A new information stealing Trojan called Evrial is being actively distributed in the wild. Like most infostealing Trojans, Evrial can steal browser cookies and stored credentials, but this Trojan also has the ability to monitor the Windows clipboard for certain text replace it with text received from the attackers.
While binaries for Slack have been available for Ubuntu and Fedora, other Linux operating systems are not so lucky. To overcome this, Canonical has released Slack as a Snap, which allows Slack to be installed and used on a greater variety of Linux distributions.
In an ABC interview with Apple CEO Tim Cook, Cook apologized once again for the battery slowdowns and stated a future iOS will allow users to disable this "feature".
As part of its Grow with Google program, Google has created an IT Support certification program based on the same methods that they use train their own employees. Called the Google IT Support Professional Certificate, this certification aims to prepares people for an entry level job in the information technology support field.
An open-source cross-platform version of PowerShell, called PowerShell Core 6.0, has been released by Microsoft that not only runs on Windows, but runs on macOS and Linux as well. Going forward, this version is going to be the actively developed with the original PowerShell only receiving security updates.
Another week when only small variants were released. Hopefully this downward trend is a slowdown in ransomware distribution. This biggest news was that the HC7 ransomware accepted Ethereum as a ransom payment. This is the first time this digital currency has been used with ransomware.
Today Microsoft released Windows 10 Insider Preview Build 17074 for PC to insiders in the fast ring. It is important to note that computer's with AMD processors will have this preview build blocked due to the Spectre & Meltdown security update rollout as explained in this support article.
According to Microsoft the rollout of Windows 10 Fall Creators Update is now fully available worldwide. Originally released to select group of devices and regions, over time a new feature update is made available to a wider audience. At this time, Fall Creators Update is now available to all users running Windows 10.
On January 8th Intel released new Linux Processor microcode data files that can be used to mitigate the Spectre and and Meltdown vulnerabilities in Intel CPUs. Using microcodes, an operating system can fix known bugs in Intel CPU without having to perform a BIOS update on the computer.
A bug has been discovered in macOS 10.13.2 that allows you to unlock the App Store system preferences using any username and password as long as you are logged in as a local admin. This means that if your account is an admin and you leave the computer unattended, anyone can change App Store settings on the Mac without your knowledge.
A new variant of the HC7 Ransomware is in the wild that encrypts a victim's files and appends the .PLANETARY extension to the filename. What makes this particular ransomware variant unique is that it may be the first one that accepts Ethereum as a ransom payment.
Security researcher Bryan Campbell discovered a malicious Chrome extension today that is masquerading as the legitimate MinerBlock extension. The legitimate MinerBlock extension is used to block sites that utilize in-browser cryptocurrency mining, while the malicious version causes Chrome to repeatedly play videos in the background.
VirusTotal released a new feature today that allows a user to visualize data such as the hosts a file connects to, what files it creates, and more. Even better, this new tool is available to all members and not only to subscribers of VirusTotal's premium Intelligence platform.
For about a week now there have been repeated posts on the BleepingComputer and Malwarebytes forums regarding a BITSADMIN 3.0 command prompt that repeatedly opens on its own and downloads files. What all of these users had in common were numerous adware and unwanted programs installed on the computer.
Looks like even ransomware developers take time off for the holidays as there was not much activity over the past couple of weeks. We have seen mostly new variants being release, with the biggest being CryptoMix. Otherwise, just a few small in development ransomwares being released.