attacker to gain access to user and administrator accounts due to a cryptographic weakness in the manner passwords are checked. […]
The post Bouncy Castle crypto authentication bypass vulnerability revealed appeared first on Secure Hunter Anti-Malware.
Nation-state hackers have breached the networks of the National Nuclear Security Administration (NNSA) and the US Department of Energy (DOE). […]
The post SolarWinds hackers breach US nuclear weapons agency appeared first on Secure Hunter Anti-Malware.
A severe authentication bypass vulnerability has been reported in Bouncy Castle, a popular open-source cryptography library. When exploited, the vulnerability (CVE-2020-28052) can allow an attacker to gain access to user and administrator accounts due to a cryptographic weakness in the manner passwords are checked. […]
The post Bouncy Castle fixes crypto API authentication bypass flaw appeared first on Secure Hunter Anti-Malware.
Nation-state hackers have breached the networks of the National Nuclear Security Administration (NNSA) and the US Department of Energy (DOE). […]
The post SolarWinds hackers breach agency in charge of US nuclear weapons appeared first on Secure Hunter Anti-Malware.
A severe authentication bypass vulnerability has been reported in Bouncy Castle, a popular open-source cryptography library. When exploited, the vulnerability (CVE-2020-28052) can allow an attacker to gain access to user and administrator accounts due to a cryptographic weakness in the manner passwords are checked. […]
The post Bouncy Castle fixes cryptography API authentication bypass flaw appeared first on Secure Hunter Anti-Malware.
An advanced hacking group believed to be working for the Russian government has compromised the internal network of a think tank in the U.S. three times. […]
The post Nation-state hackers breached US think tank thrice in a row appeared first on Secure Hunter Anti-Malware.
The US Cybersecurity and Infrastructure Security Agency (CISA) said that the APT group behind the recent compromise campaign targeting US government agencies used more than one initial access vector. […]
The post CISA: Hackers breached US govt using more than SolarWinds backdoor appeared first on Secure Hunter Anti-Malware.
A threat actor is distributing fake Windows and Android installers for the Cyberpunk 2077 game that is installing a ransomware calling itself CoderWare. […]
The post Ransomware masquerades as mobile version of Cyberpunk 2077 appeared first on Secure Hunter Anti-Malware.
The US Cybersecurity and Infrastructure Security Agency (CISA) said that the APT group behind the recent compromise campaign targeting US government agencies used more than one initial access vector. […]
The post CISA: APT group behind US govt hacks used multiple access vectors appeared first on Secure Hunter Anti-Malware.
Iranian-backed hacking group Fox Kitten has been linked to the Pay2Key ransomware operation that has recently started targeting organizations from Israel and Brazil. […]
The post Iranian nation-state hackers linked to Pay2Key ransomware appeared first on Secure Hunter Anti-Malware.
The team behind a popular WordPress plugin has disclosed a critical file upload vulnerability and issued a patch. The vulnerable plugin, Contact Form 7, has over 5 million active installations making this upgrade a necessity for WordPress site owners out there. […]
The post WordPress plugin with 5 million installs has a critical vulnerability appeared first on Secure Hunter Anti-Malware.
The compromise of multiple US federal networks following the SolarWinds breach was officially confirmed for the first time in a joint statement released earlier today by the FBI, DHS-CISA, and the Office of the Director of National Intelligence (ODNI). […]
The post FBI, CISA officially confirm US govt hacks after SolarWinds breach appeared first on Secure Hunter Anti-Malware.
Malwarebytes is running a holiday deal where you can get 40% off Malwarebytes Premium and the Malwarebytes for Teams business product for a limited time. […]
The post Holiday deal: 40% off Malwarebytes Premium and Teams appeared first on Secure Hunter Anti-Malware.
Malicious Chrome and Edge browser extensions with over 3 million installs, most of them still available on the Chrome Web Store and the Microsoft Edge Add-ons portal, are capable of stealing users’ info and redirecting them to phishing sites. […]
The post Malicious Chrome, Edge extensions with 3M installs still in stores appeared first on Secure Hunter Anti-Malware.
Microsoft, FireEye, and GoDaddy have collaborated to create a kill switch for the SolarWinds Sunburst backdoor that forces the malware to terminate itself. […]
The post FireEye, Microsoft create kill switch for SolarWinds backdoor appeared first on Secure Hunter Anti-Malware.
