ByCybersecurity firm Sophos announced today that it has open-sourced the Sandboxie Windows sandbox-based isolation utility 15 years after it was released."We are thrilled to give the code to the community," Sophos Director of Product Marketing Seth Geftic ."The Sandboxie tool has been built on many years of highly-skilled developer work and is an example of how to integrate with Windows at a very low level,""The Sandboxie user base represents some of the most passionate, forward-thinking, and knowledgeable members of the security community, and we hope this announcement will spawn a fresh...…ByCybersecurity firm Sophos announced today that it has open-sourced the Sandboxie Windows sandbox-based isolation utility 15 years after it was released."We are thrilled to give the code to the community," Sophos Director of Product Marketing Seth Geftic ."The Sandboxie tool has been built on many years of highly-skilled developer work and is an example of how to integrate with Windows at a very low level,""The Sandboxie user base represents some of the most passionate, forward-thinking, and knowledgeable members of the security community, and we hope this announcement will spawn a fresh...WW…

ByOver 500,000 Zoom accounts are being sold on the dark web and hacker forums for less than a penny each, and in some cases, given away for free.These credentials are gathered through credential stuffing attacks where threat actors attempt to login to Zoom using accounts leaked in older data breaches. The successful logins are then compiled into lists that are sold to other hackers.Some of these Zoom accounts are offered for free on hacker forums so that hackers can use them in zoom-bombing pranks and malicious activities. Others are sold for less than a penny each.Cybersecurity...…ByOver 500,000 Zoom accounts are being sold on the dark web and hacker forums for less than a penny each, and in some cases, given away for free.These credentials are gathered through credential stuffing attacks where threat actors attempt to login to Zoom using accounts leaked in older data breaches. The successful logins are then compiled into lists that are sold to other hackers.Some of these Zoom accounts are offered for free on hacker forums so that hackers can use them in zoom-bombing pranks and malicious activities. Others are sold for less than a penny each.Cybersecurity...WW…

ByA newly discovered DNS-changer Trojan dubbed Extenbro has been observed while blocking access to websites of security software vendors to prevent its victims from getting rid of the adware it dumps on their computers."These DNS-changers block access to security-related sites, so the adware victims can’t download and install security software to get rid of the pests," as detailed by Malwarebytes Labs' security researchers who unearthed this new malware.As a side effect, Extenbro will also expose the machines it manages to compromise to all sorts of other threats given that it leaves them...…ByA newly discovered DNS-changer Trojan dubbed Extenbro has been observed while blocking access to websites of security software vendors to prevent its victims from getting rid of the adware it dumps on their computers."These DNS-changers block access to security-related sites, so the adware victims can’t download and install security software to get rid of the pests," as detailed by Malwarebytes Labs' security researchers who unearthed this new malware.As a side effect, Extenbro will also expose the machines it manages to compromise to all sorts of other threats given that it leaves them...WW…

ByMicrosoft leaked info on a security update for a 'wormable' pre-auth remote code execution vulnerability found in the Server Message Block 3.0 (SMBv3) network communication protocol that reportedly should have been disclosed as part of this month's Patch Tuesday.The vulnerability is due to an error when the SMBv3 handles maliciously crafted compressed data packets and it allows remote, unauthenticated attackers that exploit it to execute arbitrary code within the context of the application.Even though the vulnerability advisory was not published by Microsoft (no explanation for this was...…ByMicrosoft leaked info on a security update for a 'wormable' pre-auth remote code execution vulnerability found in the Server Message Block 3.0 (SMBv3) network communication protocol that reportedly should have been disclosed as part of this month's Patch Tuesday.The vulnerability is due to an error when the SMBv3 handles maliciously crafted compressed data packets and it allows remote, unauthenticated attackers that exploit it to execute arbitrary code within the context of the application.Even though the vulnerability advisory was not published by Microsoft (no explanation for this was...WW…

ByA novel class of attack techniques against modern Intel processors can allow threat actors to inject malicious data into applications via transient-execution attacks and steal sensitive data according to researchers.The vulnerability dubbed LVI (short for Load Value Injection) and tracked as CVE-2020-0551 was discovered and reported to Intel on April 4, 2019, by researchers at the Worcester Polytechnic Institute, imec-DistriNet/KU Leuven, Graz University of Technology, University of Michigan, University of Adelaide and Data61, in no particular order.Bitdefender researchers also...…ByA novel class of attack techniques against modern Intel processors can allow threat actors to inject malicious data into applications via transient-execution attacks and steal sensitive data according to researchers.The vulnerability dubbed LVI (short for Load Value Injection) and tracked as CVE-2020-0551 was discovered and reported to Intel on April 4, 2019, by researchers at the Worcester Polytechnic Institute, imec-DistriNet/KU Leuven, Graz University of Technology, University of Michigan, University of Adelaide and Data61, in no particular order.Bitdefender researchers also...WW…

