Category: Bleeping Computer

Phishing
29
Jul
2024

Proofpoint settings exploited to send millions of phishing emails daily

A massive phishing campaign dubbed “EchoSpoofing” exploited now-fixed, weak permissions in Proofpoint’s email protection service to dispatch millions of spoofed emails…

Share: X : Proofpoint settings exploited to send millions of phishing emails dailyFacebook : Proofpoint settings exploited to send millions of phishing emails dailyLinkedin : Proofpoint settings exploited to send millions of phishing emails dailyReddit : Proofpoint settings exploited to send millions of phishing emails dailyTelegram : Proofpoint settings exploited to send millions of phishing emails dailyWhatsApp : Proofpoint settings exploited to send millions of phishing emails dailyEmail : Proofpoint settings exploited to send millions of phishing emails daily
Misconfigured Selenium Grid servers abused for Monero mining
29
Jul
2024

Misconfigured Selenium Grid servers abused for Monero mining

Threat actors are exploiting a misconfiguration in Selenium Grid, a popular web app testing framework, to deploy a modified XMRig tool…

Share: X : Misconfigured Selenium Grid servers abused for Monero miningFacebook : Misconfigured Selenium Grid servers abused for Monero miningLinkedin : Misconfigured Selenium Grid servers abused for Monero miningReddit : Misconfigured Selenium Grid servers abused for Monero miningTelegram : Misconfigured Selenium Grid servers abused for Monero miningWhatsApp : Misconfigured Selenium Grid servers abused for Monero miningEmail : Misconfigured Selenium Grid servers abused for Monero mining
WhatsApp for Windows lets Python, PHP scripts execute with no warning
28
Jul
2024

WhatsApp for Windows lets Python, PHP scripts execute with no warning

A security issue in the latest version of WhatsApp for Windows allows sending Python and PHP attachments that are executed…

Share: X : WhatsApp for Windows lets Python, PHP scripts execute with no warningFacebook : WhatsApp for Windows lets Python, PHP scripts execute with no warningLinkedin : WhatsApp for Windows lets Python, PHP scripts execute with no warningReddit : WhatsApp for Windows lets Python, PHP scripts execute with no warningTelegram : WhatsApp for Windows lets Python, PHP scripts execute with no warningWhatsApp : WhatsApp for Windows lets Python, PHP scripts execute with no warningEmail : WhatsApp for Windows lets Python, PHP scripts execute with no warning
X flare
28
Jul
2024

X begins training Grok AI with your posts, here’s how to disable

X has quietly begun training its Grok AI chat platform using members’ public posts without first alerting anyone that it is doing…

Share: X : X begins training Grok AI with your posts, here’s how to disableFacebook : X begins training Grok AI with your posts, here’s how to disableLinkedin : X begins training Grok AI with your posts, here’s how to disableReddit : X begins training Grok AI with your posts, here’s how to disableTelegram : X begins training Grok AI with your posts, here’s how to disableWhatsApp : X begins training Grok AI with your posts, here’s how to disableEmail : X begins training Grok AI with your posts, here’s how to disable
Windows 11
28
Jul
2024

Windows 11 taskbar has a hidden “End Task” feature, how to turn it on

Microsoft has added a feature to Windows 11 that allows you to end tasks directly from the taskbar, but it’s…

Share: X : Windows 11 taskbar has a hidden “End Task” feature, how to turn it onFacebook : Windows 11 taskbar has a hidden “End Task” feature, how to turn it onLinkedin : Windows 11 taskbar has a hidden “End Task” feature, how to turn it onReddit : Windows 11 taskbar has a hidden “End Task” feature, how to turn it onTelegram : Windows 11 taskbar has a hidden “End Task” feature, how to turn it onWhatsApp : Windows 11 taskbar has a hidden “End Task” feature, how to turn it onEmail : Windows 11 taskbar has a hidden “End Task” feature, how to turn it on
Google
26
Jul
2024

Google fixes Chrome Password Manager bug that hides credentials

Google has fixed a bug in Chrome’s Password Manager that caused user credentials to disappear temporarily for more than 18…

Share: X : Google fixes Chrome Password Manager bug that hides credentialsFacebook : Google fixes Chrome Password Manager bug that hides credentialsLinkedin : Google fixes Chrome Password Manager bug that hides credentialsReddit : Google fixes Chrome Password Manager bug that hides credentialsTelegram : Google fixes Chrome Password Manager bug that hides credentialsWhatsApp : Google fixes Chrome Password Manager bug that hides credentialsEmail : Google fixes Chrome Password Manager bug that hides credentials
Crypto exchange Gemini discloses third-party data breach
26
Jul
2024

