by CIRT Team
Firefox to Automatically Trust OS-Installed CA Certificates to Prevent TLS Errors
Mozilla has finally introduced a mechanism to let Firefox browser automatically fix certain TLS errors, often triggered when antivirus software installed on a system tries to intercept secure HTTPS connections. Most Antivirus software offers web security feature that intercepts encrypted HTTPS connections to monitor the content for malicious web pages before it reaches the web browser. To achieve this, security software replaces websites’ TLS certificates...
Read More
by CIRT Team
Hackers steal $4.2 million from cryptocurrency exchange Bitrue [mashable]
Singaporean cryptocurrency exchange Bitrue has been hacked, with the perps making off with roughly $4.2 million worth of cryptocoins XRP and ADA. The incident happened at 1 a.m. GMT+8 on June 27, with the hacker exploiting a vulnerability in the company’s “Risk Control team’s 2nd review process to access the personal funds of about 90 Bitrue users,” the company said on Twitter. Dear Bitrue Users,...
Read More
by CIRT Team
New Mac Malware Exploits GateKeeper Bypass Bug that Apple Left Unpatched [thehackernews]
Cybersecurity researchers from Intego are warning about possible active exploitation of an unpatched security vulnerability in Apple’s macOS Gatekeeper security feature details and PoC for which were publicly disclosed late last month. Intego team last week discovered four samples of new macOS malware on VirusTotal that leverage the GateKeeper bypass vulnerability to execute untrusted code on macOS without displaying users any warning or asking for their explicit...
Read More
by CIRT Team
Microsoft Edge Chromium Released for Windows 7, 8, and 8.1 [bleepingcomputer]
Microsoft has officially released their Chromium-based Microsoft Edge browser for the Windows 7, Windows 8, and Windows 8.1 operating systems. This will allow a wider range of Windows users to test out the upcoming chromium-based Edge browser and report bugs that they may encounter. With the initial release, Microsoft is only making the Edge Canary build available, with the Dev version coming soon. Like all Microsoft...
Read More
by CIRT Team
Critical Flaw Reported in Popular Evernote Extension for Chrome Users [thehackernews]
Cybersecurity researchers discover a critical flaw in the popular Evernote Chrome extension that could have allowed hackers to hijack your browser and steal sensitive information from any website you accessed. Evernote is a popular service that helps people taking notes and organize their to-do task lists, and over 4,610,000 users have been using its Evernote Web Clipper Extension for Chrome browser. Discovered by Guardio, the vulnerability (CVE-2019-12592)...
Read More
by CIRT Team
GandCrab Ransomware Decryption Tool Released [thehackernews]
Cybersecurity researchers have released an updated version of GandCrab ransomware decryption tool that could allow millions of affected users to unlock their encrypted files for free without paying a ransom to the cybercriminals. GandCrab is one of the most prolific families of ransomware to date that has infected over 1.5 million computers since it first emerged in January 2018. Created by BitDefender, the new GandCrab decryption...
Read More
by CIRT Team
Tyupkin ATM Malware: Take The Money Now Or Never! [source: lastline]
Tyupkin ATM Malware: Take The Money Now Or Never! A Sandbox is a dynamic file analysis system that allows a researcher to analyze the behavior of potentially malicious code in a virtualized environment without damaging a real host system. In some cases, a sandbox has to analyze an attack without seeing the full chain (for example when it analyzes a dropped file without the corresponding...
Read More
by CIRT Team
Analysis on ATM infector [securelist]
even years ago, in 2009, we saw a completely new type of attack on banks. Instead of infecting the computers of thousands of users worldwide, criminals went directly after the ATM itself – infecting it with malware called Skimer. Seven years later, our Global Research and Analysis Team together with Penetration Testing Team have been called on for an incident response. They discovered a new,...
Read More
by CIRT Team
Hacker Disclosed 3 Unpatched Microsoft 0-Day Exploits In Less Than 24hr [thehackernews]
Less than 24 hours after publicly disclosing an unpatched zero-day vulnerability in Windows 10, the anonymous hacker going by online alias “SandboxEscaper” has now dropped new exploits for two more unpatched Microsoft zero-day vulnerabilities. The two new zero-day vulnerabilities affect Microsoft’s Windows Error Reporting service and Internet Explorer 11. Just yesterday, while releasing a Windows 10 zero-day exploit for a local privilege escalation bug in Task...
Read More
by CIRT Team
Google Stored G Suite Users’ Passwords in Plain-Text for 14 Years [thehackernews]
After Facebook and Twitter, Google becomes the latest technology giant to have accidentally stored its users’ passwords unprotected in plaintext on its servers—meaning any Google employee who has access to the servers could have read them. In a blog post published Tuesday, Google revealed that its G Suite platform mistakenly stored unhashed passwords of some of its enterprise users on internal servers in plaintext for 14 years...
Read More