Threat actors behind an ongoing worldwide mobile banking fraud campaign were able to steal millions from multiple US and EU banks, needing just a few days for each attack. […]
The post Emulated mobile devices used to steal millions from US, EU banks appeared first on Secure Hunter Anti-Malware.
New malicious RubyGems packages have been discovered that are being used in a supply chain attack to steal cryptocurrency from unsuspecting users. […]
The post Malicious RubyGems packages used in cryptocurrency supply chain attack appeared first on Secure Hunter Anti-Malware.
Hewlett Packard Enterprise (HPE) has disclosed a zero-day bug in the latest versions of its proprietary HPE Systems Insight Manager (SIM) software for Windows and Linux. […]
The post HPE discloses critical zero-day in server management software appeared first on Secure Hunter Anti-Malware.
SystemBC, a commodity malware sold on underground marketplaces, is being used by ransomware-as-a-service (RaaS) operations to hide malicious traffic and automate ransomware payload delivery on the networks of compromised victims. […]
The post Ransomware gangs automate payload delivery with SystemBC malware appeared first on Secure Hunter Anti-Malware.
Microsoft has released a new version of Microsoft Authenticator that now acts as a password manager for Android and iOS. […]
The post Microsoft Authenticator brings password autofill to mobile devices appeared first on Secure Hunter Anti-Malware.
Gmail is suffering its second outage in 24 hours, with users able to access their email but unable to send to other Gmail users or are experiencing unexpected behavior. […]
The post Gmail hit by a second outage within a single day appeared first on Secure Hunter Anti-Malware.
Microsoft has announced today that Microsoft Defender will begin quarantining compromised SolarWind Orion binaries starting tomorrow morning. […]
The post Microsoft to quarantine compromised SolarWinds binaries tomorrow appeared first on Secure Hunter Anti-Malware.
Newly discovered Windows info-stealing malware linked to an active threat group tracked as AridViper shows signs that it might be used to infect computers running Linux and macOS. […]
The post New Windows malware may soon target Linux, macOS devices appeared first on Secure Hunter Anti-Malware.
Microsoft has started rolling out new Universal versions of Microsoft 365 apps with native support for both Apple Silicon and Intel-based Macs starting today. […]
The post Microsoft 365 gets native app support on Apple Silicon Macs appeared first on Secure Hunter Anti-Malware.
The City of Independence, Missouri, suffered a ransomware attack last week that continues to disrupt the city’s services. […]
The post Ransomware attack causing billing delays for Missouri city appeared first on Secure Hunter Anti-Malware.
Google’s global outage from yesterday was due to a bug that restricted storage space to the Identity Management System and caused the system to fail. […]
The post Google outage caused by critical system running out of storage appeared first on Secure Hunter Anti-Malware.
Vulnerability submissions have increased over the past 12 months on at least one crowdsourced security platform, with critical issue reports recording a 65% jump. […]
The post Pandemic year increases bug bounties and report submissions appeared first on Secure Hunter Anti-Malware.
Mozilla Firefox 84 was released today with a dramatic performance boost after adding native support on macOS devices with Apple Silicon processors. […]
The post Firefox 84 dramatically boosts performance on Apple Silicon Macs appeared first on Secure Hunter Anti-Malware.
Ireland’s Data Protection Commission fined Twitter €450,000 for failing to notify the DPC of a breach within the 72-hour timeframe imposed by required by European Union’s General Data Protection Regulation (GDPR) and to adequately document it. […]
The post Twitter fined by EU data protection watchdog for GDPR breach appeared first on Secure Hunter Anti-Malware.
This week, Mattermost, in coordination with Golang has disclosed 3 critical vulnerabilities within Go language’s XML parser. If exploited, these vulnerabilities, also impacting multiple Go-based SAML implementations, can lead to a complete bypass of SAML authentication which powers prominent web applications today. […]
The post Critical Golang XML parser bugs can cause SAML authentication bypass appeared first on Secure Hunter Anti-Malware.
Mozilla has shared info on how to fix a known issue leading to errors on multiple video streaming platforms including Netflix, Hulu, Disney+, and Amazon’s Prime Video Prime on the Mac version of Firefox 84. […]
The post Mozilla shares fix for Netflix, Hulu errors on Apple Silicon Macs appeared first on Secure Hunter Anti-Malware.
