Bleeping Computer

Last updated

Bleeping Computer
Bleeping Computer logo.png
Type of site
Technology news and computer help
Available inEnglish
OwnerBleeping Computer LLC.
Created byLawrence Abrams
URL www.bleepingcomputer.com
RegistrationOptional
Launched26 January 2004;20 years ago (2004-01-26) [1]
Current statusOnline

Bleeping Computer is a website covering technology news and offering free computer help via its forums that was created by Lawrence Abrams in 2004. [2] It publishes news focusing heavily on cybersecurity, but also covers other topics including computer software, computer hardware, operating system and general technology.

Contents

In 2018, Bleeping Computer was added as an associate partner to the Europol NoMoreRansom project [3] for the ransomware information and decryption tools provided by the site.

History

BleepingComputer was founded in 2004 after Abrams could not find existing technical support sites that could offer easy-to-understand instructions for his friends and family. [2]

The domain name bleepingcomputer.com originates from the sounds made by a broken computer and because a user might want to curse at a computer when it does not work properly. [2]

Since the CryptoLocker ransomware attack in September 2013, and a subsequent DDoS of the site due to its reporting on the new malware, [4] Bleeping Computer has been reporting on new ransomware families as they are released. [5]

Content

The articles published at Bleeping Computer are categorized as news articles, tutorials and virus removal guides. Its content includes searchable databases for looking up Windows start-up programs and uninstall entries, as well as a free Internet forum to receive computer help.

The site covers news released by researchers and companies, but also performs in-house investigative reporting [6] and analysis of ransomware [7] and malware. [8]

Free decryptors to unlock files encrypted by various ransomware families have been released through the forums or the site's news section by third-party researchers. [9]

Government agencies have included Bleeping Computer cybersecurity articles and analysis in numerous advisories. [10] [11]

Bleeping Computer's reporting has been cited by major media that cover technology and IT security news. [12]

The site used to offer a malware removal training program [13] through its forums that teaches volunteers how to remove Windows infections using various tools, including Combofix, HijackThis, DDS, [14] OTL, GMER, Malwarebytes' Anti-Malware and Rkill, [15] developed by Abrams.

In October 2020, there were over 840,000 registered members on the site.[ citation needed ]

In early February 2016, Enigma Software, the developers of the anti-malware suite SpyHunter , filed a lawsuit [16] against Bleeping Computer in response to a negative review of SpyHunter, alleging a campaign to damage the reputation of their company and product. [17] Bleeping Computer requested financial aid from its readers to help pay legal fees arising from the lawsuit. [18] At the beginning of August 2016, Bleeping Computer filed [19] its own lawsuit against Enigma Software for an alleged long-running smear campaign against Bleeping Computer. [19] The lawsuit against BleepingComputer ended in settlement, with BleepingComputer removing Quietman7's posts on Enigma Software's product. [20]

See also

Related Research Articles

Ransomware is a type of cryptovirological malware that permanently block access to the victim's personal data unless a ransom is paid. While some simple ransomware may lock the system without damaging any files, more advanced malware uses a technique called cryptoviral extortion. It encrypts the victim's files, making them inaccessible, and demands a ransom payment to decrypt them. In a properly implemented cryptoviral extortion attack, recovering the files without the decryption key is an intractable problem, and difficult-to-trace digital currencies such as paysafecard or Bitcoin and other cryptocurrencies are used for the ransoms, making tracing and prosecuting the perpetrators difficult.

Cryptovirology refers to the study of cryptography use in malware, such as ransomware and asymmetric backdoors. Traditionally, cryptography and its applications are defensive in nature, and provide privacy, authentication, and security to users. Cryptovirology employs a twist on cryptography, showing that it can also be used offensively. It can be used to mount extortion based attacks that cause loss of access to information, loss of confidentiality, and information leakage, tasks which cryptography typically prevents.

<span class="mw-page-title-main">Bitdefender</span> Romanian cybersecurity technology company

Bitdefender is a Romanian cybersecurity technology company headquartered in Bucharest, Romania, with offices in the United States, Europe, Australia and the Middle East.

