Solved: Why in-the-wild Bluekeep exploits are causing patched machines to crash

Recent in-the-wild attacks on the critical Bluekeep vulnerability in many versions of Windows aren’t just affecting unpatched machines. It turns out the exploits—which repurpose the September release from the Metasploit framework—are also causing many patched machines to crash. Late last week, Windows users learned why: a separate patch Microsoft released 20 months ago for the
Complete Reading

Ron Amadeo Android has a bit of a malware problem. The open ecosystem’s flexibility also makes it relatively easy for tainted apps to circulate on third-party app stores or malicious websites. Worse still, malware-ridden apps sneak into the official Play Store with disappointing frequency. After grappling with the issue for a decade, Google is calling
Complete Reading

One of the world’s most most technologically advanced hacking groups has a new backdoor that’s every bit as sophisticated as its creators. Dubbed Titanium by the Kaspersky Lab security researchers who discovered it, the malware is the final payload delivered in a long and convoluted attack sequence. The attack chain uses a host of clever
Complete Reading

Aurich Lawson / Getty Did you get a Valentine’s Day text message on November 7? If so, you can blame a company called Syniverse, which provides text-messaging services to major mobile carriers. Syniverse helps deliver text messages via its intercarrier messaging service and boasts that it is “Connected to more than 300 operators” and processes 600
Complete Reading

Enlarge / Ring’s configuration app sent Wi-Fi setup information unencrypted to some doorbell devices, exposing customers’ home networks. Smith Collection/Gado / Getty Images Ring has pushed out a fix to a security issue in the configuration code for its Internet-connected home security products. Researchers from Bitdefender notified Ring in June of a flaw in Ring
Complete Reading

Editor’s note: this article discusses a hate group’s uses of racist language that may be hard to read. Private data for Iron March, a notorious website for violent white supremacists, has been published online in a stunning leak that exposes a trove of detailed information on as many as 1,000 or more members. The 1GB
Complete Reading

AT&T is adding $10 to the monthly bills of customers with certain grandfathered mobile-data plans and not letting them switch back to their older packages. AT&T is pitching the change as a “bonus” because it’s also adding 15GB to the customers’ monthly data allotments. “Enjoy more data,” AT&T says in a support document. “Starting with your
Complete Reading

Enlarge / While at Twitter, two men allegedly gathered data on users “of interest” to the Saudi Government and Crown Prince Mohammed bin Salman, the Department of Justice said in an indictment unsealed today. In an indictment filed on November 5, the Justice Department has charged two former employees of Twitter as acting as unregistered
Complete Reading

Enlarge / Did your mom get a call from “Trend Micro Support”? You might want to check on that. Technical-support telephone scams have been around for a long time, with scammers using random technical data to fool gullible consumers into handing over access to their computers and, often, their credit card data. But some customers
Complete Reading

Enlarge / An AT&T sign outside a company office in New York City. AT&T kept charging DirecTV customers for a sports channel that was blacked out for two months and is only giving customers refunds when they complain to the company. AT&T’s customer service in this case is falling short of the standard set by
Complete Reading

Create Account



Log In Your Account