First MageCart Hackers Caught, Infected Hundreds of Web Stores

Suspected members of a MageCart group that stole payment card information from customers of hundreds of hacked online stores are now in custody of the Indonesian police. [...]

https://www.bleepingcomputer.com/news/security/first-magecart-hackers-caught-infected-hundreds-of-web-stores/

RCE Exploit for Windows RDP Gateway Demoed by Researcher

A remote code execution (RCE) exploit for Windows Remote Desktop Gateway (RD Gateway) was demoed by InfoGuard AG penetration tester Luca Marcelli, after a proof-of-concept denial of service exploit was released by Danish security researcher Ollypwn on Friday for the same pair of flaws. [...]

https://www.bleepingcomputer.com/news/security/rce-exploit-for-windows-rdp-gateway-demoed-by-researcher/

Google Rolls Back Change Making Search Results Look Like Ads

After receiving negative feedback regarding the use of site icons in desktop search results, Google has decided to roll back this design change as they continue to experiment further. [...]

https://www.bleepingcomputer.com/news/google/google-rolls-back-change-making-search-results-look-like-ads/

Windows 7 To Get Post End of Life Update to Fix Wallpaper Bug

Microsoft plans to release an additional update for all users of Windows 7 that fixes a wallpaper bug even though the operating system has reached the end of support. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-7-to-get-post-end-of-life-update-to-fix-wallpaper-bug/

Google Chrome Gets Improved Tab Feature, Thanks to Microsoft

Microsoft announced late last year that Windows 10's default Edge browser would use open-source Chromium platform as a base. Since Edge is now built on Chromium, Microsoft has been actively contributing to the open-source platform and the under-the-hood improvements benefit both Edge and Chrome. [...]

https://www.bleepingcomputer.com/news/google/google-chrome-gets-improved-tab-feature-thanks-to-microsoft/

Microsoft Asked to Unshackle Windows 7 From Proprietary Tyranny

The Free Software Foundation (FSF) is asking Microsoft to 'upcycle' Windows 7 and allow the community to continue to improve it after its end of life. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-asked-to-unshackle-windows-7-from-proprietary-tyranny/

FBI Releases Alert on Iranian Hackers' Defacement Techniques

The FBI Cyber Division issued a flash security alert earlier this month with additional indicators of compromise from recent defacement attacks operated by Iranian threat actors and info on attackers' TTPs to help administrators and users to protect their websites. [...]

https://www.bleepingcomputer.com/news/security/fbi-releases-alert-on-iranian-hackers-defacement-techniques/

OurMine Hackers Are Back, Hijack NFL Teams' Social Accounts

It looks like the OurMine crew is back and they're on a hacking spree, taking brief control of the social media accounts of high-profile individuals. [...]

https://www.bleepingcomputer.com/news/security/ourmine-hackers-are-back-hijack-nfl-teams-social-accounts/

Ragnarok Ransomware Targets Citrix ADC, Disables Windows Defender

A new ransomware called Ragnarok has been detected being used in targeted attacks against unpatched Citrix ADC servers vulnerable to the CVE-2019-19781 exploit. [...]

https://www.bleepingcomputer.com/news/security/ragnarok-ransomware-targets-citrix-adc-disables-windows-defender/

Ring Android App Sent Sensitive User Data to 3rd Party Trackers

Amazon's Ring doorbell app for Android is sending to third-party trackers information that can be used to identify customers, research from the Electronic Frontier Foundation (EFF) has found. [...]

https://www.bleepingcomputer.com/news/security/ring-android-app-sent-sensitive-user-data-to-3rd-party-trackers/

Kali Linux Adds Single Installer Image, Default Non-Root User

Kali Linux 2020.1 was released today by Kali Linux team at Offensive Security with a new Kali Single Installer image for all desktop environments and a previously announced move to a non-root default user. [...]

https://www.bleepingcomputer.com/news/security/kali-linux-adds-single-installer-image-default-non-root-user/

Ransomware Bitcoin Wallet Frozen by UK Court to Recover Ransom

A victim's insurance company convinced the UK courts to freeze a bitcoin wallet containing over $800K worth of a ransomware payment. [...]

https://www.bleepingcomputer.com/news/security/ransomware-bitcoin-wallet-frozen-by-uk-court-to-recover-ransom/

Android Flash Tool Lets You Install Android Using a Browser

Google announced the release of a web-based tool that can be used by developers to install Android Open Source Project (AOSP) builds on recent Pixel phones and some Android development devices from the web browser, without building and flashing manually. [...]

https://www.bleepingcomputer.com/news/google/android-flash-tool-lets-you-install-android-using-a-browser/

Windows 10 Optional Cumulative Update KB4532695 Released

Microsoft is rolling out a new optional cumulative update for Windows 10 November 2019 Update (version 1909) and May 2019 Update (version 1903. The optional monthly update for Windows 10 comes with non-security fixes and important general bug fixes for Windows 10 November 2019 Update and May 2019 Update. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-optional-cumulative-update-kb4532695-released/

Google Pays $6.5 Million to Hackers for Reporting Security Bugs

More than $6.5 million were paid to researchers for reporting security bugs through Google's Vulnerability Reward Program (VRP) in 2019, the company said in an announcement published today. [...]

https://www.bleepingcomputer.com/news/security/google-pays-65-million-to-hackers-for-reporting-security-bugs/

Windows 10 1909 KB4532695 Update Fixes File Explorer Bugs

Today's Windows 1909 cumulative update fixes some of the bugs that made File Explorer search unusable since the November 2019 Update was released, but there is still more room for improvement. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-1909-kb4532695-update-fixes-file-explorer-bugs/

Apple iOS 13.3.1 Released With Fix for Location Tracking

Apple has released iOS 13.3.1 with numerous bug fixes including a new setting that allows you to disable the constant location checks being performed by the iPhone 11 U1 chip. [...]

https://www.bleepingcomputer.com/news/apple/apple-ios-1331-released-with-fix-for-location-tracking/

Ubuntu Invites Windows 7 Users With Linux Switch Guides

Canonical today published the first part of a tutorial series designed to help Windows 7 users migrate to Ubuntu Linux after Microsoft's decade-old OS reached end of support this month and stopped receiving security and bug fixes. [...]

https://www.bleepingcomputer.com/news/linux/ubuntu-invites-windows-7-users-with-linux-switch-guides/

Magento 2.3.4 Fixes Critical Code Execution Vulnerabilities

Magento today updated its e-commerce software for all supported platforms with fixes for multiple vulnerabilities. Some of them have critical severity and hackers could exploit them to run arbitrary code. [...]

https://www.bleepingcomputer.com/news/security/magento-234-fixes-critical-code-execution-vulnerabilities/

FBI Warns of Rise in Social Security Scams Spoofing Its Phone Number

The U.S. Federal Bureau of Investigation (FBI) on Tuesday has issued a warning about a spike in its phone number being used for Social Security fraud. [...]

https://www.bleepingcomputer.com/news/security/fbi-warns-of-rise-in-social-security-scams-spoofing-its-phone-number/

Critical Remote Code Execution Bug Fixed in OpenBSD SMTP Server

A critical vulnerability in the free OpenSMTPD email server present in many Unix-based systems can be exploited to run shell commands with root privileges. [...]

https://www.bleepingcomputer.com/news/security/critical-remote-code-execution-bug-fixed-in-openbsd-smtp-server/