<span class="mw-page-title-main">Malvertising</span> Use of online advertisement or advertising to spread malware

Malvertising is the use of online advertising to spread malware. It typically involves injecting malicious or malware-laden advertisements into legitimate online advertising networks and webpages. Because advertising content can be inserted into high-profile and reputable websites, malvertising provides malefactors an opportunity to push their attacks to web users who might not otherwise see the ads, due to firewalls, more safety precautions, or the like. Malvertising is "attractive to attackers because they 'can be easily spread across a large number of legitimate websites without directly compromising those websites'."

The CryptoLocker ransomware attack was a cyberattack using the CryptoLocker ransomware that occurred from 5 September 2013 to late May 2014. The attack utilized a trojan that targeted computers running Microsoft Windows, and was believed to have first been posted to the Internet on 5 September 2013. It propagated via infected email attachments, and via an existing Gameover ZeuS botnet. When activated, the malware encrypted certain types of files stored on local and mounted network drives using RSA public-key cryptography, with the private key stored only on the malware's control servers. The malware then displayed a message which offered to decrypt the data if a payment was made by a stated deadline, and it threatened to delete the private key if the deadline passes. If the deadline was not met, the malware offered to decrypt data via an online service provided by the malware's operators, for a significantly higher price in bitcoin. There was no guarantee that payment would release the encrypted content.

TeslaCrypt was a ransomware trojan. It is now defunct, and its master key was released by the developers.

SpyHunter is an anti-spyware computer program for the Microsoft Windows operating system. It is designed to remove malware, such as trojan horses, computer worms, rootkits, and other malicious software.

<span class="mw-page-title-main">WannaCry ransomware attack</span> 2017 worldwide ransomware cyberattack

The WannaCry ransomware attack was a worldwide cyberattack in May 2017 by the WannaCry ransomware cryptoworm, which targeted computers running the Microsoft Windows operating system by encrypting data and demanding ransom payments in the Bitcoin cryptocurrency. It propagated by using EternalBlue, an exploit developed by the United States National Security Agency (NSA) for Windows systems. EternalBlue was stolen and leaked by a group called The Shadow Brokers a month prior to the attack. While Microsoft had released patches previously to close the exploit, much of WannaCry's spread was from organizations that had not applied these, or were using older Windows systems that were past their end-of-life. These patches were imperative to cyber security, but many organizations did not apply them, citing a need for 24/7 operation, the risk of formerly working applications breaking because of the changes, lack of personnel or time to install them, or other reasons.

<span class="mw-page-title-main">Petya (malware family)</span> Family of encrypting ransomware discovered in 2016

Petya is a family of encrypting malware that was first discovered in 2016. The malware targets Microsoft Windows–based systems, infecting the master boot record to execute a payload that encrypts a hard drive's file system table and prevents Windows from booting. It subsequently demands that the user make a payment in Bitcoin in order to regain access to the system.

<span class="mw-page-title-main">Kirk Ransomware</span> Ransomware malware, discovered in 2017

Kirk Ransomware, or Kirk, is malware. It encrypts files on an infected computer and demands payment for decryption in the cryptocurrency Monero. The ransomware was first discovered in 2017, by Avast researcher Jakub Kroustek.

REvil was a Russia-based or Russian-speaking private ransomware-as-a-service (RaaS) operation. After an attack, REvil would threaten to publish the information on their page Happy Blog unless the ransom was received. In a high profile case, REvil attacked a supplier of the tech giant Apple and stole confidential schematics of their upcoming products. In January 2022, the Russian Federal Security Service said they had dismantled REvil and charged several of its members.

Trickbot is a trojan for Microsoft Windows and other operating systems. Its major function was originally the theft of banking details and other credentials, but its operators have extended its capabilities to create a complete modular malware ecosystem.

