According to new data by TrendMicro, attackers utilizing the Emotet banking Trojan predominantly used internet provides in the U.S.A. to host their Command & Control infrastructure.
VisionDirect, a popular contact lens online merchant in Europe, has posted an advisory stating that their web site had a data breach that led to the theft of credit card and account information.
Microsoft today confirmed that Skype calling is coming to Amazon Echo devices but the feature doesn't appear to be available just yet. You will need to install the Skype integration to access Microsoft's calling functionality.
A vulnerability for the very popular AMP for WP WordPress plugin with a 100 thousand active installations was discovered that allows any registered users to escalate their privileges to gain administrative access to the site.
Crooks have no scruples when it comes to making money. Any high-traffic website is a good target for setting up a cryptocurrency mining operation, and the Make-A-Wish charitable organization makes no exception.
A version of TrickBot spotted recently shows interest in data that is peculiar for the normal scope of banking trojans: the Windows system reliability and performance information.
Web developers can use the SpeechSynthesis API to convert text on a web page into synthesized audio speech. While this feature is great for accessibility and audio queues, it is being abused by advertisements and low quality/scammy web sites.
This week we had some new variants of common ransomware infections such as Dharma and Matrix. Otherwise, it has predominantly been small variants that were either created as a test or have minimal distribution.
Microsoft was experimenting with ads Mail app ads in Brazil, Canada, Australia, and India to get user feedback on ads in Mail. Microsoft confirmed on Twitter that this is an experimental feature that was never intended to be tested broadly and is now being turned off.
A new tech support scam trick is underway that utilizes Facebook's Sharer dialog to scare a user into thinking that their Facebook account has an issue. The scammers then hope that the user will be scared into calling the listed phone number.
A person or group claiming to have hacked ProtonMail and stolen "significant" amounts of data has posted a lengthy ransom demand with some wild claims to an anonymous Pastebin. ProtonMail states it's complete BS.
A bug in the way Gmail handles the structure of the 'from:' header allows placing of an arbitrary email address in the sender field.
Watching a video on YouTube in full screen is the optimal way to use the site, but it prevents you from using other features such as comments and the rest of the site A new feature has been released today by YouTube that allows you to watch a video in full screen, but at the same time, scroll down and view the site.
Mozilla's has added a new feature to their desktop Quantum Browser that displays a warning from Firefox Monitor when visiting a site that previously had a data breach. These warnings are designed to alert people about possible concerns and to suggest they check their email to see if it was part of the breach.
Adversaries looking for an easy way to mine for cryptocurrency are actively targeting publicly exposed Docker services. They use a malicious script capable to scan the network in search of vulnerable hosts and compromise them.
Windows 10 19H1 Build 18282 is now available to Insiders in Fast and Skip Ahead Rings. Today's preview update for Windows 10 brings a light theme to Start Menu, Taskbar, Action Center and other elements.
iPhone X, Samsung Galaxy S9, and Xiaomi Mi6 all fell at the hands of hackers that found bugs in various components and crafted exploits that allowed complete take over of the targeted device.
A MageCart credit card skimming attack has been discovered on the online store for the Infowars web site. Visitors who purchased anything on the store while the malicious code was present, would have had their payment information sent to the attacker's server in Lithuania.