Bug in Philips Smart Light Allows Hopping to Devices on the Network

Security researchers at Check Point discovered the issue and developed an attack that allowed them to hack into other devices on the same network as the vulnerable Philips Hue bulb. [...]

https://www.bleepingcomputer.com/news/security/bug-in-philips-smart-light-allows-hopping-to-devices-on-the-network/

BEC Scammers’ Interest in the Real Estate Sector Rises

Cybercriminals choose their targets by the profit they can make off them and the real estate business seems ripe for the picking, security researchers warn after looking at some 600 attacks focused on this sector. [...]

https://www.bleepingcomputer.com/news/security/bec-scammers-interest-in-the-real-estate-sector-rises/

Oscar Nominated Movies Featured in Phishing, Malware Attacks

Attackers are exploiting the hype surrounding this year's Oscar Best Picture nominated movies to infect fans with malware and to bait them to phishing websites designed to steal sensitive info such as credit card details and personal information. [...]

https://www.bleepingcomputer.com/news/security/oscar-nominated-movies-featured-in-phishing-malware-attacks/

Ransomware Exploits GIGABYTE Driver to Kill AV Processes

The attackers behind the RobbinHood Ransomware are exploiting a vulnerable GIGABYTE driver to install a malicious and unsigned driver into Windows that is used to terminate antivirus and security software. [...]

https://www.bleepingcomputer.com/news/security/ransomware-exploits-gigabyte-driver-to-kill-av-processes/

DoJ Asks Victims of the Quantum DDoS Service to Come Forward

The U.S. Department of Justice (DoJ) today issued a notification to raise awareness among victims of the Quantum Stresser Distributed Denial of Service (DDoS) for-hire service operated by David Bukoski. [...]

https://www.bleepingcomputer.com/news/security/doj-asks-victims-of-the-quantum-ddos-service-to-come-forward/

Phishing Attack Disables Google Play Protect, Drops Anubis Trojan

Android users are targeted in a phishing campaign that will infect their devices with the Anubis banking Trojan that can steal financial information from more than 250 banking and shopping applications. [...]

https://www.bleepingcomputer.com/news/security/phishing-attack-disables-google-play-protect-drops-anubis-trojan/

Google Chrome to Block Mixed Content Downloads, Prevents MiTM Attacks

Google is moving forward with its plan to block mixed content downloads from web sites to protect users from man-in-the-middle attacks. [...]

https://www.bleepingcomputer.com/news/google/google-chrome-to-block-mixed-content-downloads-prevents-mitm-attacks/

Two More Japanese Defense Contractors Disclose Security Breaches

Japanese defense contractors Pasco Corporation (Pasco) and Kobe Steel (Kobelco) today disclosed security breaches that happened in May 2018 and in June 2015/August 2016, respectively. [...]

https://www.bleepingcomputer.com/news/security/two-more-japanese-defense-contractors-disclose-security-breaches/

Critical Android Bluetooth Flaw Exploitable without User Interaction

Android users are urged to apply the latest security patches released for the operating system on Monday that address a critical vulnerability in the Bluetooth subsystem. [...]

https://www.bleepingcomputer.com/news/security/critical-android-bluetooth-flaw-exploitable-without-user-interaction/

Emotet Hacks Nearby Wi-Fi Networks to Spread to New Victims

A recently spotted Emotet Trojan sample features a Wi-Fi worm module that allows the malware to spread to new victims connected to nearby insecure wireless networks according to researchers at Binary Defense. [...]

https://www.bleepingcomputer.com/news/security/emotet-hacks-nearby-wi-fi-networks-to-spread-to-new-victims/

Misconfigured Docker Registries Expose Orgs to Critical Risks

Some organizations have improperly configured Docker registries exposed to the public web, leaving a door open for attackers to infiltrate and compromise operations. [...]

https://www.bleepingcomputer.com/news/security/misconfigured-docker-registries-expose-orgs-to-critical-risks/

Microsoft Releases Windows 7 Update to Fix Wallpaper Bug

Microsoft has released the KB4539602 stand-alone update to fix a bug that caused Windows 7 wallpapers in 'Stretch' mode to display a blank black screen. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-7-update-to-fix-wallpaper-bug/

TA505 Hackers Behind Maastricht University Ransomware Attack

Maastricht University (UM) disclosed that it paid the 30 bitcoin ransom requested by the attackers who encrypted some of its critical systems following a cyberattack that took place on December 23, 2019. [...]

https://www.bleepingcomputer.com/news/security/ta505-hackers-behind-maastricht-university-ransomware-attack/

Twitter Outage Prevents Users From Sending New Tweets

Twitter is experiencing a worldwide service disruption preventing users from sending tweets from the social networking platform's app, website, or TweetDeck. [...]

https://www.bleepingcomputer.com/news/technology/twitter-outage-prevents-users-from-sending-new-tweets/

Windows 7 Users Suddenly Can't Shut Down Their PCs, How to Fix

A "You don't have permission to shut down this computer." error is preventing Windows 7 from shutting down or restarting their computers according to user reports that came in during the last 24 hours. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-7-users-suddenly-cant-shut-down-their-pcs-how-to-fix/

The Week in Ransomware - February 7th 2020 - Exploiting Drivers

This week we did not see too many new variants released, but we did have some interesting ransomware news. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-february-7th-2020-exploiting-drivers/

Lock My PC Used By Tech Support Scammers, Dev Offers Free Recovery

Tech Support scammers are using a free utility called Lock My PC to lock users out of their PCs unless they pay the requested "support" fees. [...]

https://www.bleepingcomputer.com/news/security/lock-my-pc-used-by-tech-support-scammers-dev-offers-free-recovery/

Microsoft’s Surface Duo Spotted in the Wild, Video Leaked

Microsoft said its dual-screen Android phone 'Surface Duo' won't be coming until Holiday 2020, but it looks like the phone could launch sooner than expected as Microsoft is now seeding the prototypes to more employees in the US and Canada. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-s-surface-duo-spotted-in-the-wild-video-leaked/

Windows 10 Start Menu Suggests Firefox Users Switch to Edge

Microsoft has started using the Windows 10 Start Menu to suggest that Mozilla Firefox users switch to their new Microsoft Edge browser. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-start-menu-suggests-firefox-users-switch-to-edge/

Improve Your Windows 10 PC With These Free Apps

The Windows Store isn't as populated as Google and Apple's app marketplace, but there are plenty of apps that can improve your Windows 10 experience. [...]

https://www.bleepingcomputer.com/news/microsoft/improve-your-windows-10-pc-with-these-free-apps/

U.S. Charges Chinese Mlitary Hackers for Equifax Breach

The U.S. Department of Justice announced today that four members of the Chinese People's Liberation Army (PLA) 54th Research Institute were charged for allegedly hacking the credit reporting agency Equifax in 2017. [...]

https://www.bleepingcomputer.com/news/security/us-charges-chinese-mlitary-hackers-for-equifax-breach/