Ryuk is a type of ransomware known for targeting large, public-entity Microsoft Windows cybersystems. It typically encrypts data on an infected system, rendering the data inaccessible until a ransom is paid in untraceable bitcoin. Ryuk is believed to be used by two or more criminal groups, most likely Russian, who target organizations rather than individual consumers.

Emsisoft Ltd. is a New Zealand-based anti-virus software distributed company. They are notable for decrypting ransomware attacks to restore data.

Hive was a ransomware as a service (RaaS) operation carried out by the eponymous cybercrime organization between June 2021 and January 2023. The group's purpose was to attack mainly public institutions to subsequently demand ransom for release of hijacked data.

Clop is a cybercriminal organization known for its multilevel extortion techniques and global malware distribution. It has extorted more than $500 million in ransom payments, targeting major organizations worldwide. Clop gained notoriety in 2019 and has since conducted high-profile attacks, using large-scale phishing campaigns and sophisticated malware to infiltrate networks and demand ransom, threatening to expose data if demands are not met.

<span class="mw-page-title-main">Lockbit</span> Criminal hacking organization

LockBit is a cybercriminal group proposing ransomware as a service (RaaS). Software developed by the group enables malicious actors who are willing to pay for using it to carry out attacks in two tactics where they not only encrypt the victim's data and demand a ransom but also threaten to leak it if their demands are not met.

Royal is a cybercriminal ransomware organization known for its aggressive targeting, its high ransom demands, and its use of double extortion. Royal does not use affiliates.

BlackCat, also known as ALPHV and Noberus is a ransomware family written in Rust, that made its first appearance in November 2021. By extension, it's also the name of the threat actor(s) that exploit it.