Microsoft is working on a new built-in command-line ‘Disk Usage’ utility that reports how much disk space a folder uses. […]
The post Windows 10 to get a built-in command-line disk space analyzer appeared first on Secure Hunter Anti-Malware.
Microsoft has removed a safeguard hold blocking Windows 10 updates on systems affected by a known issue causing blue screen of death (BSOD) crashes when users plugged in a Thunderbolt NVMe (Non-Volatile Memory Express) Solid State Drive (SSD). […]
The post Microsoft removes update block for Windows 10 NVMe SSD devices appeared first on Secure Hunter Anti-Malware.
SolarWinds’s Orion IT monitoring and management software has been used in a supply chain attack leading to the breach of government and high-profile companies using a malware dubbed SUNBURST or Solorigate. […]
The post US govt, FireEye breached after SolarWinds supply-chain attack appeared first on Secure Hunter Anti-Malware.
Microsoft has partially addressed known issues impacting Windows 10 devices with certain Conexant or Synaptics audio devices after investigating ongoing errors since May 2020. […]
The post Microsoft partially fixes Windows 10 Conexant audio driver issues appeared first on Secure Hunter Anti-Malware.
Google users are currently experiencing issues around the world, with users unable to access Gmail, YouTube, Google Drive, and possibly other Google services. […]
The post Google outage affecting YouTube, Gmail and more appeared first on Secure Hunter Anti-Malware.
Molerats cyberespionage group has been using in recent spear-phishing campaigns fresh malware that relies on Dropbox, Google Drive, and Facebook for command and control communication and to store stolen data. […]
The post Hacking group’s new malware abuses Google and Facebook services appeared first on Secure Hunter Anti-Malware.
Google Chrome has now actively started targeting ads that drain device resources like network data, processing power or RAM. […]
The post Google Chrome’s high-resource ad blocking spotted in the wild appeared first on Secure Hunter Anti-Malware.
Intel-owned AI processor developer Habana Labs has suffered a cyberattack where data was stolen and leaked by threat actors. […]
The post Intel’s Habana Labs hacked by Pay2Key ransomware, data stolen appeared first on Secure Hunter Anti-Malware.
With the Windows 10 October 2018 update release, Microsoft had quietly added a built-in command-line network packet sniffer called Pktmon to Windows 10. Since then, Microsoft has added a few more features to the tool that make it much easier to use. […]
The post Hands on with Windows 10’s built-in Pktmon network monitor appeared first on Secure Hunter Anti-Malware.
According to reliable sources, Windows 10X is now expected to launch on single-screen devices in the Spring of 2021. Here’s everything you need to know. […]
The post Windows 10X is arriving next year: What we know so far appeared first on Secure Hunter Anti-Malware.
Subway UK has disclosed that a hacked system used for marketing campaigns is responsible for the malware-laden phishing emails sent to customers yesterday. […]
The post Subway marketing system hacked to send TrickBot malware emails appeared first on Secure Hunter Anti-Malware.
After 24 years of fun games and abuse by threat actors, Adobe has released their final Flash Player update and thanked everyone for the fantastic content that they have released over the years. […]
The post Adobe releases final Flash Player update, warns of 2021 kill switch appeared first on Secure Hunter Anti-Malware.
This week we continued to see ransomware target businesses, education, and healthcare with cyberattacks that disrupt operations and lead to school closings. […]
The post The Week in Ransomware – December 11th 2020 – Targeting K-12 appeared first on Secure Hunter Anti-Malware.
MountLocker ransomware received an update recently that cut its size by half but preserves a weakness that could potentially allow learning the random key used to encrypt files. […]
The post MountLocker ransomware gets slimmer, now encrypts fewer files appeared first on Secure Hunter Anti-Malware.
Sudhish Kasaba Ramesh, a former Cisco engineer, was sentenced on Wednesday to two years in prison and ordered to pay a $15,000 fine for shutting down more than 16,000 WebEx Teams accounts and over 450 virtual machines in 2018, […]
The post Ex-Cisco engineer who nuked 16k WebEx accounts goes to prison appeared first on Secure Hunter Anti-Malware.
This week Samsung has started rolling out Android’s December security updates to mobile devices to patch critical security vulnerabilities in the operating system. This comes after Android had published their December 2020 security updates bulletin, which includes patches for critical bugs. […]
The post Samsung fixes critical Android bugs in December 2020 updates appeared first on Secure Hunter Anti-Malware.
