Catalin Cimpanu
Author Bio
Catalin Cimpanu was the Security News Editor for Bleeping Computer from November 2016 to August 2018.
-
Flaws in Smart Irrigation Systems Expose Water Utilities to Botnet-Grade Attacks
Smart water irrigation systems deployed across a city, region, or even a country, can be hijacked by nefarious threat actors who could cause a mass water crisis by forcing these systems to consume more water than usual.
- August 17, 2018
- 01:50 PM
-
0
-
Tutoring Website Makes Users' Passwords Super-Hackable
SuperProf, a website that provides tutoring services on various topics, has acquired a fellow service, The Tutor Pages, and migrated its userbase to its own service.
- August 17, 2018
- 11:25 AM
-
0
-
PHP Deserialization Issue Left Unfixed in WordPress CMS
WordPress CMS installations are vulnerable to a PHP bug related to data unserialization (also known as deserialization), a security researcher has revealed at the start of the month.
- August 17, 2018
- 07:22 AM
-
0
-
Necurs Botnet Pushing New Marap Malware
Security researchers from Proofpoint have discovered a new malware strain that they named Marap and which is currently distributed via massive waves of spam emails carrying malicious attachments (malspam).
- August 17, 2018
- 04:50 AM
-
0
-
Mozilla Removes 23 Firefox Add-Ons That Snooped on Users
Mozilla removed today 23 Firefox add-ons that snooped on users and sent data to remote servers, a Mozilla engineer has told Bleeping Computer today.
- August 16, 2018
- 07:19 PM
-
2
-
Coinhive Raking In Over $250,000 per Month From In-Browser Cryptomining
A research paper published at the start of the month estimates that Coinhive, a service for in-browser cryptocurrency mining, often abused by cyber-criminals, is making around a quarter of a million US dollars per month in mined Monero.
- August 16, 2018
- 05:53 PM
-
0
-
Skim Reaper Device Detects Wide Range of Skimmer Devices
A trio of academics from the University of Florida has developed a device that can detect different types of payment card skimmers —devices developed by cyber-criminals to collect data from credit and debit cards inserted inside ATMs or gas pump card readers.
- August 16, 2018
- 01:56 PM
-
3
-
Two DDoS Friendly Bugs Fixed in Linux Kernel
Maintainers behind the Linux kernel have rolled out patches in the past weeks for two bugs that are just ideal for causing havoc via DDoS attacks.
- August 16, 2018
- 11:41 AM
-
0
-
Academics Discover New Bypasses for Browser Tracking Protections and Ad Blockers
Security and user privacy protections included in browsers, ad blockers, and anti-tracking extensions are not as secure as everyone believes, a team of three academics from the Catholic University in Leuven, Belgium (KU Leuven) have revealed yesterday.
- August 16, 2018
- 06:53 AM
-
3
-
Hackers Steal $13.5 Million Across Three Days From Indian Bank
Representatives of Cosmos Bank, India's second-largest cooperative bank, revealed this week that hackers breached the bank's servers over the weekend and stole over 940 million rupees ($13.5 million) across three days.
- August 15, 2018
- 06:21 PM
-
0
-
Chrome Bug Lets Attackers Steal Web Secrets via Audio or Video HTML Tags
Google has patched a vulnerability in the Chrome browser that allows an attacker to retrieve sensitive information from other sites via audio or video HTML tags.
- August 15, 2018
- 04:35 PM
-
0
-
Firefox Add-On With 220,000+ Installs Caught Collecting Users' Browsing History
A popular Firefox add-on is secretly logging users' browsing history, according to reports from the author of the uBlock Origin ad blocker and Mike Kuketz, a German privacy and security blogger.
- August 15, 2018
- 11:10 AM
-
0
-
Former Microsoft Engineer Gets 18 Months in Prison for Role in Ransomware Scheme
On Monday, a Florida judge sentenced a former Microsoft network engineer to 18 months in prison for his role in helping launder money obtained from victims of the Reveton ransomware.
- August 15, 2018
- 09:35 AM
-
0
-
VORACLE Attack Can Recover HTTP Data From VPN Connections
A new attack named VORACLE can recover HTTP traffic sent via encrypted VPN connections under certain conditions.
- August 14, 2018
- 07:15 PM
-
0
-
Microsoft August 2018 Patch Tuesday Fixes 60 Security Flaws, Including Two Zero-Days
Microsoft's monthly Patch Tuesday security updates are out, and for August 2018, the Redmond-based OS maker has fixed 60 security flaws, including two zero-days under active attacks.
- August 14, 2018
- 04:02 PM
-
0
