Earlier today, Microsoft published the January 2018 Patch Tuesday security updates, containing fixes for 56 vulnerabilities and three special security advisories with fixes for Adobe Flash, the Meltdown & Spectre flaws, and a defense-in-depth update for Office applications.
Security researcher Bryan Campbell discovered a malicious Chrome extension today that is masquerading as the legitimate MinerBlock extension. The legitimate MinerBlock extension is used to block sites that utilize in-browser cryptocurrency mining, while the malicious version causes Chrome to repeatedly play videos in the background.
A Microsoft official confirmed today that some devices running on older Windows versions will see a significant slowdown and decrease in system performance after applying the Meltdown and Spectre security patches.
In 2017, the number of command and control (C&C) servers used for managing IoT botnets has more than doubled, going from 393 in 2016 to 943 in 2017.
Microsoft has halted the rollout of Windows OS security updates for the Meltdown and Spectre patches for all customer devices that use an AMD CPU.
Microsoft has added a new and very important detail on the help page describing incompatibilities between antivirus (AV) products and the recent Windows Meltdown and Spectre patches.
People say "every kick in the ass is a step forward." Well, Belgian security researcher Mathy Vanhoef gave the WiFi Protected Access (WPA) standard a huge kick in the ass last fall when it disclosed details about KRACK, a vulnerability in the WPA2 WiFi protocol used by billions of devices.
VirusTotal released a new feature today that allows a user to visualize data such as the hosts a file connects to, what files it creates, and more. Even better, this new tool is available to all members and not only to subscribers of VirusTotal's premium Intelligence platform.
Apple has released today security updates to mitigate the effects of the Spectre vulnerability that affects processors deployed with Apple devices such as smartphones, tablets, and desktop computers.
In a data breach notification letter submitted to the Office of the Attorney General for the state of California, a makeup product vendor said it could not fully assess the impact of a recent card security breach due to a lack of backups.
The US Customs and Border Protection (CBP) agency published last week a new guideline containing updated procedures for searching travelers' electronic devices at US borders.
Today's deal is for a lifetime subscription to 3 courses with over 60 hours of training that prepare you for the Microsoft Certified Solutions Associate (MCSA) Certification. These courses are normally priced at $999, but have been discounted 95% to $49 as part of this deal. This bundle comes with a 15 day satisfaction guarantee.
A security researcher is urging owners of Western Digital MyCloud NAS devices to update the firmware of their portable hard-drives to fix a series of important security bugs he reported to the vendor, among which there is an easy exploitable and wormable hardcoded (backdoor) account.
Microsoft has stopped supporting Bitcoin as a payment method for Microsoft products, Bleeping Computer has learned.
For about a week now there have been repeated posts on the BleepingComputer and Malwarebytes forums regarding a BITSADMIN 3.0 command prompt that repeatedly opens on its own and downloads files. What all of these users had in common were numerous adware and unwanted programs installed on the computer.
AMD has fixed, but not yet released BIOS/UEFI/firmware updates for the general public for a security flaw affecting the AMD Secure Processor.
Looks like even ransomware developers take time off for the holidays as there was not much activity over the past couple of weeks. We have seen mostly new variants being release, with the biggest being CryptoMix. Otherwise, just a few small in development ransomwares being released.
Experts believe that an experienced cybercrime group has created a botnet from compromised Linux servers and is using these systems to mine Monero, a digital currency.
HP announced today "a worldwide voluntary safety recall and replacement program" for laptop batteries it shipped with notebooks or sold as accessories or replacements between December 2015 and December 2017.
Apple has finally released an official statement on the company's mitigations status regarding the recently disclosed Meltdown and Spectre vulnerabilities.