Both games look harmless enough, but they contain a payload that ensures you’ll be hammered with spam
Shadow Brokers double down on zero-day subscription service
Should you dive in and help with the crowdfunding move to access the data they claim they have? It’s not what we’d advise – but what do you think?
Threatpost News Wrap, May 26, 2017
Mike Mimoso and Chris Brook recap the news of the week, including the EternalRocks worm, the latest on WannaCry, a subtitle hack, and a Twitter flaw.
WannaCry: the rush to blame XP masked bigger problems
Many pointed the finger at Windows XP, but the worst hit computers were unpatched Windows 7 machines
Crysis ransomware master keys posted to Pastebin
Why would someone release the keys to victims? Who knows, but as the poster who uploaded them says, ‘Enjoy!’
WannaCry Ransom Note Written by Chinese, English Speaking Authors
A linguistics analysis of the 28 ransom notes included with WannaCry indicate that native Chinese and English speakers wrote the original note, Flashpoint said.
Put down the popcorn and patch your media player
A vulnerability in caption files has been patched in some media players, but it’s not clear how widespread the flaw still is
Malware Network Communication Provides Better Early Warning Signal
An academic paper to be presented today at IEEE posits that analysis of network signals provides a better early warning of malware than infections than current practices.
Android Overlay and Accessibility Features Leave Millions at Risk
Researchers warn two features, not flaws, in Android can be used together to open devices up to attack.
Password Breaches Fueling Booming Credential Stuffing Business
The market for automated credential stuffing tools is growing fast, because of a record number of breaches.