Recent Security News
-
US court docs expose fake antivirus renewal phishing tactics
January 15, 2024 at 04:19PM The U.S. Secret Service executed a seizure warrant to recover $34,000 stolen through a fake antivirus renewal email scam. The court document details how threat actors gained access to victims’ accounts by tricking them into installing malicious software and disclosing account credentials. The scam’s intensity has recently increased, leading to…
-
Microsoft working on a fix for Windows 10 0x80070643 errors
January 15, 2024 at 02:46PM Microsoft is addressing issues with installing the KB5034441 security update, which patches a BitLocker vulnerability. The update can fail on systems with a small Windows Recovery Environment (WinRE) partition, displaying the 0x80070643 error. Microsoft offers manual partition resizing instructions and a PowerShell script to automate the update process, also providing…
-
Thousands of Juniper Networks devices vulnerable to critical RCE bug
January 15, 2024 at 02:43PM Over 11,500 Juniper Networks devices are vulnerable to a new remote code execution (RCE) flaw, urging urgent patch application. Previously affected by critical RCE bugs, the latest CVE-2024-21591 impacts J-Web interface, with confirmed exposures and geographic stats. With the software’s threat potential and HPE’s acquisition of Juniper, administrators are advised…
-
Hacker Behind $2 Million Cryptocurrency Mining Scheme Arrested in Ukraine
January 15, 2024 at 02:30PM Ukrainian Police and Europol arrested a 29-year-old individual in Mykolaiv, Ukraine, suspected of orchestrating a $2 million cryptojacking scheme. The attacker targeted a major ecommerce company, hacking over 1,500 user accounts and infecting the service with cryptocurrency mining malware. Authorities are investigating potential accomplices and the suspect’s ties to pro-Russian…
-
Windows SmartScreen flaw exploited to drop Phemedrone malware
January 15, 2024 at 01:34PM Phemedrone malware exploits Microsoft Defender SmartScreen vulnerability (CVE-2023-36025) to bypass security prompts in Windows. It steals data from web browsers, cryptocurrency wallets, and apps like Discord and Steam. The flaw was fixed in November 2023, but unpatched systems remain at risk. Trend Micro researchers have identified the specific apps and…