Tag: campaign

Microsoft Word 0-day used to push dangerous Dridex malware on millions

Enlarge / A sample e-mail from Dridex campaign exploiting Microsoft Word zero-day. (credit: Proofpoint) Booby-trapped documents exploiting a critical zero-day vulnerability in Microsoft Word have been sent to millions of people around the world in a blitz aimed at installing Dridex, currently one of the most dangerous bank fraud threats on the Internet. As Ars reported on Saturday, the vulnerability is notable because it bypasses exploit mitigations built into Windows, doesn’t require targets to enable macros, and works even against Windows 10, which is widely considered Microsoft’s most secure operating system ever. The flaw is known to affect most or all Windows versions of Word, but so far no one has ruled out that exploits might also be possible against Mac versions. Researchers from security firms McAfee and FireEye warned that the malicious Word documents are being attached to e-mails but didn’t reveal the scope or ultimate objective of the campaign. In a blog post published Monday night , researchers from Proofpoint filled in some of the missing details, saying the exploit documents were sent to millions of recipients across numerous organizations that were primarily located in Australia. Proofpoint researchers wrote: Read 2 remaining paragraphs | Comments

Continued here:
Microsoft Word 0-day used to push dangerous Dridex malware on millions

Hackers who took control of PC microphones siphon >600 GB from 70 targets

Enlarge (credit: Defense Advanced Research Projects Agency ) Researchers have uncovered an advanced malware-based operation that siphoned more than 600 gigabytes from about 70 targets in a broad range of industries, including critical infrastructure, news media, and scientific research. The operation uses malware to capture audio recordings of conversations, screen shots, documents, and passwords, according to a blog post published last week by security firm CyberX. Targets are initially infected using malicious Microsoft Word documents sent in phishing e-mails. Once compromised, infected machines upload the pilfered audio and data to Dropbox, where it’s retrieved by the attackers. The researchers have dubbed the campaign Operation BugDrop because of its use of PC microphones to bug targets and send the audio and other data to Dropbox. “Operation BugDrop is a well-organized operation that employs sophisticated malware and appears to be backed by an organization with substantial resources,” the CyberX researchers wrote. “In particular, the operation requires a massive back-end infrastructure to store, decrypt, and analyze several GB per day of unstructured data that is being captured from its targets. A large team of human analysts is also required to manually sort through captured data and process it manually and/or with Big Data-like analytics.” Read 7 remaining paragraphs | Comments

View post:
Hackers who took control of PC microphones siphon >600 GB from 70 targets

‘Left 4 Dead’ creator releases an unfinished campaign

Now that Turtle Rock Studios is no longer working on Evolve , it has some time on its hands… and it’s giving veteran gamers a treat. If you have a PC copy of the original Left 4 Dead (one of Turtle Rock’s best-known games), you can now install Dam It , an unfinished but playable free campaign that was meant to connect two of the shipping game’s stories ( Dead Air and Blood Harvest ). You start at an airfield and have to make your way through an apple orchard, a ravine, a covered bridge and a campground before a climactic fight at the campaign’s namesake hydroelectric dam. Unlike most other L4D tales, you’re actually encouraged to split up — you just need to stay close enough to offer support in a pinch. When Turtle Rock says “unfinished, ” it means just that. A panic event doesn’t work as intended, zombies don’t always behave as they should and graphics are rough around the edges. You do get two stand-alone survival maps on top of Dam It , though, and the core experience will no doubt be familiar. It’s not the Left 4 Dead 3 you might be hoping for (seriously, Valve, make it happen), but it’s definitely a taste of what the first title could have been like. Via: Polygon Source: Auger Resources

Read More:
‘Left 4 Dead’ creator releases an unfinished campaign

The Nebia Showerhead Atomizes Your Shower Water

Five years in the making, the Nebia showerhead is designed to get more water onto your body while reducing the actual amount you’re using. How does it do that? Science. The Nebia is the brainchild of Carlos Gomez Andonaegui, who ran a health club in Mexico City. He observed that running all of those showers was consuming a lot of water; after attacking the problem with his father, a retired engineer, they conceived of a showerhead that could effectively atomize the water. During the subsequent years of development, thermofluid experts were brought in to refine the design. The result is that the Nebia increases the surface area of the agua by a factor of 10, while using less than a third of the stuff! Consumers are clearly interested; the Kickstarter campaign is well past its $100, 000 goal with nearly $2.6 million in funding, and nearly every Early Bird special is gone. What’s also interesting is that five pledgers have opted for the $10, 000 package to receive 40 Nebias each, indicating that someone who runs an apartment complex, health club or similar has taken note. The water savings, of course, scales up: With 14 days left in the campaign, here’s still a pledging option available to receive a single Nebia for $299, expected to retail for $399 when it comes out next year. I do wonder a bit about the installation: Those of you with plumbing experience, or experience designing plumbing fixtures, do you reckon the press-fit shown in the video will be strong enough to both support the weight of the device over time, and provide a leak-free seal? And whatever gasket or grommet is serving to provide the internal seal is bound to wear out over time; I think I’d be tempted to caulk-tack the back of the unit into place against the tiles, but I suppose it would need to be ripped off to replace the gasket or grommet. Any thoughts?

See more here:
The Nebia Showerhead Atomizes Your Shower Water