Free Republic 1st Quarter Fundraising Target: $88,000 Receipts & Pledges to-date: $20,002
22%  
Woo hoo!! And the first 22% is in!! Thank you all very much for your continuing support!2

Keyword: malware

Brevity: Headers | « Text »
  • Microsoft patches patch for Meltdown bug patch: Windows 7, Server 2008 rushed an emergency fix

    03/30/2018 7:37:48 AM PDT · by dayglored · 25 replies
    The Register ^ | Mar 29, 2018 | Shaun Nichols
    If at first you don't succeed, you're Redmond Microsoft today issued an emergency security update to correct a security update it issued earlier this month to correct a security update it issued in January and February.In January and February, Redmond emitted fixes for Windows 7 and Server 2008 R2 machines to counter the Meltdown chip-level vulnerability in modern Intel x64 processors. Unfortunately, those patches blew a gaping hole in the operating systems: normal applications and logged-in users could now access and modify any part of physical RAM, and gain complete control over a box, with the updates installed.Rather than stop...
  • A (apparently) new malware is making the rounds, called Log 1

    03/05/2018 6:11:11 PM PST · by Chances Are · 28 replies
    The source is one Brooklyn Williams | 03/05/2018 | Chances Are
    This email starts innocently enough. Don't open it!
  • New Spectre, Meltdown variants leave victims open to side-channel attacks <p>

    02/19/2018 3:53:27 PM PST · by Swordmaker · 20 replies
    TechRepublic ^ | February 15, 2018 | By Conner Forrest
    MeltdownPrime and SpectrePrime, found by Princeton and NVIDIA researchers, may require significant hardware changes to be mitigated. MeltdownPrime and SpectrePrime, new variants of the Meltdown and Spectre flaws, could put PCs at risk of another type of cyberattack. The MeltdownPrime and SpectrePrime exploits could be harder to protect against than the original Meltdown and Spectre flaws, because of how deep their flaws exist in the processor. Security researchers from NVIDIA and Princeton have discovered new variants of the Meltdown and Spectre flaws that may be more difficult to tackle than the originals. Dubbed MeltdownPrime and SpectrePrime, these flaws were further...
  • Android malware is taking over phones to mine for cryptocurrency

    02/16/2018 12:06:12 PM PST · by Ernest_at_the_Beach · 10 replies
    truepundit.com ^ | Posted on February 14, 2018 | by True Pundit Staff
    Malwarebytes first discovered the malware when investigating a separate campaign late last month. Specifically, the team was testing a malvertising chain on Windows and Chrome that would lead to tech support scams, but when they tested the same chain on Android, they were “redirected via a series of hops to that cryptomining page.” The page in question features a warning message and a CAPTCHA code. Until the user enters the code, the website will proceed to mine Monero cryptocurrency (XMR) at full speed. Malwarebytes found several identical domains, all of which use the same CAPTCHA code. The first was registered...
  • U.S., UK government websites infected with crypto-mining malware: report

    02/12/2018 7:05:29 AM PST · by BenLurkin · 3 replies
    Thousands of websites, including ones run by U.S. and UK government agencies, were infected for several hours on Sunday with code that causes web browsers to secretly mine digital currencies, technology news site The Register reported. More than 4,200 sites were infected with a malicious version of a widely used tool known as Browsealoud from British software maker Texthelp, which reads out webpages for people with vision problems...
  • Secret Service warning banks about ATM 'jackpotting'

    01/29/2018 7:07:39 PM PST · by markomalley · 24 replies
    KGO ^ | 1/29/18 | David Louie
    Thieves have discovered a new way to exploit older ATM's into spitting out every dollar they hold. It's called jackpotting because of the speed of the bills flying out, resembling how slot machines used to pay out coins. The Secret Service has warned financial institutions to expect a wave of jackpotting over the next week to 10 days, based on its investigation of ATM crimes in several parts of the country. The U.S. appears to be the latest target. In 2016, jackpotting yielded $13 million from ATM's. Twelve European countries and Mexico have also been hit recently. Ahmed Banafa, from...
  • Malwarebytes Web Blocking / RAM Usage Issue

    01/27/2018 11:24:53 AM PST · by RckyRaCoCo · 38 replies
    Malwarebytes ^ | 01/27/2018 | Malwarebytes
    "We're aware of an issue with a protection update that shipped an hour ago that is causing all web traffic to be blocked and RAM usage to climb. We are triaging this right now with all hands on deck. I will have an update shortly with root cause and will share with all of you as I get information. I completely appreciate the pain this is causing our users and we are working hard to resolve this"
  • Best Malware protection

