UK School Software Bug Assigns Kids to the Wrong Parents

IT firm Capita has come clean about a bug in the software it supplies to UK schools that has been mismatching kids with the wrong families since December 2017. [...]

https://www.bleepingcomputer.com/news/technology/uk-school-software-bug-assigns-kids-to-the-wrong-parents/

Windows 10, Windows Server 2019 to Get Leap Second Support

Microsoft plans to officially support "leap seconds" in Windows 10 and Windows Server editions, the company has revealed today. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-windows-server-2019-to-get-leap-second-support/

Windows 10 Screen Sketch Update Fixes Blurry Screenshots For Insiders

A new version of the Screen Sketch app has been released that fixes blurry screenshots and an issue with updating the app from the Microsoft Store. This release brings the Screen Sketch app to version 10.1806.1901.0 and is currently only available to Windows Insiders running a preview build. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-screen-sketch-update-fixes-blurry-screenshots-for-insiders/

Vaccine Available for GandCrab Ransomware v4.1.2

AhnLab, a South Korea-based cyber-security firm, has released today a vaccine app that blocks the GandCrab ransomware from taking root and encrypting users' files. [...]

https://www.bleepingcomputer.com/news/security/vaccine-available-for-gandcrab-ransomware-v412/

Router Crapfest: Malware Author Builds 18,000-Strong Botnet in a Day

A malware author has built a huge botnet comprised of over 18,000 routers in the span of only one day. [...]

https://www.bleepingcomputer.com/news/security/router-crapfest-malware-author-builds-18-000-strong-botnet-in-a-day/

Cisco Removes Undocumented Root Password From Bandwidth Monitoring Software

Cisco has released 25 security updates yesterday, including a critical patch for Cisco Policy Suite that removes an undocumented password for the "root" account. [...]

https://www.bleepingcomputer.com/news/security/cisco-removes-undocumented-root-password-from-bandwidth-monitoring-software/

Adult Site Blackmail Spammers made Over $50K in One Week

After examining 42 bitcoin addresses associated with a current extortion scam, it was discovered that over $50,000 USD in payments have been made. [...]

https://www.bleepingcomputer.com/news/security/adult-site-blackmail-spammers-made-over-50k-in-one-week/

Microsoft Launcher Beta for Android Updated With New Features and Animation

Microsoft Launcher Beta for Android is getting a big update today with new features, animations, and other major improvements. If you've enrolled as a beta tester you can download the v4.12 update from today via the Play Store. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-launcher-beta-for-android-updated-with-new-features-and-animation/

Hackers Breach Russian Bank and Steal $1 Million Due to Outdated Router

A notorious hacker group known as MoneyTaker has stolen roughly $1 million from a Russian bank after breaching its network via an outdated router. [...]

https://www.bleepingcomputer.com/news/security/hackers-breach-russian-bank-and-steal-1-million-due-to-outdated-router/

Flaws in Diqee 360 Smart Vacuums Let Hackers Spy on Their Owners

Security researchers from Positive Technologies have released public details on two vulnerabilities affecting Dongguan Diqee 360 smart vacuum cleaners. The two vulnerabilities allow an attacker to run malicious code on a device with superuser privileges and effectively take over the vacuum. [...]

https://www.bleepingcomputer.com/news/security/flaws-in-diqee-360-smart-vacuums-let-hackers-spy-on-their-owners/

Microsoft Releases Huge OneNote Update for Windows 10

Microsoft has released a huge update for the Windows 10 OneNote app that introduces a slew of new features for general public and Windows Insiders. With this new update, Microsoft is adding the live tile improvements such as a title to create a new note, new pasting options, built-in translator  and more. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-huge-onenote-update-for-windows-10/

Microsoft Says It Blocked Attempts at Hacking Midterm Campaigns

Speaking at the Aspen Security Forum today, Microsoft said it already blocked the first attempts of a Russian threat actor at hacking into the campaigns of three congressional candidates participating in the 2018 midterm elections. [...]

https://www.bleepingcomputer.com/news/government/microsoft-says-it-blocked-attempts-at-hacking-midterm-campaigns/

Google User Content CDN Used for Malware Hosting

Hackers are hiding malicious code inside the metadata fields of images hosted on Google's official CDN (content delivery network) —googleusercontent.com. [...]

https://www.bleepingcomputer.com/news/security/google-user-content-cdn-used-for-malware-hosting/

Droppers Is How Android Malware Keeps Sneaking Into the Play Store

For the past year, Android malware authors have been increasingly relying on a solid trick for bypassing Google's security scans and sneaking malicious apps into the official Play Store. [...]

https://www.bleepingcomputer.com/news/security/droppers-is-how-android-malware-keeps-sneaking-into-the-play-store/

Hackers Stole a Third of Singapore's Healthcare Data, Including Prime Minister's

Singapore's Ministry of Health (MOH) revealed today that a hacker had breached its IT systems and stolen personal and health-related data on roughly 1.5 million citizens. [...]

https://www.bleepingcomputer.com/news/security/hackers-stole-a-third-of-singapores-healthcare-data-including-prime-ministers/

Microsoft To-Do for Android and iOS Updated With New Features

The Microsoft To-Do app was recently updated on Windows 10 with the star feature and today a new update is rolling out to Android and iOS versions with similar changes. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-to-do-for-android-and-ios-updated-with-new-features/

Half a Billion IoT Devices Vulnerable to DNS Rebinding Attacks

Armis, the cyber-security firm that discovered the BlueBorne vulnerabilities in the Bluetooth protocol, warns that nearly half a billion of today's "smart" devices are vulnerable to a decade-old attack known as DNS rebinding. [...]

https://www.bleepingcomputer.com/news/security/half-a-billion-iot-devices-vulnerable-to-dns-rebinding-attacks/

Microsoft Trying to Fix the Windows 10 App Gap Ahead of Andromeda

In order to achieve a successful launch of Andromeda, Microsoft first needs to fix the "app gap" issue affecting Windows 10. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-trying-to-fix-the-windows-10-app-gap-ahead-of-andromeda/

Researchers Discover Calisto, a Precursor to Dangerous Proton macOS Malware

Security researchers have discovered a precursor of the notorious Proton macOS malware. This supposed precursor appears to have been developed back in 2016, a year before Proton, and uploaded on VirusTotal, where it remained undetected for nearly two years until May 2018, when Kaspersky researchers stumbled upon it. [...]

https://www.bleepingcomputer.com/news/security/researchers-discover-calisto-a-precursor-to-dangerous-proton-macos-malware/

The Week in Ransomware - July 20th 2018 - Developer's Vent, Ransomware Attacks, and More

While it has been pretty slow for new ransomware this week, there was a quite a bit of ransomware related news such as the LabCorp attack being a ransomware infection, Magniber branching out, and a ransomware dev venting on Twitter. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-july-20th-2018-developers-vent-ransomware-attacks-and-more/

Microsoft, Google, Facebook, Twitter Announce "Data Transfer Project"

Facebook, Google, Microsoft, and Twitter have announced on Friday, July 20, the Data Transfer Project (DTP), an initiative to create an open-source, service-to-service data portability platform so that users of their sites and others can easily migrate data from one platform to another. [...]

https://www.bleepingcomputer.com/news/technology/microsoft-google-facebook-twitter-announce-data-transfer-project/