References

  1. "Bleeping Computer Technical Support Forums". Bleeping Computer. Archived from the original on 1 October 2018. Retrieved 19 September 2018.
  2. 1 2 3 "Behind the scenes of a free PC troubleshooting helpsite: Interview with BleepingComputer". Emsisoft | Security Blog. 17 February 2016. Archived from the original on 13 October 2020. Retrieved 7 October 2020.
  3. "Join the global 'No More Ransom' initiative to help more victims fight back". Europol. Archived from the original on 11 June 2020. Retrieved 11 June 2020.
  4. "Information regarding October 10th's DDOS attack". BleepingComputer. Archived from the original on 23 April 2023. Retrieved 7 October 2020.
  5. "Articles tagged with Ransomware". BleepingComputer. Archived from the original on 22 September 2020. Retrieved 8 October 2020.
  6. "Garmin outage caused by confirmed WastedLocker ransomware attack". BleepingComputer. Archived from the original on 27 September 2020. Retrieved 7 October 2020.
    - "Canon confirms ransomware attack in internal memo". BleepingComputer. Archived from the original on 13 October 2020. Retrieved 7 October 2020.
  7. "DarkSide: New targeted ransomware demands million dollar ransoms". BleepingComputer. Archived from the original on 20 September 2020. Retrieved 7 October 2020.
  8. "Fake VPN Site Pushes CryptBot and Vidar Info-Stealing Trojans". BleepingComputer. Archived from the original on 29 January 2021. Retrieved 7 October 2020.
  9. "TeslaDecoder released to decrypt .EXX, .EZZ, .ECC files encrypted by TeslaCrypt". BleepingComputer. Archived from the original on 13 November 2020. Retrieved 7 October 2020.
    - "ECh0raix Ransomware Decryptor Restores QNAP Files For Free". BleepingComputer. Archived from the original on 7 November 2020. Retrieved 7 October 2020.
    - "Windows Ransomware Decryptors Downloads". BleepingComputer. Archived from the original on 11 November 2020. Retrieved 7 October 2020.
  10. "Petya Ransomware". CISA. 15 February 2018. Archived from the original on 14 October 2020. Retrieved 7 October 2020.
    - "Microsoft Operating Systems BlueKeep Vulnerability". CISA. 17 June 2019. Archived from the original on 15 October 2020. Retrieved 7 October 2020.
    - "Customer Alerts: Frauds and Scams". US Treasury. Archived from the original on 16 October 2020. Retrieved 7 October 2020.
    - "Cybersecuritybeeld Nederland CSBN 2019" (PDF) (in Dutch). Nationaal Coördinator Terrorismebestrijding en Veiligheid. Retrieved 6 January 2019.
    - "LokiBot Malware". CISA. Archived from the original on 2 October 2020. Retrieved 7 October 2020.
  11. "Emotet Malware". CISA. Archived from the original on 7 October 2020. Retrieved 7 October 2020.
  12. "Easy-to-use ransomware code discovered". BBC News. 4 January 2016. Archived from the original on 27 November 2018. Retrieved 21 June 2018.
    - Turkel, Dan (9 January 2016). "Hackers are now offering 'customer support' to the victims they extort money from". Business Insider. Archived from the original on 15 November 2016. Retrieved 14 November 2016.
    - Storm, Darlene (10 August 2016). "Thugs developing cat-themed ransomware for Androids and Hitler ransomware for PCs". Computer World. Archived from the original on 15 November 2016. Retrieved 14 November 2016.
    - "Cybercrime Gets Personal". Time. Archived from the original on 10 May 2017. Retrieved 23 May 2017.
    - Smith, Ms. (27 September 2016). "Ransomware targets government, others honor Donald Trump and Voldemort". Network World. Archived from the original on 15 November 2016. Retrieved 14 November 2016.
    - "Malware Uses Fake PCMag Review as 'Proof'". PCMag. Archived from the original on 8 September 2017. Retrieved 24 August 2017.
    - Chokshi, Niraj (22 May 2019). "Hackers Are Holding Baltimore Hostage: How They Struck and What's Next" . The New York Times. ISSN   0362-4331. Archived from the original on 4 October 2020. Retrieved 7 October 2020.
    - Bajak, Frank. "Garmin acknowledges cyberattack, doesn't mention ransomware". Washington Post. Associated Press. ISSN   0190-8286 . Retrieved 7 October 2020.
    - Crothers, Brooke (5 December 2019). "Smith & Wesson targeted in cyberattack, report says". Fox News. Archived from the original on 10 October 2020. Retrieved 7 October 2020.
    - "Cognizant hit by 'Maze' ransomware attack". Reuters. 19 April 2020. Archived from the original on 23 September 2020. Retrieved 7 October 2020.
    - Stanglin, Doug. "N.C. county rejects hackers' $26K ransom demand to unlock infected computers". USA Today. Archived from the original on 9 October 2020. Retrieved 7 October 2020.
  13. Elise. "Malware Removal Training Program - Virus, Trojan, Spyware, and Malware Removal Help". BleepingComputer. Archived from the original on 20 December 2021. Retrieved 7 October 2020.
  14. "Am I Infected? What do I do? How do I get help? Who is helping me? - Am I infected? What do I do?". Bleeping Computer. Archived from the original on 2 February 2013. Retrieved 19 September 2018.
  15. "RKill - What it does and What it Doesn't - A brief introduction to the program - Anti-Virus, Anti-Malware, and Privacy Software". Bleeping Computer. Archived from the original on 23 September 2018. Retrieved 19 September 2018.
  16. "Enigma Software sues BleepingComputer for a smear campaign". Digital Trends. 8 February 2016. Archived from the original on 16 March 2016. Retrieved 16 March 2016.
  17. Smith, Ms. (3 February 2016). "BleepingComputer under free speech attack as SpyHunter makers sue over bad review". Network World. Archived from the original on 10 March 2016. Retrieved 16 March 2016.
  18. "Help BleepingComputer Defend Freedom of Speech". BleepingComputer. Archived from the original on 17 March 2016. Retrieved 16 March 2016.
  19. 1 2 "BleepingComputer's lawsuit document" (PDF). Bleepstatic. Archived (PDF) from the original on 20 August 2016. Retrieved 10 August 2016.
  20. Abrams, Lawrence (1 March 2017). "Press Release". BleepingComputer. Archived from the original on 7 April 2017. Retrieved 22 September 2017.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.