    01/25/2018 2:56:05 PM PST · by Old Yeller · 44 replies
    Vanity
    I know there are a lot of computer geeks in Freeperland. What malware protection is best, in your opinion.
  • A sneaky extension for Chrome, Firefox prevents its removal, hijacks browser

    01/19/2018 5:15:02 PM PST · by markomalley · 20 replies
    Digital Trends ^ | 1/19/18 | Kevin Parrish
    Internet security firm Malwarebytes recently discovered that a pair of extensions will not only hijack Chrome and Firefox, but will block any attempts to remove them from these two browsers. The version found in Chrome is a forced extension resulting from web pages that trick visitors into installing the extension via a JavaScript-based popup. The Firefox version stems from advertisements pretending to be an official manual update requirement warning posted by Mozilla. “Tiempo en colombia en vivo” is the name of the invading Chrome extension. Malwarebytes doesn’t provide any specifics about what this extension actually does to Chrome but presumably, it completely...
  • Man Charged Over Super Creepy Apple Mac Spyware That Snooped On Victims Via Webcams

    01/11/2018 2:11:23 AM PST · by Swordmaker · 8 replies
    Forbes ^ | January 10, 2018 | By Thomas Fox-Brewster , FORBES STAFF
    Earlier this year Forbes reported on an especially creepy strain of malware known as FruitFly targeting Apple Macs. At the time, it was unclear just what the spy tool was for, though it appeared to be used for surveilling people's personal Macs, in particular peeping at them through their webcam. Now the U.S. Department of Justice has unveiled an indictment against 28-year-old North Royalton, Ohio, resident Phillip Durachinsky, who is not only accused of spying on Apple Mac owners via Fruitfly but also of producing child pornography. Prosecutors alleged Durachinsky had been installing spyware on people's PCs for more than...
  • It’s Official: North Korea Is Behind WannaCry

    12/18/2017 7:22:58 PM PST · by Innovative · 36 replies
    Wall Street Journal ^ | Dec. 17, 2017 | Thomas P. Bossert
    ... after careful investigation, the U.S. today publicly attributes the massive “WannaCry” cyberattack to North Korea. The attack spread indiscriminately across the world in May. It encrypted and rendered useless hundreds of thousands of computers in hospitals, schools,
  • Microsoft emergency update: Malware Engine needs, erm, malware protection (Windows 7/8/8.1/10)

    12/10/2017 7:55:42 PM PST · by dayglored · 54 replies
    The Register ^ | Dec 7, 2017 | Shaun Nichols
    Microsoft has posted an out-of-band security update to address a remote code execution flaw in its Malware Protection Engine.Redmond says the flaw, dubbed CVE-2017-11937, has not yet been exploited in the wild. Because it is an out-of-band critical fix, however, it should be installed as soon as possible. For most users, this will happen automatically.The security hole is present in Windows Defender and Microsoft Security Essentials, as well as Endpoint Protection, Forefront Endpoint Protection, and Exchange Server 2013 and 2016.The bug was discovered and reported by the UK's National Cyber Security Centre – which is part of GCHQ, Blighty's spying...
  • Reaper: Calm Before the IoT Security Storm? (botnet reaper aka IoTroop)

    10/26/2017 9:25:58 PM PDT · by ransomnote · 3 replies
    https://krebsonsecurity.com ^ | October 17, 2017 | Brian Krebs
    It’s been just over a year since the world witnessed some of the world’s top online Web sites being taken down for much of the day by “Mirai,” a zombie malware strain that enslaved “Internet of Things” (IoT) devices such as wireless routers, security cameras and digital video recorders for use in large-scale online attacks. Now, experts are sounding the alarm about the emergence of what appears to be a far more powerful strain of IoT attack malware — variously named “Reaper” and “IoTroop” — that spreads via security holes in IoT software and hardware. And there are indications that...
  • Dell Lost Control of Key Customer Support Domain for a Month in 2017

    10/26/2017 9:22:07 PM PDT · by ransomnote · 14 replies
    https://krebsonsecurity.com ^ | 10/17/17 | Brian Krebs
    A Web site set up by PC maker Dell Inc. to help customers recover from malicious software and other computer maladies may have been hijacked for a few weeks this summer by people who specialize in deploying said malware, KrebsOnSecurity has learned. There is a program installed on virtually all Dell computers called “Dell Backup and Recovery Application.” It’s designed to help customers restore their data and computers to their pristine, factory default state should a problem occur with the device. That backup and recovery program periodically checks a rather catchy domain name — DellBackupandRecoveryCloudStorage.com — which until recently was...
  • Cyber Hurricane: New Malware Infects Millions of Devices Worldwide (3 min video)

