FBI Warns Govt Agencies, SMBs to Defend Against E-Skimming Threats

The U.S. Federal Bureau of Investigation (FBI) issued a warning to increase awareness on current e-skimming threats targeting both small and medium-sized businesses and government agencies that process online payments, as well as defense tips to fend them off. [...]

https://www.bleepingcomputer.com/news/security/fbi-warns-govt-agencies-smbs-to-defend-against-e-skimming-threats/

FBI Updates Initiative to Protect U.S. Elections from Cyberattacks

FBI has updated and expanded the resources and tools designed to help political campaigns, private businesses, and individuals to better understand and mitigate risks posed by foreign entities' cyber intrusions and disinformation efforts during the 2020 U.S. election season. [...]

https://www.bleepingcomputer.com/news/security/fbi-updates-initiative-to-protect-us-elections-from-cyberattacks/

Discord Turned Into an Info-Stealing Backdoor by New Malware

A new malware is targeting Discord users by modifying the Windows Discord client so that it is transformed into a backdoor and an information-stealing Trojan. [...]

https://www.bleepingcomputer.com/news/security/discord-turned-into-an-info-stealing-backdoor-by-new-malware/

FTC Issues Guidance On Protecting Against SIM Swap Attacks

The U.S. Federal Trade Commission (FTC) issued guidance on how to protect yourself from SIM swapping attacks used by scammers to take control of your phone number, to bypass SMS-based multi-factor authentication (MFA) on your account, and steal your credentials. [...]

https://www.bleepingcomputer.com/news/security/ftc-issues-guidance-on-protecting-against-sim-swap-attacks/

Hacker Plants Keylogger Devices on Company Systems Faces 12yr in Jail

A hacker admitted to planting hardware keyloggers on computers belonging to two companies to get unauthorized to their networks and steal proprietary data. He now faces 12 years of prison time. [...]

https://www.bleepingcomputer.com/news/security/hacker-plants-keylogger-devices-on-company-systems-faces-12yr-in-jail/

Android Apps Identify Google IPs to Delay Malicious Behavior

Dozens of Android apps designed to flood phone screens with ads hide their malicious behavior when a Google IP is detected. Collectively, they were installed 8 million times. [...]

https://www.bleepingcomputer.com/news/security/android-apps-identify-google-ips-to-delay-malicious-behavior/

iOS Clicker Trojan Malware Found in 17 Apps in Apple's App Store

More than a dozen iOS apps infected with clicker Trojan malware and distributed via the Apple App Store were found to perform ad fraud-related tasks in the background, using the command and control servers of a similar Android ad fraud campaign. [...]

https://www.bleepingcomputer.com/news/security/ios-clicker-trojan-malware-found-in-17-apps-in-apples-app-store/

Cash App Scammers Deal Their Cons on Twitter, Instagram, YouTube

Fraudsters taking advantage of the legitimate 'free money' campaigns for the Cash App peer-to-peer payment service target users Twitter, Instagram, and YouTube with fake promises of financial gains. [...]

https://www.bleepingcomputer.com/news/security/cash-app-scammers-deal-their-cons-on-twitter-instagram-youtube/

Microsoft Phishing Attacks Target United Nations and Charities

An ongoing phishing campaign is targeting the United Nations and several humanitarian aid organizations including UNICEF and UN World Food using landing pages impersonating legitimate Microsoft Office 365 login pages. [...]

https://www.bleepingcomputer.com/news/security/microsoft-phishing-attacks-target-united-nations-and-charities/

Windows 10 1903 KB4522355 Update Released with Start Menu Fixes

Microsoft has released the KB4522355 cumulative update for Windows 10 1903 (May 2019 Update) that introduces a variety of quality improvements and bug fixes. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-1903-kb4522355-update-released-with-start-menu-fixes/

GitLab Backtracks on Forced Tracking After Negative Feedback

GitLab, the provider of a web-based DevOps platform, reversed course on its decision to implement product usage tracking in the form of third-party telemetry for paying customers who use the company's proprietary products. [...]

https://www.bleepingcomputer.com/news/security/gitlab-backtracks-on-forced-tracking-after-negative-feedback/

How To Fix "Aw Snap!" Crash in Google Chrome 78

Google Chrome updated to version 78 a few days ago and some users have been experiencing "Aw, Snap!" crashes instead of the promised features. [...]

https://www.bleepingcomputer.com/news/google/how-to-fix-aw-snap-crash-in-google-chrome-78/

Ransomware Attack Shuts Down City of Johannesburg's Systems

The City of Johannesburg municipality shut down the website, its e-services platform, and the billing system (SAP ISU and CRM) following a ransomware attack that also led to unauthorized information access according to a ransom note. [...]

https://www.bleepingcomputer.com/news/security/ransomware-attack-shuts-down-city-of-johannesburgs-systems/

Microsoft Fixes Windows 10 1903 Network Issue, Update Block Stays

Microsoft resolved a Windows 10, version 1903 known issue in the KB4522355 cumulative update released yesterday, an issue that would prevent devices with some Intel and Broadcom Wi-Fi adapters from using any wireless connections. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-10-1903-network-issue-update-block-stays/

P&G Online Beauty Store Hacked to Steal Payment Info

Hackers in May planted an e-skimmer on Procter & Gamble's site First Aid Beauty and it was still stealing payment card data today. This particular MageCart script selects its victims from the US. [...]

https://www.bleepingcomputer.com/news/security/pandg-online-beauty-store-hacked-to-steal-payment-info/

Office 365 Enables ARC for Enhanced Anti-Spoofing Detection

Microsoft has enabled Authenticated Received Chain (ARC) for all for Office 365 hosted mailboxes to improve anti-spoofing detection and to check authentication results within Office 365. [...]

https://www.bleepingcomputer.com/news/microsoft/office-365-enables-arc-for-enhanced-anti-spoofing-detection/

7.5 Million Records of Adobe Creative Cloud User Data Exposed

Adobe secured a database with 7.5 million records belonging to Adobe Creative Cloud users. The cache was not protected in any way, allowing anyone access to client information if they knew how to find it. [...]

https://www.bleepingcomputer.com/news/security/75-million-records-of-adobe-creative-cloud-user-data-exposed/

New FuxSocy Ransomware Impersonates the Notorious Cerber

A new ransomware has been discovered called FuxSocy that borrows much of its behavior from the notorious and now-defunct Cerber Ransomware. [...]

https://www.bleepingcomputer.com/news/security/new-fuxsocy-ransomware-impersonates-the-notorious-cerber/

The Week in Ransomware - October 25th 2019 - Two Week Edition

In this special two week edition of the Week in Ransomware, we have a ton of news ranging from ransomware attacks, new REvill affiliate information, and new ransomware targeting the enterprise. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-october-25th-2019-two-week-edition/

How to Get the Windows 10 November 2019 Update Now

Microsoft has officially announced the Windows 10 November 2019 Update and it's reportedly arriving in the second week of November. If you do not want to wait until then, there are ways to install it now, which we will explain in this article. [...]

https://www.bleepingcomputer.com/news/microsoft/how-to-get-the-windows-10-november-2019-update-now/

TrialWorks Ransomware Attack Disrupts Court Cases and Deadlines

TrialWorks, one of the top-rated providers of legal case management software for law firms and attorneys, became the victim of a ransomware attack earlier this month. [...]

https://www.bleepingcomputer.com/news/security/trialworks-ransomware-attack-disrupts-court-cases-and-deadlines/