Security researchers with Morphisec are warning the BitPaymer ransomware actors have been exploiting a security flaw in the Bonjour updater for the Windows version of Apple iTunes in order to avoid detection by anti-malware solutions on targeted systems. Bonjour contains an “unquoted path vulnerability,” that can enable threat actors to

Microsoft is warning that thousands of computers running Windows have been turned into zombie proxies by Nodersok, a new type of fileless malware. Since July of this year, threat actors have been distributing the malware via online ads that trigger the execution of various malicious files and scripts, which eventually

Researchers with Cylance have uncovered a new hacking campaign that takes advantage of the Windows Narrator app that users can launch from the logon screen before they have entered their credentials. The attackers, who are believed to be operating from China, have developed a malicious version of the app that

The latest version of Windows Defender, the built-in anti-malware solution of Windows 10, is affected by a bug that causes Quick or Full scans to stop running after inspecting only a few files. The flaw is the result of a recent patch issued by Microsoft to solve another issue. It

Almost half of small to mid-sized businesses (SMBs) still use Windows 7, even though Microsoft will stop extended support for this operating system in January of next year (regular support ended in 2015.) In addition, 5% use Windows 8.1, which is receiving extended support until 2023, and 0.4% use Windows

For the second time in a very short period, Microsoft has issued a warning urging organizations to install a security patch for the highly critical BlueKeep security flaw that impacts Remote Desktop Protocol (RDP) implementations on older Windows operating systems. The vulnerability, tracked as CVE-2019-0708, could be used by threat

Earlier this week, we reported that China is developing a custom operating system (OS) for military computers in order to replace the Windows systems currently in use. It now seems that Russia is pursuing a similar strategy, since the Kremlin recently gave the domestically developed Astra Linux operating system the

A recent analysis by Errata Security found that nearly one million devices remain vulnerable to the highly critical BlueKeep security flaw that could be used by threat actors to carry out a massive attack involving a worm, i.e. self-replicating malicious code. The vulnerability, tracked as CVE-2019-0708, impacts Remote Desktop Protocol

A Siemens investigation found that the recently discovered critical Windows security flaw known as BlueKeep impacts various medical devices produced by Siemens Healthineers, a Siemens division. The vulnerability, tracked as CVE-2019-0708, impacts RDP implementations on Windows XP, Windows 7, Windows Server 2003, Windows Server 2008 and other older Windows operating

Threat actors are actively scanning the web looking for Remote Desktop Protocol (RDP) services that are affected by the highly critical BlueKeep security flaw. The vulnerability, tracked as CVE-2019-0708, impacts RDP implementations on Windows XP, Windows 7, Windows Server 2003, Windows Server 2008 and other older Windows operating systems. While