    10/26/2017 5:58:38 PM PDT · by ransomnote · 24 replies
    youtube.com ^ | 10/26/2017 | vlogger DAHBOO77
    I will try to jot enough notes while listening to the video to catch the basics in case you don't want to watch it. Video at link asserts millions of devices already infected with malware capable of taking down the internet (including peripherals like webcams, video recorders etc.). Netlab360 warns that millions of devices already have been infected by IoT_reaper malware and the infection is rapidly expanding. Netlab360 says vulnerable "device IP's are being queued into the system that will then be injected into this malicious code." This attack was discovered mid-September and was based on the source code for...
  • Please activate the anti-ransomware protection in your Windows 10 Fall Creators Update

    10/23/2017 6:48:46 PM PDT · by markomalley · 22 replies
    The Register ^ | 10/23/17 | Shaun Nichols
    A below-the-radar security feature in the Windows 10 Fall Creators Update, aka version 1709 released last week, can stop ransomware and other file-scrambling nasties dead.The controlled folder access mechanism within Windows Defender prevents suspicious applications from changing the contents of selected protected folders.Though controlled folder access has been known about for months – it surfaced with Insider builds earlier this summer – the feature is only now being thrust into the spotlight with the general public release of the Fall Creators Update for Windows 10.The feature can be enabled through the Windows Defender Security Center App for most users, and...
  • Canada's 'Super Secret Spy Agency' Is Releasing a Malware-Fighting Tool to the Public

    10/19/2017 9:14:32 PM PDT · by nickcarraway · 45 replies
    CBC ^ | Oct 19, 2017 | Matthew Braga
    'This is something new for CSE,' says the agency, which is trying to shed its old reputationCanada's electronic spy agency says it is taking the "unprecedented step" of releasing one of its own cyber defence tools to the public, in a bid to help companies and organizations better defend their computers and networks against malicious threats. The Communications Security Establishment (CSE) rarely goes into detail about its activities — both offensive and defensive — and much of what is known about the agency's activities have come from leaked documents obtained by U.S. National Security Agency whistleblower Edward Snowden and published...
  • Hackers Have Successfully Hidden Malware In Popular PC Cleanup Tool [CCleaner!]

    09/18/2017 9:37:52 AM PDT · by Red Badger · 11 replies
    CBS ^ | September 18, 2017 11:49 AM | Staff
    CBS Local — A computer program used to help your PC run faster has reportedly become the latest victim of hackers looking to breach the security of millions of its users. CCleaner, the computer-optimizing tool made by software company Piriform, was successfully infected by malware, according to security firm Cisco Talos. The malware reportedly tried to connect to unregistered websites in order to remotely download even more harmful programs to users’ computers. Security experts say the Trojan horse-style attack hackers launched affected over 2 million CCleaner customers who downloaded the product in August. “By exploiting the trust relationship between software...
  • EXPERT SAYS RISK OF BLUETOOTH ‘BLUEBORNE’ ATTACKS ACROSS MULTIPLE DEVICES OVERBLOWN

    09/14/2017 1:24:17 PM PDT · by Swordmaker · 10 replies
    Digital Trends ^ | September 13, 2017 10:38 am | By Kevin Parrish
    Security firm says 'BlueBorne' is only a risk if your device isn't updated VIDEO A recent report warned of a possible attack based on vulnerabilities found in Bluetooth, but Google, Microsoft, and Apple already addressed the issue.Bluetooth was originally created in 1998 to serve as a secure short-range wireless connection between two devices. It pairs our wireless mice to our laptops, our smartwatches to our smartphones, and so on. But a recent report published by security firm Armis points to eight Bluetooth-related vulnerabilities — four of which are critical — that reside on more than 5 billion Android, Windows, Linux, and...
  • Billions of Bluetooth devices could get hit by this attack

    09/12/2017 5:45:06 PM PDT · by Swordmaker · 47 replies
    Cnet ^ | September 12, 2017; 6AM PDT | BY ALFRED NG
    More than 5 billion devices are vulnerable to a "highly infectious" malware attack. Go ahead, blame the internet of things. Armis Labs says more than 5 billion devices are vulnerable to attacks through newly discovered Bluetooth exploits.–Josh Miller/CNET More than 5.3 billion devices with Bluetooth signals are at risk of a malware attack newly identified by an internet of things security company. If you're not keeping count, that's most of the estimated 8.2 billion devices that use Bluetooth, which allows for our gadgets to connect and communicate wirelessly. Nearly every connected device out there has Bluetooth capability. Your phones, laptops,...