TrickBot Bypasses Secure Email Gateway Using Google Docs Phishing

The Google Docs online word processor is being used by attackers to disseminate TrickBot banking Trojan payloads to unsuspecting victims via executables camouflaged as PDF documents. [...]

https://www.bleepingcomputer.com/news/security/trickbot-bypasses-secure-email-gateway-using-google-docs-phishing/

Microsoft Says Windows 10 1809 Users Can Dismiss 1903 Update Alerts

Microsoft says that Windows 10, version 1809 users who have recently started receiving update notifications to install the Windows 10, version 1903 can dismiss them and update at a later time. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-says-windows-10-1809-users-can-dismiss-1903-update-alerts/

Microsoft Resolves Six Windows 10 1903 Issues, Update Blocks Stay On

Microsoft resolved six Windows 10, version 1903 known issues in the KB4512941 optional cumulative update released on August 30, with compatibility blocks still being enabled for two of them. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-resolves-six-windows-10-1903-issues-update-blocks-stay-on/

Reddit Experiencing Outage Due to Amazon AWS Issue

Some users say they are experiencing problems with Reddit today. Most of them are reporting that they cannot access the website for the social discussion platform. [...]

https://www.bleepingcomputer.com/news/technology/reddit-experiencing-outage-due-to-amazon-aws-issue/

Latest Sextortion Email Scheme Sent by ChaosCC Hacker Group

A new sextortion scam is underway that claims to be from the ChaosCC hacker group who states they infected the recipient's computer with a Trojan that videoed them on adult web sites. [...]

https://www.bleepingcomputer.com/news/security/latest-sextortion-email-scheme-sent-by-chaoscc-hacker-group/

New Microsoft Edge to Retire Flash Using Chrome's Roadmap

Microsoft has announced that the new Microsoft Edge will follow the same Adobe Flash retirement roadmap as Chrome and other chromium-based browsers. [...]

https://www.bleepingcomputer.com/news/microsoft/new-microsoft-edge-to-retire-flash-using-chromes-roadmap/

Windows 10 KB4512941 Update Causing High CPU Usage in Cortana

After installing last week's KB4512941 cumulative update for Windows 10 v1903, some users are reporting that the SearchUI.exe process for Cortana is exhibiting high CPU usage and spikes. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-kb4512941-update-causing-high-cpu-usage-in-cortana/

The Different Types of Windows 10 Updates

Windows as a Service model delivers always up to date Windows 10 experience with the latest features and security update. In this article, we will discuss the different types of Windows 10 updates. [...]

https://www.bleepingcomputer.com/news/microsoft/the-different-types-of-windows-10-updates/

Sodinokibi Ransomware Spreads via Fake Forums on Hacked Sites

A distributor for the Sodinokibi Ransomware is hacking into WordPress sites and injecting JavaScript that displays a fake Q & A forum post over the content of the original site. This fake post contains an "answer" from the site's "admin" that contains a link to the ransomware installer. [...]

https://www.bleepingcomputer.com/news/security/sodinokibi-ransomware-spreads-via-fake-forums-on-hacked-sites/

Cracked Passwords for Poshmark Accounts Being Sold Online

Dehashed login details for customers of Poshmark, an online marketplace for buying and selling used clothes and accessories, have been circulating online following the data breach a few months ago. [...]

https://www.bleepingcomputer.com/news/security/cracked-passwords-for-poshmark-accounts-being-sold-online/

Back to School? Be Careful of Malware Hiding As Textbooks

Searching for textbooks and essays in electronic form on the Internet exposes students to a wide range of malicious attacks as Kaspersky Lab researchers found after analyzing data gathered over the past academic year. [...]

https://www.bleepingcomputer.com/news/security/back-to-school-be-careful-of-malware-hiding-as-textbooks/

Astaroth Trojan Uses Cloudflare Workers to Bypass AV Software

A new malicious campaign is actively distributing a new Astaroth Trojan variant by abusing the Cloudflare Workers serverless computing platform to avoid detection and block automated analysis attempts. [...]

https://www.bleepingcomputer.com/news/security/astaroth-trojan-uses-cloudflare-workers-to-bypass-av-software/

Data of 90K Mastercard Priceless Specials Members Shared Online

A database containing sensitive information of about 90,000 German Mastercard "Priceless Specials" loyalty program members shared online following a breach discovered on August 20 was added to data breach site Have I Been Pwned on September 1. [...]

https://www.bleepingcomputer.com/news/security/data-of-90k-mastercard-priceless-specials-members-shared-online/

Windows 10 Gets a Cloud Reset Feature, Here’s How it Works

The Windows 10 20H1 Update will introduce a new cloud recovery feature that allow users to reset their PC using Windows files downloaded from Microsoft's servers. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-gets-a-cloud-reset-feature-here-s-how-it-works/

Windows 10 1903 May Cause Microsoft Visio to Stall or Hang

Microsoft Visio users may experience delays or stalling while using the app with a keyboard on Windows 10, version 1903 according to an issue published today on the Microsoft 365 Service health dashboard. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-1903-may-cause-microsoft-visio-to-stall-or-hang/

Fake BleachBit Website Built to Distribute AZORult Info Stealer

Cybercriminals are taking advantage of the popularity of the BleachBit disk cleaning tool to spread Azorult information stealer. For this purpose, they created a static web page that purports to be the official website for the utility. [...]

https://www.bleepingcomputer.com/news/security/fake-bleachbit-website-built-to-distribute-azorult-info-stealer/

Nemty Ransomware Gets Distribution from RIG Exploit Kit

The operators of Nemty ransomware appear to have struck a distribution deal to target systems with outdated technology that can still be infected by exploit kits. [...]

https://www.bleepingcomputer.com/news/security/nemty-ransomware-gets-distribution-from-rig-exploit-kit/

USBAnywhere Bugs in Supermicro Servers Allow Remote USB Access

Baseboard management controllers (BMC) of some Supermicro servers are vulnerable to unauthorized virtual USB mounting attacks that can be carried out remotely. [...]

https://www.bleepingcomputer.com/news/security/usbanywhere-bugs-in-supermicro-servers-allow-remote-usb-access/

New Toolkit Pushes Malware via Fake Program Update Alerts in 30 Languages

A new social engineering toolkit called Domen has been discovered that uses fake browser and program update alerts on compromised sites to infect users with malware and remote access software. [...]

https://www.bleepingcomputer.com/news/security/new-toolkit-pushes-malware-via-fake-program-update-alerts-in-30-languages/

Zerodium Makes Android Zero Days More Expensive Than iOS

Exploit broker Zerodium has updated the payouts for eligible zero-day Android and iOS exploits, with rewards for Android 0days having surpassed the ones for iOS for the first time since 2015 when the company was founded. [...]

https://www.bleepingcomputer.com/news/security/zerodium-makes-android-zero-days-more-expensive-than-ios/

XKCD Forum Breach Exposes Emails, Passwords of 562,000 Users

The forums of the XKCD webcomic created by Randall Munroe in 2005 are currently offline after being impacted by a data breach which exposed the information of 561,991 users on July 1. [...]

https://www.bleepingcomputer.com/news/security/xkcd-forum-breach-exposes-emails-passwords-of-562-000-users/