UPS Store Phishing Incident Exposes Customer Personal Info

Sensitive personal and financial information of UPS Store customers was exposed in a phishing incident affecting roughly 100 local store locations between September 29, 2019, and January 13, 2020. [...]

https://www.bleepingcomputer.com/news/security/ups-store-phishing-incident-exposes-customer-personal-info/

Wine 5.0 Released With Numerous Gaming Improvements for Linux

Wine 5.0 has been released today and contains over 7,400 bug fixes and numerous audio and graphics improvements that will increase performance in gaming on Linux. [...]

https://www.bleepingcomputer.com/news/linux/wine-50-released-with-numerous-gaming-improvements-for-linux/

This Citibank Phishing Scam Could Trick Many People

A new Citibank phishing scam is underway that utilizes a convincing domain name, TLS certs, and even requests OTP codes that could easily cause people to believe they are submitting their personal information on a legitimate page. [...]

https://www.bleepingcomputer.com/news/security/this-citibank-phishing-scam-could-trick-many-people/

FBI Warns Job Applicants of Scams Using Spoofed Company Sites

FBI's Internet Crime Complaint Center (IC3) today issued a public service announcement to warn about scammers using spoofed company websites and fake job listings to target applicants. [...]

https://www.bleepingcomputer.com/news/security/fbi-warns-job-applicants-of-scams-using-spoofed-company-sites/

ProtonVPN Apps Open Sourced for Added Transparency and Security

The code for ProtonVPN apps on all supported platforms - Android, iOS, macOS, and Windows - is now open source, the maker announces today, a move that follows a security audit from an independent party. [...]

https://www.bleepingcomputer.com/news/security/protonvpn-apps-open-sourced-for-added-transparency-and-security/

Windows 10 PowerToy Quick Launcher to Simplify Launching Apps

Microsoft is working on a quick launcher dubbed PowerLauncher for the Windows 10 open-source PowerToys toolset, to allow users to launch apps faster than using the Start menu. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-powertoy-quick-launcher-to-simplify-launching-apps/

Final Windows 7 Update Breaks Desktop Wallpaper Functionality

The final update for the Windows 7 operating system has broken some of the desktop wallpaper functionality and caused user's backgrounds to become a blank black screen. [...]

https://www.bleepingcomputer.com/news/microsoft/final-windows-7-update-breaks-desktop-wallpaper-functionality/

Microsoft Starts Pushing Windows 10 1909 to More Devices

Microsoft has increased the forced rollout of Windows 1909 to devices running Windows 1809 or earlier so they are unaffected by the approaching end of service for these versions. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-starts-pushing-windows-10-1909-to-more-devices/

Microsoft Exposes 250M Customer Support Records on Leaky Servers

Microsoft disclosed a security breach caused by a misconfigured internal customer support database that led to the accidental exposure of roughly 250 million customer support and service records, some of them containing personally identifiable information. [...]

https://www.bleepingcomputer.com/news/security/microsoft-exposes-250m-customer-support-records-on-leaky-servers/

Microsoft to Force Bing Search in Chrome for Office 365 ProPlus Users

Microsoft is planning to start installing a new Chrome extension for some Office 365 ProPlus customers that will make Bing the default search engine in Google Chrome "to access relevant workplace information directly from the browser address bar." [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-to-force-bing-search-in-chrome-for-office-365-proplus-users/

Twitter Releases Updated Android App to Fix Crashes

Twitter has released today an update to its Android app to fix a bug that caused the app to crash immediately when you opened it. [...]

https://www.bleepingcomputer.com/news/technology/twitter-releases-updated-android-app-to-fix-crashes/

The Half-Life Series is Free to Play Until March 2020

To promote the upcoming release of Valve's Half-Life: Alyx VR game for PC, you can play all of the previous games in the Half-Life series for free for a limited time. [...]

https://www.bleepingcomputer.com/news/gaming/the-half-life-series-is-free-to-play-until-march-2020/

Citrix Releases Scanner to Detect Hacked Citrix ADC Appliances

Citrix released a free scanner for detecting compromised Citrix Application Delivery Controller (ADC), Citrix Gateway, and Citrix SD-WAN WANOP appliances by digging for indicators of compromise (IoC) collected in incident response engagements related to CVE-2019-19781 exploitation. [...]

https://www.bleepingcomputer.com/news/security/citrix-releases-scanner-to-detect-hacked-citrix-adc-appliances/

Thousands of WordPress Sites Hacked to Fuel Scam Campaign

Over 2,000 Wordpress sites have been hacked to fuel a campaign to redirect visitors to scam sites containing unwanted browser notification subscriptions, fake surveys, giveaways, and fake Adobe Flash downloads. [...]

https://www.bleepingcomputer.com/news/security/thousands-of-wordpress-sites-hacked-to-fuel-scam-campaign/

Maze Ransomware Not Getting Paid, Leaks Data Left and Right

Maze ransomware operators have infected computers from Medical Diagnostic Laboratories (MDLab) and are releasing close to 9.5GB of data stolen from infected machines. [...]

https://www.bleepingcomputer.com/news/security/maze-ransomware-not-getting-paid-leaks-data-left-and-right/

Sodinokibi Ransomware Threatens to Publish Data of Automotive Group

The attackers behind the Sodinokibi Ransomware are now threatening to publish data stolen from another victim after they failed to get in touch and pay the ransom to have the data decrypted. [...]

https://www.bleepingcomputer.com/news/security/sodinokibi-ransomware-threatens-to-publish-data-of-automotive-group/

Euro Cup and Olympics Ticket Reseller Hit by MageCart

Site belonging to a reseller of tickets for Euro Cup and the Tokyo Summer Olympics, two major sports events happening later this year, have been infected with JavaScript that steals payment card details. [...]

https://www.bleepingcomputer.com/news/security/euro-cup-and-olympics-ticket-reseller-hit-by-magecart/

LastPass Mistakenly Removes Extension from Chrome Store, Causes Outage

An accidental outage was caused by LastPass yesterday by mistakenly removing the LastPass extension from the Chrome Web Store, leading to users seeing 404 errors when trying to download and install it on their devices. [...]

https://www.bleepingcomputer.com/news/security/lastpass-mistakenly-removes-extension-from-chrome-store-causes-outage/

Critical MDhex Vulnerabilities Shake the Healthcare Sector

Critical vulnerabilities have been discovered in popular medical devices from GE Healthcare that could allow attackers to alter the way they function or render them unusable. [...]

https://www.bleepingcomputer.com/news/security/critical-mdhex-vulnerabilities-shake-the-healthcare-sector/

Buchbinder Car Renter Exposes Info of Over 3 Million Customers

German car rental company Buchbinder exposed the personal information of over 3.1 million customers including federal ministry employees, diplomats, and celebrities, all of it stored within a ten terabytes MSSQL backup database left unsecured on the Internet. [...]

https://www.bleepingcomputer.com/news/security/buchbinder-car-renter-exposes-info-of-over-3-million-customers/

TrickBot Now Harvests Windows Active Directory Credentials

A new module for the TrickBot trojan has been discovered that targets the Active Directory database stored on compromised Windows domain controllers. [...]

https://www.bleepingcomputer.com/news/security/trickbot-now-harvests-windows-active-directory-credentials/