Microsoft has addressed critical remote code execution vulnerabilities in multiple SharePoint versions with this month’s Office security updates. […]
The post Microsoft Office security updates fix critical SharePoint RCE bugs appeared first on Secure Hunter Anti-Malware.
Sudhish Kasaba Ramesh, a former Cisco engineer, was sentenced on Wednesday to two years in prison and ordered to pay a $15,000 fine for shutting down more than 16,000 WebEx Teams accounts and over 450 virtual machines in 2018, […]
The post Ex-Cisco engineer who nuked 16k WebEx accounts sent to prison appeared first on Secure Hunter Anti-Malware.
The Facebook security team has revealed today the real identity of APT32, a Vietnam-backed hacking group active in cyberespionage campaigns targeting foreign government, multi-national corporations, and journalists since at least 2014. […]
The post Facebook unmasks Vietnam’s APT32 hacking group appeared first on Secure Hunter Anti-Malware.
A massive phishing campaign pretending to be a Subway order confirmation is underway distributing the notorious TrickBot malware. […]
The post Massive Subway UK phishing attack is pushing TrickBot malware appeared first on Secure Hunter Anti-Malware.
Microsoft has warned of an ongoing campaign pushing a new browser hijacking and credential-stealing malware dubbed Adrozek which, at its peak, was able to take over more than 30,000 devices every day. […]
The post Microsoft: New malware can infect over 30K Windows PCs a day appeared first on Secure Hunter Anti-Malware.
Microsoft has announced the long-awaited ability to run emulated 64-bit applications in Windows on ARM. This new feature will allow applications to use more memory and thus gain better performance than their 32-bit counterparts. […]
The post Microsoft adds 64-bit application support to Windows 10 on ARM appeared first on Secure Hunter Anti-Malware.
K-12 educational institutions in the U.S. are being targeted by malicious actors for extortion, data theft, and general disruption of normal activity. The trend will continue through the 2020/2021 academic year. […]
The post U.S. warns of increased cyberattacks against K-12 distance learning appeared first on Secure Hunter Anti-Malware.
A phishing scam is underway that targets Ledger wallet users with fake data breach notifications used to steal cryptocurrency from recipients. […]
The post Fake data breach alerts used to steal Ledger cryptocurrency wallets appeared first on Secure Hunter Anti-Malware.
Sophos has deployed a hotfix for their line of Cyberoam firewalls and routers to fix a SQL injection vulnerability. […]
The post Sophos fixes SQL injection vulnerability in their Cyberoam OS appeared first on Secure Hunter Anti-Malware.
Hackers have set up an auction site on the dark web to sell 250,000 databases stolen from tens of thousands of breached MySQL servers. […]
The post 250,000 stolen MySQL databases for sale on dark web auction site appeared first on Secure Hunter Anti-Malware.
Proof-of-concept exploit code and full details on a Windows Kerberos security bypass vulnerability have been published earlier this week by Jake Karnes, the NetSPI security consultant and penetration tester who reported the security bug to Microsoft. […]
The post Windows Kerberos Bronze Bit attack gets public exploit, patch now appeared first on Secure Hunter Anti-Malware.
Cisco has addressed a new critical severity remote code execution (RCE) vulnerability affecting several versions of Cisco Jabber for Windows, macOS, and mobile platforms after patching a related security bug in September. […]
The post Cisco fixes new Jabber for Windows critical code execution bug appeared first on Secure Hunter Anti-Malware.
The server-client communication in certain versions of the WinZip file compression tool is insecure and could be modified to serve malware or fraudulent content to users. […]
The post Hackers can use WinZip insecure server connection to drop malware appeared first on Secure Hunter Anti-Malware.
One of the operators behind a Mirai botnet pleaded guilty to their involvement in a huge DDoS attack that caused a massive Internet disruption during October 2016. […]
The post Teen who shook the Internet in 2016 pleads guilty to DDoS attacks appeared first on Secure Hunter Anti-Malware.
Microsoft is rolling out a sleeping tabs feature to the new Chromium-based Edge web browser which will drastically reduce memory and CPU resource usage. […]
The post Microsoft Edge gets a performance boost with sleeping tabs appeared first on Secure Hunter Anti-Malware.
