DoppelPaymer Ransomware Sells Victims' Data on Darknet if Not Paid

The DoppelPaymer Ransomware is the latest family threatening to sell or publish a victim's stolen files if they do not pay a ransom demand. [...]

https://www.bleepingcomputer.com/news/security/doppelpaymer-ransomware-sells-victims-data-on-darknet-if-not-paid/

DoD to Require Cybersecurity Certification From Defense Contractors

The United States Department of Defense (DoD) announced that defense contractors will have to meet a basic level of cybersecurity standards when replying to a government acquisition program's request for proposals by 2026. [...]

https://www.bleepingcomputer.com/news/security/dod-to-require-cybersecurity-certification-from-defense-contractors/

Bouygues Construction Shuts Down Network to Thwart Maze Ransomware

French construction giant Bouygues Construction shut down their computer network to avoid having all of their data encrypted by the Maze Ransomware. [...]

https://www.bleepingcomputer.com/news/security/bouygues-construction-shuts-down-network-to-thwart-maze-ransomware/

Nintendo Hacker Pleads Guilty to Child Porn Charges, Faces 25 Years

21-year-old Californian Ryan S. Hernandez pleaded guilty to hacking into several Nintendo servers, stealing confidential information on hardware, games, and developer tools, and leaking it to others. [...]

https://www.bleepingcomputer.com/news/security/nintendo-hacker-pleads-guilty-to-child-porn-charges-faces-25-years/

Twitter Fixed Issue Exploited to Match Phone Numbers to Accounts

Twitter says that it discovered and fixed an issue exploited by attackers to match specific phone numbers to their corresponding Twitter accounts. [...]

https://www.bleepingcomputer.com/news/security/twitter-fixed-issue-exploited-to-match-phone-numbers-to-accounts/

New EmoCheck Tool Checks if You're Infected With Emotet

A new utility has been released by Japan CERT (computer emergency response team) that allows Windows users to easily check if they are infected with the Emotet Trojan. [...]

https://www.bleepingcomputer.com/news/security/new-emocheck-tool-checks-if-youre-infected-with-emotet/

Microsoft Office 365 Will Block Malicious Content Unless Overridden

Microsoft is currently working on new features designed to block malicious content in Office 365 regardless of the custom configurations set up by administrators or users unless manually overridden. [...]

https://www.bleepingcomputer.com/news/security/microsoft-office-365-will-block-malicious-content-unless-overridden/

Google Bug Sent Private Google Photos Videos to Other Users

In a serious privacy lapse, Google is notifying users that videos stored in their Google Photos account were mistakenly shared with other unrelated users. [...]

https://www.bleepingcomputer.com/news/google/google-bug-sent-private-google-photos-videos-to-other-users/

WhatsApp Bug Allowed Attackers to Access the Local File System

Facebook patched a critical WhatsApp vulnerability that would have allowed potential attackers to read files from a user's local file system, on both macOS and Windows platforms. [...]

https://www.bleepingcomputer.com/news/security/whatsapp-bug-allowed-attackers-to-access-the-local-file-system/

FBI Warns of DDoS Attack on State Voter Registration Site

The US Federal Bureau of Investigation (FBI) warned of a potential Distributed Denial of Service (DDoS) attack that targeted a state-level voter registration and information site in a Private Industry Notification (PIN) released today. [...]

https://www.bleepingcomputer.com/news/security/fbi-warns-of-ddos-attack-on-state-voter-registration-site/

Emotet Gets Ready for Tax Season With Malicious W-9 Forms

The Emotet Trojan is getting ready for the tax season with a fresh spam campaign pretending to be signed W-9 tax forms. [...]

https://www.bleepingcomputer.com/news/security/emotet-gets-ready-for-tax-season-with-malicious-w-9-forms/

Chrome 80 Released With 56 Security Fixes, Cookie Changes, More

Google has released Chrome 80 today, February 4th, 2020, to the Stable desktop channel for the Windows, macOS, Linux, Chrome OS, iOS, and Android platforms with bug fixes, new features, and 56 security fixes. [...]

https://www.bleepingcomputer.com/news/google/chrome-80-released-with-56-security-fixes-cookie-changes-more/

Realtek Fixes DLL Hijacking Flaw in HD Audio Driver for Windows

Realtek fixed a security vulnerability discovered in the Realtek HD Audio Driver Package that could allow potential attackers to gain persistence, plant malware, and evade detection on unpatched Windows systems. [...]

https://www.bleepingcomputer.com/news/security/realtek-fixes-dll-hijacking-flaw-in-hd-audio-driver-for-windows/

Bitbucket Abused to Infect 500,000+ Hosts with Malware Cocktail

Attackers are abusing the Bitbucket code hosting service to store seven types of malware threats used in an ongoing campaign that has already claimed more than 500,000 business computers across the world. [...]

https://www.bleepingcomputer.com/news/security/bitbucket-abused-to-infect-500-000-hosts-with-malware-cocktail/

Windows 10 Search Is Broken and Shows Blank Results, How to Fix

A bug in the Windows 10 Search is causing blank results to be shown in both the Start Menu and in File Explorer.  This is making it impossible to search for and launch an application from the Start Menu. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-search-is-broken-and-shows-blank-results-how-to-fix/

New Ransomware Strain Halts Toll Group Deliveries

Australian transportation and logistics company Toll Group confirmed today that systems across multiple sites and business units were encrypted by a new variant of the Mailto ransomware. [...]

https://www.bleepingcomputer.com/news/security/new-ransomware-strain-halts-toll-group-deliveries/

Charming Kitten Hackers Impersonate Journalist in Phishing Attacks

A hacker group linked with the Iranian government attempted to steal email login information from their targets through fake interview requests and impersonating a New York Times journalist. [...]

https://www.bleepingcomputer.com/news/security/charming-kitten-hackers-impersonate-journalist-in-phishing-attacks/

Microsoft Starts Testing Hyper-V for Windows 10 ARM64 Devices

Microsoft is bringing their Hyper-V virtual machine feature to ARM64 devices in upcoming Windows 10 builds. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-starts-testing-hyper-v-for-windows-10-arm64-devices/

Cisco Patches Critical CDP Flaws Affecting Millions of Devices

Five critical vulnerabilities found in various implementations of the Cisco Discovery Protocol (CDP) could allow attackers on the local network to take over tens of millions of enterprise devices as discovered by IoT security company Armis. [...]

https://www.bleepingcomputer.com/news/security/cisco-patches-critical-cdp-flaws-affecting-millions-of-devices/

Mailto (NetWalker) Ransomware Targets Enterprise Networks

With the high ransom prices and big payouts of enterprise-targeting ransomware, we now have another ransomware known as Mailto or Netwalker that is compromising enterprise networks and encrypting all of the Windows devices connected to it. [...]

https://www.bleepingcomputer.com/news/security/mailto-netwalker-ransomware-targets-enterprise-networks/

Medicaid CCO Vendor Breach Exposes Health, Personal Info of 654K

Medicaid coordinated care organization (CCO) Health Share of Oregon today disclosed a data breach exposing the health and personal info of 654,362 individuals following the theft of a laptop owned by its transportation vendor GridWorks IC. [...]

https://www.bleepingcomputer.com/news/security/medicaid-cco-vendor-breach-exposes-health-personal-info-of-654k/