ByThe election symbol of the US Democratic Party has been changed to a rat within the Google search knowledge panel that shows when searching for the party's name, instead of the usual donkey-themed one.While no one knows how this happened, the new rat-themed symbol displayed when is now automatically loaded from a made by a now-banned user on a history forum in January.The rat election symbol is currently being shown for all search results that show the Democratic Party symbol.The Republican Party symbol remains unchanged for now. but does display the changed Democratic Party symbol in the...…ByThe election symbol of the US Democratic Party has been changed to a rat within the Google search knowledge panel that shows when searching for the party's name, instead of the usual donkey-themed one.While no one knows how this happened, the new rat-themed symbol displayed when is now automatically loaded from a made by a now-banned user on a history forum in January.The rat election symbol is currently being shown for all search results that show the Democratic Party symbol.The Republican Party symbol remains unchanged for now. but does display the changed Democratic Party symbol in the...WW…

BySome Ransomware operators have stated that they will no longer target health and medical organizations during the Coronavirus (COVID-19) pandemic.Last night, BleepingComputer reached out to the operators of the Maze, DoppelPaymer, Ryuk, Sodinokibi/REvil, PwndLocker, and Ako Ransomware infections to ask if they would continue targeting health and medical organizations during the outbreak.DoppelPaymer was the first to respond and stated that they do not normally target hospitals or nursing homes and will continue this approach during the pandemic."We always try to avoid hospitals, nursing...…BySome Ransomware operators have stated that they will no longer target health and medical organizations during the Coronavirus (COVID-19) pandemic.Last night, BleepingComputer reached out to the operators of the Maze, DoppelPaymer, Ryuk, Sodinokibi/REvil, PwndLocker, and Ako Ransomware infections to ask if they would continue targeting health and medical organizations during the outbreak.DoppelPaymer was the first to respond and stated that they do not normally target hospitals or nursing homes and will continue this approach during the pandemic."We always try to avoid hospitals, nursing...WW…

ByFirefox 75 comes with a new telemetry agent that sends information about your operating system and your default browser to Firefox every day. This guide will walk you through disabling this "feature" to protect your privacy.For some time, Firefox has been about how you use the browser, such as the number of web pages you visit, safebrowsing information, the number of open tabs and windows, what add-ons are installed, and more.This telemetry data is kept for 13 months and IP addresses listed in server logs are deleted every 30 days.On my computer, Firefox has collected over 400KB of...…ByFirefox 75 comes with a new telemetry agent that sends information about your operating system and your default browser to Firefox every day. This guide will walk you through disabling this "feature" to protect your privacy.For some time, Firefox has been about how you use the browser, such as the number of web pages you visit, safebrowsing information, the number of open tabs and windows, what add-ons are installed, and more.This telemetry data is kept for 13 months and IP addresses listed in server logs are deleted every 30 days.On my computer, Firefox has collected over 400KB of...WW…

By​An unpatched zero-day vulnerability exists in 79 Netgear router models that allow an attacker to take full control over vulnerable devices remotely.Discovered independently by both Adam Nichols of cybersecurity firm Grimm and d4rkn3ss from Vietnam's VNPT ISC (through Zero Day Initiative), the vulnerability lies in the HTTPD daemon used to manage the router.While includes brief information about the vulnerability, Nichols has of the vulnerability, , and .According to the reports, the vulnerable router's HTTPD daemon does not adequately check the length of data supplied by a user, allowing...…By​An unpatched zero-day vulnerability exists in 79 Netgear router models that allow an attacker to take full control over vulnerable devices remotely.Discovered independently by both Adam Nichols of cybersecurity firm Grimm and d4rkn3ss from Vietnam's VNPT ISC (through Zero Day Initiative), the vulnerability lies in the HTTPD daemon used to manage the router.While includes brief information about the vulnerability, Nichols has of the vulnerability, , and .According to the reports, the vulnerable router's HTTPD daemon does not adequately check the length of data supplied by a user, allowing...WW…

ByWhile Microsoft Edge shares the same source code as the popular Chrome browser, it offers better privacy control for users. New research, though, indicates that it may have more privacy-invading telemetry than other browsers.According to Microsoft, telemetry refers to the system data that is uploaded by the Telemetry components or browser's built-in services. Telemetry features aren't new to Microsoft and the company has been using Telemetry data from Windows 10 to identify issues, analyze and fix problems.Professor , Chair of Computer Systems at Trinity College in Ireland, tested six web...…ByWhile Microsoft Edge shares the same source code as the popular Chrome browser, it offers better privacy control for users. New research, though, indicates that it may have more privacy-invading telemetry than other browsers.According to Microsoft, telemetry refers to the system data that is uploaded by the Telemetry components or browser's built-in services. Telemetry features aren't new to Microsoft and the company has been using Telemetry data from Windows 10 to identify issues, analyze and fix problems.Professor , Chair of Computer Systems at Trinity College in Ireland, tested six web...WW…