A new Qbot malware version now activates its persistence mechanism right before infected Windows devices shutdown and it automatically removes any traces when the system restarts or wakes up from sleep. […]
The post Qbot malware switched to stealthy new Windows autostart method appeared first on Secure Hunter Anti-Malware.
The European Medicines Agency (EMA) responsible for COVID-19 vaccine approval has suffered a cyberattack of an undisclosed nature, according to a statement posted on their website. […]
The post Pfizer COVID-19 vaccine documents accessed in EMA cyberattack appeared first on Secure Hunter Anti-Malware.
The European Medicines Agency (EMA) responsible for COVID-19 vaccine approval has suffered a cyberattack of an undisclosed nature, according to a statement posted on their website. […]
The post European Medicines Agency fully operational after cyberattack appeared first on Secure Hunter Anti-Malware.
This week OpenSSL has released fixes for a high severity Denial of Service (DoS) vulnerability, CVE-2020-1971. U.S. DHS Cybersecurity and Infrastructure Security Agency (CISA) has warned admins to upgrade their vulnerable OpenSSL instances immediately. […]
The post DHS-CISA urges admins to patch OpenSSL DoS vulnerability appeared first on Secure Hunter Anti-Malware.
Credit card stealer scripts are evolving and become increasingly harder to detect due to novel hiding tactics. The latest example is a web skimmer that uses CSS code to blend within the pages of a compromised store and to steal customers’ personal and payment information. […]
The post Credit card stealer hides in CSS files of hacked online stores appeared first on Secure Hunter Anti-Malware.
Russian-speaking hackers behind Zebrocy malware have changed their technique for delivering malware to high-profile victims and started to pack the threats in Virtual Hard Drives (VHD) to avoid detection. […]
The post Russian hackers hide Zebrocy malware in virtual disk images appeared first on Secure Hunter Anti-Malware.
Adobe has released security updates to address critical severity security bugs affecting Windows and macOS versions of Adobe Lightroom and Adobe Prelude. […]
The post Adobe fixes critical security vulnerabilities in Lightroom, Prelude appeared first on Secure Hunter Anti-Malware.
Microsoft has issued security updates to address a Kerberos security feature bypass vulnerability impacting multiple Windows Server versions in a two-phase staged rollout. […]
The post Microsoft fixes new Windows Kerberos security bug in staged rollout appeared first on Secure Hunter Anti-Malware.
Cloud hosting and IT services provider Netgain was forced to take some of their data centers offline after suffering a ransomware attack in late November. […]
The post Ransomware forces hosting provider Netgain to take down data centers appeared first on Secure Hunter Anti-Malware.
Leading cybersecurity company FireEye disclosed today that it was hacked by a threat actor showing all the signs of a state-sponsored hacking group. […]
The post FireEye reveals that it was hacked by a nation state APT group appeared first on Secure Hunter Anti-Malware.
The first batch of security updates or ‘B’ updates for the month of ‘December 2020’ is now available for all supported versions of Windows 10 including version 20H2. […]
The post Windows 10 Cumulative Updates KB4592449 & KB4592438 released appeared first on Secure Hunter Anti-Malware.
Microsoft issued guidance on how to mitigate a DNS cache poisoning vulnerability reported by security researchers from the University of California and Tsinghua University. […]
The post Microsoft issues guidance for DNS cache poisoning vulnerability appeared first on Secure Hunter Anti-Malware.
Today is Microsoft’s December 2020 Patch Tuesday, and Windows administrators will be scrambling to put out fires, so be kind to them. As part of this Patch Tuesday, Microsoft fixed 58 security vulnerabilities and release a DNS cache poisoning vulnerability advisory. […]
The post Microsoft December 2020 Patch Tuesday fixes 58 vulnerabilities appeared first on Secure Hunter Anti-Malware.
Russian-backed hacking group APT28 has likely brute-forced multiple Norwegian Parliament (Stortinget) email accounts on August 24, 2020, according to the Norwegian Police Security Service (PST, short for Politiets Sikkerhetstjeneste). […]
The post Norway: Russian APT28 state hackers likely behind Parliament attack appeared first on Secure Hunter Anti-Malware.
An almost impossible to remove malware set to automatically activate on Black Friday was deployed on multiple Magento-powered online stores by threat actors according to researchers at Dutch cyber-security company Sansec. […]
The post Credit card stealing malware bundles backdoor for easy reinstall appeared first on Secure Hunter Anti-Malware.
