Phishing Attack Disables Google Play Protect, Drops Anubis Trojan

Android users are targeted in a phishing campaign that will infect their devices with the Anubis banking Trojan that can steal financial information from more than 250 banking and shopping applications. [...]

https://www.bleepingcomputer.com/news/security/phishing-attack-disables-google-play-protect-drops-anubis-trojan/

Google Chrome to Block Mixed Content Downloads, Prevents MiTM Attacks

Google is moving forward with its plan to block mixed content downloads from web sites to protect users from man-in-the-middle attacks. [...]

https://www.bleepingcomputer.com/news/google/google-chrome-to-block-mixed-content-downloads-prevents-mitm-attacks/

Two More Japanese Defense Contractors Disclose Security Breaches

Japanese defense contractors Pasco Corporation (Pasco) and Kobe Steel (Kobelco) today disclosed security breaches that happened in May 2018 and in June 2015/August 2016, respectively. [...]

https://www.bleepingcomputer.com/news/security/two-more-japanese-defense-contractors-disclose-security-breaches/

Critical Android Bluetooth Flaw Exploitable without User Interaction

Android users are urged to apply the latest security patches released for the operating system on Monday that address a critical vulnerability in the Bluetooth subsystem. [...]

https://www.bleepingcomputer.com/news/security/critical-android-bluetooth-flaw-exploitable-without-user-interaction/

Emotet Hacks Nearby Wi-Fi Networks to Spread to New Victims

A recently spotted Emotet Trojan sample features a Wi-Fi worm module that allows the malware to spread to new victims connected to nearby insecure wireless networks according to researchers at Binary Defense. [...]

https://www.bleepingcomputer.com/news/security/emotet-hacks-nearby-wi-fi-networks-to-spread-to-new-victims/

Misconfigured Docker Registries Expose Orgs to Critical Risks

Some organizations have improperly configured Docker registries exposed to the public web, leaving a door open for attackers to infiltrate and compromise operations. [...]

https://www.bleepingcomputer.com/news/security/misconfigured-docker-registries-expose-orgs-to-critical-risks/

Microsoft Releases Windows 7 Update to Fix Wallpaper Bug

Microsoft has released the KB4539602 stand-alone update to fix a bug that caused Windows 7 wallpapers in 'Stretch' mode to display a blank black screen. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-7-update-to-fix-wallpaper-bug/

TA505 Hackers Behind Maastricht University Ransomware Attack

Maastricht University (UM) disclosed that it paid the 30 bitcoin ransom requested by the attackers who encrypted some of its critical systems following a cyberattack that took place on December 23, 2019. [...]

https://www.bleepingcomputer.com/news/security/ta505-hackers-behind-maastricht-university-ransomware-attack/

Twitter Outage Prevents Users From Sending New Tweets

Twitter is experiencing a worldwide service disruption preventing users from sending tweets from the social networking platform's app, website, or TweetDeck. [...]

https://www.bleepingcomputer.com/news/technology/twitter-outage-prevents-users-from-sending-new-tweets/

Windows 7 Users Suddenly Can't Shut Down Their PCs, How to Fix

A "You don't have permission to shut down this computer." error is preventing Windows 7 from shutting down or restarting their computers according to user reports that came in during the last 24 hours. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-7-users-suddenly-cant-shut-down-their-pcs-how-to-fix/

The Week in Ransomware - February 7th 2020 - Exploiting Drivers

This week we did not see too many new variants released, but we did have some interesting ransomware news. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-february-7th-2020-exploiting-drivers/

Lock My PC Used By Tech Support Scammers, Dev Offers Free Recovery

Tech Support scammers are using a free utility called Lock My PC to lock users out of their PCs unless they pay the requested "support" fees. [...]

https://www.bleepingcomputer.com/news/security/lock-my-pc-used-by-tech-support-scammers-dev-offers-free-recovery/

Microsoft’s Surface Duo Spotted in the Wild, Video Leaked

Microsoft said its dual-screen Android phone 'Surface Duo' won't be coming until Holiday 2020, but it looks like the phone could launch sooner than expected as Microsoft is now seeding the prototypes to more employees in the US and Canada. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-s-surface-duo-spotted-in-the-wild-video-leaked/

Windows 10 Start Menu Suggests Firefox Users Switch to Edge

Microsoft has started using the Windows 10 Start Menu to suggest that Mozilla Firefox users switch to their new Microsoft Edge browser. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-start-menu-suggests-firefox-users-switch-to-edge/

Improve Your Windows 10 PC With These Free Apps

The Windows Store isn't as populated as Google and Apple's app marketplace, but there are plenty of apps that can improve your Windows 10 experience. [...]

https://www.bleepingcomputer.com/news/microsoft/improve-your-windows-10-pc-with-these-free-apps/

U.S. Charges Chinese Mlitary Hackers for Equifax Breach

The U.S. Department of Justice announced today that four members of the Chinese People's Liberation Army (PLA) 54th Research Institute were charged for allegedly hacking the credit reporting agency Equifax in 2017. [...]

https://www.bleepingcomputer.com/news/security/us-charges-chinese-mlitary-hackers-for-equifax-breach/

Ragnar Locker Ransomware Targets MSP Enterprise Support Tools

A ransomware called Ragnar Locker is specifically targeting software commonly used by managed service providers to prevent their attack from being detected and stopped. [...]

https://www.bleepingcomputer.com/news/security/ragnar-locker-ransomware-targets-msp-enterprise-support-tools/

Windows Server 2008 Servers Don’t Boot After KB4539602 Update

Windows Server 2008 servers will no longer boot if prerequisites aren't installed before applying the out-of-band KB4539602 update released by Microsoft on February 7 to patch a wallpaper bug. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-server-2008-servers-don-t-boot-after-kb4539602-update/

Dell SupportAssist Bug Exposes Business, Home PCs to Attacks

Dell published a security update to patch a SupportAssist Client software flaw which enables potential local attackers to execute arbitrary code with Administrator privileges on vulnerable computers. [...]

https://www.bleepingcomputer.com/news/security/dell-supportassist-bug-exposes-business-home-pcs-to-attacks/

StockX Adds 2-Step Verification for Better Security, Enable Now

The popular online sneaker and streetwear store StockX has finally added 2-step verification to their platform so that user's accounts can be properly secured. [...]

https://www.bleepingcomputer.com/news/security/stockx-adds-2-step-verification-for-better-security-enable-now/

SoundCloud Fixed API Flaws That Could Lead to Account Takeover

Social audio platform SoundCloud fixed multiple security vulnerabilities affecting its application programming interface (API) that could allow potential attackers to take over accounts, launch denial of service attacks, and exploit the service according to the Checkmarx Security Research team. [...]

https://www.bleepingcomputer.com/news/security/soundcloud-fixed-api-flaws-that-could-lead-to-account-takeover/