A mitigation mechanism is available for all victims who are under a DDoS attack carried out via Memcached servers. This mitigation technique relies on the attacked victim sending a « flush_all » command back to the attacking servers. The measure was proposed last week by Dormando, one of the Memcached server developers. […]
Haythem Elmir
Group Policy Support Coming to Firefox 60
Firefox 60 will feature a new component named Policy Engine that will provide GPO support on Windows, allowing system administrators to control Firefox instances deployed across an internal network. Work on this feature has been progressing according to plan, and its launch is still scheduled for Firefox 60 — Firefox […]
CIGslip Attack Bypasses Windows Code Integrity Guard (CIG)
Malware authors can exploit a flaw in the Windows Code Integrity Guard (CIG) security mechanism to inject malicious, unsigned code into CIG-protected applications, considered to be immune to such attacks. The technique —named CIGslip— impacts Microsoft’s Code Integrity Guard (CIG), a security system that Microsoft first introduced in 2015 with […]
Proof-of-Concept Code for Memcached DDoS Attacks Published Online
Proof-of-concept code to run massive DDoS attacks using unsecured Memcached servers has been published online this week, along with a ready-made list of over 17,000 IP addresses belonging to vulnerable Memcached servers. Two, and not one, of such proof-of-concept (PoC) utilities, have been released, both uniques in their own way. […]
Hacker returns $17 million worth of stolen Ethereum
In July of last year, an Israeli cryptocurrency venture called Coindash was preparing for the Initial Currency Offer (ICO), but as soon as the sale began, a hacker intercepted the company’s website and stole about 43,000 worth of Ethereum. At the time, the stolen cryptocurrency equivalent to the US $ 7.4 million, but today […]
ComboJack Malware Steals Cryptocurrency by Modifying Addresses
A new cryptocurrency-stealing malware dubbed as ComboJack has been discovered by Palo Alto Networks Unit 42 and Proofpoint researchers. It has been targeting cryptocurrencies and digital wallets belonging to American and Japanese users while the malware is being distributed via email spam campaign. Fake Passport Email The malicious emails contain […]
ComboJack Malware alters Windows clipboards to steal cryptocurrencies and payments
Palo Alto Networks discovered a malware dubbed ComboJack that is able of detecting when users copy a cryptocurrency address and alter clipboards to steal cryptocurrencies and payments. Crooks continue to focus their interest in cryptocurrencies, security researchers at Palo Alto Networks have spotted a strain of malware dubbed ComboJack that is […]
New Facial Recognition System Relies on the Speed of Light for Security
Academics have designed a new facial recognition system that relies on the way light patterns reflect off the human face to distinguish between individuals, and on the speed with which the system reads the reflected light to detect forgery attempts. The new system is named Face Flashing, and besides a […]
Microsoft Releases KB4090913 Update to Fix Critical USB Driver Issue
Microsoft released yesterday a Windows update to fix driver issues with USB devices introduced in the February 2018 Patch Tuesday security updates. More precisely, Microsoft has released KB4090913 to address bugs introduced by KB4074588. The update is for Windows 10 Fall Creators Update users only —Windows 10 version 1709. The update is available […]
GandCrab Ransomware Version 2 Released With New .Crab Extension & Other Changes
Last week, security firm Bitdefender, the Romanian Police, and Europol allegedly gained access to the GandCrab Ransomware’s Command & Control servers, which allowed them to recover some of the victim’s decryption keys. This allowed Bitdefender to release a tool that could decrypt some victim’s files. After this breach, the GandCrab developers stated that they would release a […]