Crypto exchange Gemini discloses third-party data breach

Cryptocurrency exchange Gemini is warning it suffered a data breach incident caused by a cyberattack at its Automated Clearing House…

Share: X : Crypto exchange Gemini discloses third-party data breachFacebook : Crypto exchange Gemini discloses third-party data breachLinkedin : Crypto exchange Gemini discloses third-party data breachReddit : Crypto exchange Gemini discloses third-party data breachTelegram : Crypto exchange Gemini discloses third-party data breachWhatsApp : Crypto exchange Gemini discloses third-party data breachEmail : Crypto exchange Gemini discloses third-party data breach
Data Breach
26
Jul
2024

FBCS data breach impact now reaches 4.2 million people

Debt collection agency Financial Business and Consumer Solutions (FBCS) has again increased the number of people impacted by a February…

Share: X : FBCS data breach impact now reaches 4.2 million peopleFacebook : FBCS data breach impact now reaches 4.2 million peopleLinkedin : FBCS data breach impact now reaches 4.2 million peopleReddit : FBCS data breach impact now reaches 4.2 million peopleTelegram : FBCS data breach impact now reaches 4.2 million peopleWhatsApp : FBCS data breach impact now reaches 4.2 million peopleEmail : FBCS data breach impact now reaches 4.2 million people
Windows Server
26
Jul
2024

July Windows Server updates break Remote Desktop connections

Microsoft has confirmed that July’s security updates break remote desktop connections in organizations where Windows servers are configured to use…

Share: X : July Windows Server updates break Remote Desktop connectionsFacebook : July Windows Server updates break Remote Desktop connectionsLinkedin : July Windows Server updates break Remote Desktop connectionsReddit : July Windows Server updates break Remote Desktop connectionsTelegram : July Windows Server updates break Remote Desktop connectionsWhatsApp : July Windows Server updates break Remote Desktop connectionsEmail : July Windows Server updates break Remote Desktop connections
Acronis
26
Jul
2024

Acronis warns of Cyber Infrastructure default password abused in attacks

Image: Midjourney​Acronis warned customers to patch a critical Cyber Infrastructure security flaw that lets attackers bypass authentication on vulnerable servers using…

Share: X : Acronis warns of Cyber Infrastructure default password abused in attacksFacebook : Acronis warns of Cyber Infrastructure default password abused in attacksLinkedin : Acronis warns of Cyber Infrastructure default password abused in attacksReddit : Acronis warns of Cyber Infrastructure default password abused in attacksTelegram : Acronis warns of Cyber Infrastructure default password abused in attacksWhatsApp : Acronis warns of Cyber Infrastructure default password abused in attacksEmail : Acronis warns of Cyber Infrastructure default password abused in attacks
Russia
26
Jul
2024

Russian ransomware gangs account for 69% of all ransom proceeds

Russian-speaking threat actors accounted for at least 69% of all crypto proceeds linked to ransomware throughout the previous year, exceeding…

Share: X : Russian ransomware gangs account for 69% of all ransom proceedsFacebook : Russian ransomware gangs account for 69% of all ransom proceedsLinkedin : Russian ransomware gangs account for 69% of all ransom proceedsReddit : Russian ransomware gangs account for 69% of all ransom proceedsTelegram : Russian ransomware gangs account for 69% of all ransom proceedsWhatsApp : Russian ransomware gangs account for 69% of all ransom proceedsEmail : Russian ransomware gangs account for 69% of all ransom proceeds
PKfail
26
Jul
2024

PKfail Secure Boot bypass lets attackers install UEFI malware

Hundreds of UEFI products from 10 vendors are susceptible to compromise due to a critical firmware supply-chain issue known as…

Share: X : PKfail Secure Boot bypass lets attackers install UEFI malwareFacebook : PKfail Secure Boot bypass lets attackers install UEFI malwareLinkedin : PKfail Secure Boot bypass lets attackers install UEFI malwareReddit : PKfail Secure Boot bypass lets attackers install UEFI malwareTelegram : PKfail Secure Boot bypass lets attackers install UEFI malwareWhatsApp : PKfail Secure Boot bypass lets attackers install UEFI malwareEmail : PKfail Secure Boot bypass lets attackers install UEFI malware