Dell SupportAssist Bug Exposes Business, Home PCs to Attacks

Dell published a security update to patch a SupportAssist Client software flaw which enables potential local attackers to execute arbitrary code with Administrator privileges on vulnerable computers. [...]

https://www.bleepingcomputer.com/news/security/dell-supportassist-bug-exposes-business-home-pcs-to-attacks/

StockX Adds 2-Step Verification for Better Security, Enable Now

The popular online sneaker and streetwear store StockX has finally added 2-step verification to their platform so that user's accounts can be properly secured. [...]

https://www.bleepingcomputer.com/news/security/stockx-adds-2-step-verification-for-better-security-enable-now/

SoundCloud Fixed API Flaws That Could Lead to Account Takeover

Social audio platform SoundCloud fixed multiple security vulnerabilities affecting its application programming interface (API) that could allow potential attackers to take over accounts, launch denial of service attacks, and exploit the service according to the Checkmarx Security Research team. [...]

https://www.bleepingcomputer.com/news/security/soundcloud-fixed-api-flaws-that-could-lead-to-account-takeover/

Firefox 73 Released With Security Fixes, New DoH Provider, More

Mozilla has released Firefox 73 today, February 11th, 2020, to the Stable desktop channel for Windows, macOS, and Linux with bug fixes, new features, and security fixes. [...]

https://www.bleepingcomputer.com/news/software/firefox-73-released-with-security-fixes-new-doh-provider-more/

FTC Warns of Ongoing Scams Using Coronavirus Bait

The U.S. Federal Trade Commission (FTC) warns about ongoing scam campaigns that make use of the current Coronavirus global scale health crisis to bait potential targets from the United States via phishing emails, text messages, and social media. [...]

https://www.bleepingcomputer.com/news/security/ftc-warns-of-ongoing-scams-using-coronavirus-bait/

Google Removes Dashlane Password Manager from Chrome Web Store

Google has removed the Dashlane password manager extension used by over 3 million users from the Chrome Web Store due to issues with 'User Data Privacy/ Use of Permissions'. [...]

https://www.bleepingcomputer.com/news/security/google-removes-dashlane-password-manager-from-chrome-web-store/

Microsoft Reveals More Windows 10X Details, Here's What we Know

Windows 10X is a streamlined version of Windows designed to be compatible with foldable and dual-screen devices. Windows 10X was announced back in October and Microsoft is planning to release it in the 'holiday 2020' with Surface Neo, but many details so far have been scarce. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-reveals-more-windows-10x-details-heres-what-we-know/

Microsoft Backpedals on Forcing Bing Search for Office 365 Users

Microsoft announced today that the Microsoft Search in Bing Google Chrome extension will not be forcibly installed for Office 365 ProPlus users as the company said on January 22. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-backpedals-on-forcing-bing-search-for-office-365-users/

Adobe Releases the February 2020 Security Updates

Adobe has released its monthly security updates that fix vulnerabilities in numerous Adobe products. As many of these vulnerabilities are classified as Critical, all users are advised to install the applicable updates as soon as possible. [...]

https://www.bleepingcomputer.com/news/security/adobe-releases-the-february-2020-security-updates/

Windows 10 Cumulative Updates KB4532693 & KB4532691 Released

Microsoft has just published February cumulative update for Windows 10 November 2019 Update, May 2019 Update, and October 2018 Update with security fixes and general improvements. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-cumulative-updates-kb4532693-and-kb4532691-released/

Microsoft's February 2020 Patch Tuesday Fixes 99 Flaws, IE 0day

Today is Microsoft's February 2020 Patch Tuesday and also the first time Windows 7 users will not receive free security updates. Be nice to your Windows administrators today! [...]

https://www.bleepingcomputer.com/news/security/microsofts-february-2020-patch-tuesday-fixes-99-flaws-ie-0day/

Microsoft Patches Actively Exploited Internet Explorer Zero-Day

Microsoft released security updates to patch an actively exploited zero-day remote code execution (RCE) vulnerability impacting multiple versions of Internet Explorer. [...]

https://www.bleepingcomputer.com/news/security/microsoft-patches-actively-exploited-internet-explorer-zero-day/

FBI: Cybercrime Victims Lost $3.5 Billion in 2019

FBI's Internet Crime Complaint Center (IC3) published the 2019 Internet Crime Report which reveals that cybercrime was behind individual and business losses of $3.5 billion as shown by the 467,361 complaints received during the last year. [...]

https://www.bleepingcomputer.com/news/security/fbi-cybercrime-victims-lost-35-billion-in-2019/

Amex, Chase Fraud Protection Emails Used as Clever Phishing Lure

A very clever phishing campaign is underway that pretends to be fraud protection emails from American Express and Chase that ask you to confirm if the listed credit card transactions are legitimate. [...]

https://www.bleepingcomputer.com/news/security/amex-chase-fraud-protection-emails-used-as-clever-phishing-lure/

Microsoft Releases February 2020 Office Updates With Security Fixes

Microsoft released the February 2020 Office security updates on February 11, 2020, with a total of 10 security updates and three cumulative updates for six different products, with three of them patching flaws allowing for remote code execution. [...]

https://www.bleepingcomputer.com/news/security/microsoft-releases-february-2020-office-updates-with-security-fixes/

BEC Fraud Profits from Gift Cards, Down 63% Over Holidays

Business email compromise (BEC) activity hit the breaks toward the end of 2019 but only in the last two weeks of the year and not before recording a peak. [...]

https://www.bleepingcomputer.com/news/security/bec-fraud-profits-from-gift-cards-down-63-percent-over-holidays/

Google Play Protect Blocked 1.9 Billion Malware Installs in 2019

Google's Play Protect mobile threat protection service blocked the installation of over 1.9 billion malicious apps downloaded from non-Play Store sources in 2019. [...]

https://www.bleepingcomputer.com/news/security/google-play-protect-blocked-19-billion-malware-installs-in-2019/

Office 365 Users Get Automated Protection From Malicious Docs

Microsoft announced that a new security feature dubbed Safe Documents will be available in private preview for Office 365 ProPlus customers starting today. [...]

https://www.bleepingcomputer.com/news/security/office-365-users-get-automated-protection-from-malicious-docs/

Microsoft Posts Updated Dev Roadmap for the Edge Browser

Microsoft has updated its development roadmap so that users can see what's planned for the Microsoft Edge browser. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-posts-updated-dev-roadmap-for-the-edge-browser/

Microsoft Urges Exchange Admins to Disable SMBv1 to Block Malware

Microsoft is recommending administrators disable the SMBv1 network communication protocol on Exchange servers to provide better protection against malware threats and attacks. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-urges-exchange-admins-to-disable-smbv1-to-block-malware/

WordPress Cookie Consent Plugin Fixes Critical Flaw for 700K Users

Critical bugs found in the WordPress GDPR Cookie Consent plugin used by over 700,000 websites allow potential attackers to delete and change content and inject malicious JavaScript code due to improper access controls. [...]

https://www.bleepingcomputer.com/news/security/wordpress-cookie-consent-plugin-fixes-critical-flaw-for-700k-users/