A vulnerability in GE Healthcare’s proprietary management software used for medical imaging devices could put patients’ health privacy at risk, potentially their lives. […]
The post Severe MDHexRay bug affects 100+ GE Healthcare imaging systems appeared first on Secure Hunter Anti-Malware.
It’s the giving season, and cybercriminals are more actively looking to steal gift cards. One of the most popular brands in their sight is giant retailer Target. […]
The post Scammers spoof Target’s gift card balance checking page appeared first on Secure Hunter Anti-Malware.
The Kubernetes Product Security Committee has provided advice on how to temporarily block attackers from exploiting a vulnerability that could enable them to intercept traffic from other pods in multi-tenant Kubernetes clusters in man-in-the-middle (MiTM) attacks. […]
The post All Kubernetes versions affected by unpatched MiTM vulnerability appeared first on Secure Hunter Anti-Malware.
An vulnerability in D-link firmware powering multiple routers with VPN passthrough functionality allows attackers to take full control of the device. […]
The post D-Link VPN routers get patch for remote command injection bugs appeared first on Secure Hunter Anti-Malware.
Microsoft Azure CTO Mark Russinovich utilized a monster 420 logical processor virtual machine to play Tetris using the CPU core list in Windows Task Manager. […]
The post Monster Azure VM used to play Tetris in Windows Task Manager appeared first on Secure Hunter Anti-Malware.
Security bugs found in the PlayStation Now (PS Now) cloud gaming Windows application allowed attackers to execute arbitrary code on Windows devices running vulnerable app versions. […]
The post PlayStation Now bugs let sites run malicious code on Windows PCs appeared first on Secure Hunter Anti-Malware.
Cisco has released security updates to address multiple pre-authentication vulnerabilities with public exploits affecting Cisco Security Manager that could allow for remote code execution after successful exploitation. […]
The post Cisco fixes Security Manager vulnerabilities with public exploits appeared first on Secure Hunter Anti-Malware.
Foxconn electronics giant suffered a ransomware attack at a Mexican facility over the Thanksgiving weekend, where attackers stole unencrypted files before encrypting devices. […]
The post Foxconn electronics giant hit by ransomware, $34 million ransom appeared first on Secure Hunter Anti-Malware.
Microsoft today announced the launch of a new offering for its mission-critical Azure Government cloud targeted at government customers and partners that regularly work with top-secret classified data. […]
The post Microsoft announces Azure cloud for top secret government data appeared first on Secure Hunter Anti-Malware.
NortonLifeLock announced today that they have agreed to acquire Avira in an all-cash transaction for approximately $360 million. […]
The post NortonLifeLock purchases Avira for $360 million appeared first on Secure Hunter Anti-Malware.
The National Security Agency (NSA) warns that Russian state-sponsored threat actors are exploiting a recently patched VMware vulnerability to steal sensitive information after deploying web shells on vulnerable servers. […]
The post NSA: Russian state hackers exploit new VMware vulnerability to steal data appeared first on Secure Hunter Anti-Malware.
Network-attached storage (NAS) maker QNAP today released security updates to address vulnerabilities that could enable attackers to take control of unpatched NAS devices following successful exploitation. […]
The post QNAP patches QTS vulnerabilities allowing NAS device takeover appeared first on Secure Hunter Anti-Malware.
A new Windows 10 feature lets you use the digital assistant to open and find files and save time spent navigating File Explorer or OneDrive. […]
The post Hands on with Cortana’s new file finder feature on Windows 10 appeared first on Secure Hunter Anti-Malware.
Microsoft is testing a way to quickly bring new features and improvements to Windows 10 outside of the regularly scheduled Windows updates. […]
The post Microsoft tests new method to release Windows 10 features and fixes appeared first on Secure Hunter Anti-Malware.
Italian police have arrested two people allegedly for using malware to steal 10 GB of confidental data and military secrets from defense company Leonardo S.p.A. […]
The post Police arrest two in data theft cyberattack on Leonardo defense corp appeared first on Secure Hunter Anti-Malware.
Almost every month, the Windows Update catalogue is updated with unwanted drivers prepared by OEMs and driver vendors. Fortunately, Microsoft allows users to hide or pause specific driver updates using a tool called “Show or hide updates troubleshooter”. […]
The post How to hide unwanted driver updates in Windows 10 appeared first on Secure Hunter Anti-Malware.
