A cybercriminal organization has been attacking Windows users with a hybrid ransomware and data stealer program that encrypts machines while in Safe Mode in order to render endpoint protection programs moot. Dubbed Snatch, the malware “runs itself in an elevated permissions mode, sets registry keys that instructs Windows to run it
Data Breach
Pensacola confirms ransomware attack
Pensacola officials confirmed that an ongoing cyberattack that began early Saturday morning is a ransomware attack. While the city did not release any additional details, the Pensacola News Journal said city spokeswoman Kaycee Lagarde confirmed the attack included a ransom, something that Mayor Grover Robinson initially declined to discuss. Jeff Bergosh, District 1 Commissioner on
Microsoft fixes exploited privilege elevation flaw, 34 more bugs
For its final Patch Tuesday release of the year, Microsoft Corporation issued a series of security updates that fixed a total of 35 vulnerabilities, seven of which were deemed critical and one of which was found to be actively exploited. The most severe flaws consist of remote code execution vulnerabilities in
Patch Tuesday: Adobe announces 25 bug fixes, 21 in Acrobat products
On the last Patch Tuesday of 2019, Adobe today released security updates for Acrobat and Acrobat Reader, Photoshop CC, Brackets and ColdFusion, fixing 25 critical and important vulnerabilities in the process. Twenty-one of the flaws were found in various Acrobat and Acrobat Reader products for the Windows and macOS platforms. Of
Unsecured storage bucket exposes applications for birth certificate copies
A leaky Amazon Web Services storage bucket has exposed more than 752,000 applications requesting copies of birth certificates. A report yesterday by TechCrunch said the unsecured data set dates back to late 2017, but was just recently discovered by U.K.-based penetration testing company Fidus Information Security. The data is managed by
Devin Nunes’ cow Twitter account owner should remain anonymous, ACLU says
The person behind the “Devin Nunes’ cow” Twitter account should remain anonymous, the American Civil Liberties Union (ACLU) asserted in a friend-of-the-court brief filed in response to a defamation lawsuit brought by Rep. Devin Nunes, R-Calif. While Nunes has offered no evidence that the parody account had posted false statements, the California lawmaker,
Apple says ultra wideband tech culprit behind location data sharing; to issue fix
If what happens on your iPhone doesn’t stay on your iPhone after all, ultra wideband (UWB) technology is the culprit, according to Apple. After the Apple iPhone 11 Pro was discovered to still be sending out user location data even after Location Services was disabled, the company has finally pinned the contradiction of its
IG report says FBI justified in starting Russia probe, Barr disagrees
No sooner had Justice Department Inspector General Michael Horowitz released his much-anticipated report on the origins of the Russia probe, finding as expected that the FBI was justified in beginning an investigation of the Trump campaign, than Attorney General William Barr put out a statement publicly disagreeing with the findings. While the Horowitz skewered the FBI
20 VPS providers shut down, leave customers scrambling, crying foul
Two days after alerting customers in the wake of what some believed might have been a cyberattack, at least 20 web hosting providers have shut their doors and plan to wipe their servers. The providers, which include ArkaHosting, Bigfoot Servers, DCNHost, n3Servers, StrongHosting and MegaZone Hosting, are all are low-end
