Chrome 79 Released With Security Improvements, Proactive Tab Freeze, and More

Google has released Chrome 79 today, December 10th, 2019, to the Stable desktop channel and it comes with bug fixes, new features, and 51 security fixes. Included are new features such as Tab Freeze, back-forward cache, and security enhancements such as improved phishing protection and compromised password alerts. [...]

https://www.bleepingcomputer.com/news/google/chrome-79-released-with-security-improvements-proactive-tab-freeze-and-more/

Windows 7 to Show Full-Screen Windows 10 Upgrade Alerts

When Windows 7 reaches end of support, the operating system will display a full screen warning stating that Windows is more vulnerable to viruses and that you should upgrade to Windows 10. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-7-to-show-full-screen-windows-10-upgrade-alerts/

Batch of 460,000+ Payment Cards Sold on Black Market Forum

Researchers monitoring activity on underground markets found that more than 460,000 payment card records were offered for sale in two days on a popular forum where such data is being traded. [...]

https://www.bleepingcomputer.com/news/security/batch-of-460-000-payment-cards-sold-on-black-market-forum/

Microsoft Office December Security Updates Fix Remote Execution Bugs

Microsoft released the December 2019 Office security updates, bundling a total of 16 security updates and five cumulative updates for five different products, three of them patching flaws allowing remote code execution. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-office-december-security-updates-fix-remote-execution-bugs/

Domain Takeover at Gunpoint Gets Influencer 14 Years in Jail

Social media influencer Rossi Lorathio Adams II was sentenced to 14 years in federal prison for plotting an Internet domain hijacking at gunpoint and an armed home invasion with his cousin Sherman Hopkins, Jr. [...]

https://www.bleepingcomputer.com/news/security/domain-takeover-at-gunpoint-gets-influencer-14-years-in-jail/

Lazarus Hackers Use TrickBot to Infect High-End Victims

Security researchers analyzing infections from TrickBot trojan found an interesting artifact that points to a connection to the Lazarus group of hackers associated with North Korea. [...]

https://www.bleepingcomputer.com/news/security/lazarus-hackers-use-trickbot-to-infect-high-end-victims/

Microsoft Pulls December 10 Office 365 Client Updates From Catalog

Microsoft pulled multiple Office 365 client updates released on December 10 from the Update Catalog after customers weren't able to download them through the Microsoft System Center Configuration Manager. [...]

https://www.bleepingcomputer.com/news/security/microsoft-pulls-december-10-office-365-client-updates-from-catalog/

Zeppelin Ransomware Targets Healthcare and IT Companies

A new variant of the VegaLocker/Buran Ransomware called Zeppelin has been spotted infecting U.S. and European companies via targeted installs. [...]

https://www.bleepingcomputer.com/news/security/zeppelin-ransomware-targets-healthcare-and-it-companies/

“Aw Snap!” Crash Makes a Comeback in Chrome 79

Google Chrome users are complaining once more of "Aw Snap!" crashes as the Code Integrity feature got re-enabled in the latest version of the browser, released yesterday. [...]

https://www.bleepingcomputer.com/news/google/-aw-snap-crash-makes-a-comeback-in-chrome-79/

Microsoft Threat Protection Released in Public Preview

Microsoft says that the integrated Microsoft Threat Protection is now available in public preview, adding automated threat response to stop attacks in their tracks, as well as self-healing for compromised devices, user identities, and mailboxes. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-threat-protection-released-in-public-preview/

Maze Ransomware Behind Pensacola Cyberattack, $1M Ransom Demand

The operators behind the Maze Ransomware have claimed responsibility for the cyberattack affecting the City of Pensacola, Florida, but state that they are not affiliated with the recent shooting at NAS Pensacola. [...]

https://www.bleepingcomputer.com/news/security/maze-ransomware-behind-pensacola-cyberattack-1m-ransom-demand/

Gmail Now Lets You Forward Emails as Attachments

Google has added a new feature to Gmail that allows you to forward an existing email, or multiple emails, as attachments. This lets the recipient open the attached email and see it in its original form with full mail headers. [...]

https://www.bleepingcomputer.com/news/google/gmail-now-lets-you-forward-emails-as-attachments/

Ransomware Hits Florida PRIDE On Saturday, Systems Still Down

Prison Rehabilitative Industries and Diversified Enterprises Inc (PRIDE) was hit by a ransomware attack on Saturday, December 7. The nonprofit organization's website and affected systems are still down. [...]

https://www.bleepingcomputer.com/news/security/ransomware-hits-florida-pride-on-saturday-systems-still-down/

Microsoft Office 365 to Add Reply-All Mail Storm Protection

Microsoft is planning to add protection against Reply-All email storms to Office 365, an issue affecting customers that are members of improperly locked down mail distribution lists. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-office-365-to-add-reply-all-mail-storm-protection/

Hundreds of Counterfeit Sneaker Sites Hacked to Steal Credit Cards

As the craze for the latest Off-White, Nike, and Adidas sneakers heats up, sites selling counterfeit kicks have popped up to capitalize on sneakerheads searching for the best deal. To make a bad deal even worse, hackers are now targeting these sites to install malicious Magecart scripts that also steal your credit card information. [...]

https://www.bleepingcomputer.com/news/security/hundreds-of-counterfeit-sneaker-sites-hacked-to-steal-credit-cards/

Maze Ransomware Demands $6 Million Ransom From Southwire

Maze Ransomware operators claim responsibility for another cyber attack, this time against leading wire and cable manufacturer Southwire Company, LLC (Southwire) from Carrollton, Georgia. [...]

https://www.bleepingcomputer.com/news/security/maze-ransomware-demands-6-million-ransom-from-southwire/

Microsoft Warns of GALLIUM Threat Group Attacking Global Telcos

The Microsoft Threat Intelligence Center (MSTIC) today published an alert about ongoing attacks directed at telecommunication providers from around the world and operated by a threat group tracked by Microsoft as GALLIUM. [...]

https://www.bleepingcomputer.com/news/security/microsoft-warns-of-gallium-threat-group-attacking-global-telcos/

Google Achieves Its Goal of Erasing the WWW Subdomain From Chrome

With the release of Chrome 79, Google completes its goal of erasing www from browser by no longer allowing Chrome users to automatically show the www trivial subdomain in the address bar. [...]

https://www.bleepingcomputer.com/news/google/google-achieves-its-goal-of-erasing-the-www-subdomain-from-chrome/

Another Ransomware Will Now Publish Victims' Data If Not Paid

The operators of the REvil Ransomware, otherwise known as Sodinokibi, have announced that they will use stolen files and data as as leverage to get victims to pay ransoms. [...]

https://www.bleepingcomputer.com/news/security/another-ransomware-will-now-publish-victims-data-if-not-paid/

Microsoft Office 365 to Add Message Recall in Exchange Online

Microsoft is planning to add the highly popular Message Recall feature among Outlook for Windows users to the Exchange Online hosted cloud email service for businesses. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-office-365-to-add-message-recall-in-exchange-online/

New Echobot Variant Exploits 77 Remote Code Execution Flaws

The Echobot botnet is still after the low hanging fruit as a new variant has been spotted with an increased number of exploits that target unpatched devices, IoT for the most part. [...]

https://www.bleepingcomputer.com/news/security/new-echobot-variant-exploits-77-remote-code-execution-flaws/