Researchers from the Microsoft Defender Advanced Threat Protection Research Team have issued a warning to confirm that a notorious credential-stealing malware threat is targeting Windows users. What makes this one so dangerous is that it uses an “invisible man” methodology by only running files within the attack chain that are legitimate system tools and so hides in plain sight...

https://www.forbes.com/sites/daveywinder/2019/07/09/microsoft-confirms-windows-great-duke-of-hell-malware-attack/

Permissions on Android apps are intended to be gatekeepers for how much data your device gives up. If you don’t want a flashlight app to be able to read through your call logs, you should be able to deny that access. But even when you say no, many apps find a way around: Researchers discovered more than 1,000 apps that skirted restrictions, allowing them to gather precise geolocation data and phone identifiers behind your back…

https://www.cnet.com/news/more-than-1000-android-apps-harvest-your-data-even-after-you-deny-permissions/

The crooks behind an affiliate program that paid cybercriminals to install the destructive and wildly successful GandCrab ransomware strain announced on May 31, 2019 they were terminating the program after allegedly having earned more than $2 billion in extortion payouts from victims. What follows is a deep dive into who may be responsible for recruiting new members to help spread the contagion…

https://krebsonsecurity.com/2019/07/whos-behind-the-gandcrab-ransomware/

British Airways is facing a record fine of £183m for last year’s breach of its security systems.

The airline, owned by IAG, says it is “surprised and disappointed” by the penalty from the Information Commissioner’s Office (ICO).

At the time, BA said hackers had carried out a “sophisticated, malicious criminal attack” on its website.

The ICO said it was the biggest penalty it had handed out and the first to be made public under new rules…

https://www.bbc.com/news/business-48905907

Kaspersky researchers have uncovered new encryption ransomware named Sodin, which exploits a recently discovered zero-day Windows vulnerability to get elevated privileges in an infected system and takes advantage of the architecture of the Central Processing Unit (CPU) to avoid detection – functionality that is not often seen in ransomware. What’s more, in certain cases the malware requires no user interaction and is simply planted onto vulnerable servers by the attackers…

https://www.deccanchronicle.com/technology/in-other-news/060719/save-yourselves-before-this-ransomware-exploits-your-windows-device.html

Early Wednesday, people around the globe began reporting app issues, according to DownDetector, a web service that offers a real-time overview of bugs and outages online. About 8:45 a.m. EST, thousands of Instagram users began reporting that they were having problems…

https://www.usatoday.com/story/tech/2019/07/03/facebook-and-instagram-down-apps-keep-crashing-and-being-buggy/1638162001/

Facebook has had problems loading images, videos, and other data across its apps today, leaving some people unable to load photos in the Facebook News Feed, view stories on Instagram, or send messages in WhatsApp. Facebook says it is aware of the issues and “working to get things back to normal as quickly as possible.”..

https://www.theverge.com/2019/7/3/20681050/facebook-picture-stories-outage-instagram-whatsapp-messenger

Bulgarian authorities have arrested an IT specialist for demonstrating a security flaw in the software used by local kindergartens.

The vulnerability allowed the IT expert, named Petko Petrov, to download the details of 235,543 citizens of Stara Zagora, a province in central Bulgaria with over 333,000 inhabitants…

https://www.zdnet.com/article/bulgarian-it-expert-arrested-after-demoing-vulnerability-in-kindergarten-software/

THE INTERNET had one of its larger wobbles yesterday, as a tiny fault forced huge swathes of websites offline.

The problem seemed to stem from Cloudflare, the Google-backed reverse-proxy designed to protect websites from nasties, where a Border Gateway Protocol (BGP) routing leak caused some high profile sites to hit the deck yesterday lunchtime (UK time)….

https://www.theinquirer.net/inquirer/news/3077891/cloudflare-blames-widespread-internet-borkage-on-verizon-and-noction

It’s been a rough week for security issues at Dell. A serious security vulnerability in the company’s SupportAssist software was disclosed by cybersecurity firm SafeBreach, and revealed to effect not only Dell machines but also other OEMs which used the rebranded software on their computers. Dell swiftly released a patch for the vulnerability which was made available on Friday. If you have a Dell machine, you should update it straight away…

https://www.digitaltrends.com/web/dell-supportassist-second-vulnerability/