Microsoft Releases March 2020 Office Updates With Fixes, Improvements

Microsoft released the March 2020 non-security Microsoft Office updates with improvements and fixes for the Windows Installer (MSI) editions of Office 2013 and Office 2016. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-march-2020-office-updates-with-fixes-improvements/

Ransomware Attackers Use Your Cloud Backups Against You

Backups are one the most, if not the most, important defense against ransomware, but if not configured properly, attackers will use it against you. [...]

https://www.bleepingcomputer.com/news/security/ransomware-attackers-use-your-cloud-backups-against-you/

Let's Encrypt to Revoke 3 Million TLS Certificates Due to Bug

Let's Encrypt will revoke over 3 million certificates on Wednesday, March 4th, due to a bug in their domain validation and issuance software.  [...]

https://www.bleepingcomputer.com/news/security/lets-encrypt-to-revoke-3-million-tls-certificates-due-to-bug/

Zero-Day Bug Allowed Attackers to Register Malicious Domains

A zero-day vulnerability impacting Verisign and several SaaS services including Google, Amazon, and DigitalOcean allowed potential attackers to register .com and .net homograph domain names (among others) that could be used in insider, phishing, and social-engineering attacks against organizations. [...]

https://www.bleepingcomputer.com/news/security/zero-day-bug-allowed-attackers-to-register-malicious-domains/

Microsoft Reveals a New Design for the Windows 10 Start Menu

Microsoft has unveiled its vision of a new Windows 10 Start Menu that utilizes a transparent background to showcase the new Fluent-based colorful icons. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-reveals-a-new-design-for-the-windows-10-start-menu/

Windows Explorer Used by Mailto Ransomware to Evade Detection

A newly discovered Mailto (NetWalker) ransomware strain can inject malicious code into the Windows Explorer process so that the malware can evade detection. [...]

https://www.bleepingcomputer.com/news/security/windows-explorer-used-by-mailto-ransomware-to-evade-detection/

Microsoft, Google Offer Free Remote Work Tools Due to Coronavirus

With employees either being quarantined after international travel or encouraged to work remotely due to the Coronavirus (COVID-19), Microsoft, Google, LogMeIn, and Cisco are offering free licenses to their meeting, collaboration, and remote work tools. [...]

https://www.bleepingcomputer.com/news/software/microsoft-google-offer-free-remote-work-tools-due-to-coronavirus/

Microsoft Releases PowerShell 7.0 With New Features, Update Alerts

Microsoft released PowerShell 7.0, the latest version of its cross-platform automation and configuration tool with new features including automatic new version notifications, bug fixes, and improvements. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-powershell-70-with-new-features-update-alerts/

J.Crew Disables User Accounts After Credential Stuffing Attack

US clothing retailer J.Crew announced that it was the victim of a credential stuffing attack around April 2019 that led to some of its customers' accounts and information being accessed by hackers. [...]

https://www.bleepingcomputer.com/news/security/jcrew-disables-user-accounts-after-credential-stuffing-attack/

Carnival Cruise Line Operator Discloses Potential Data Breach

The world's largest cruise ship operator Carnival Corporation & plc announced a potential data breach affecting some of its customers after hackers accessed employee email accounts. [...]

https://www.bleepingcomputer.com/news/security/carnival-cruise-line-operator-discloses-potential-data-breach/

Ryuk Ransomware Attacked Epiq Global Via TrickBot Infection

Legal services and e-discovery giant Epiq Global took their systems offline on Saturday after the Ryuk Ransomware was deployed and began encrypting devices on their network.  [...]

https://www.bleepingcomputer.com/news/security/ryuk-ransomware-attacked-epiq-global-via-trickbot-infection/

YouTube Web Site Subscriptions are Broken, Videos Not Displayed

A bug on the YouTube web site is telling users that the channels that they have subscribed to have not uploaded any videos yet.  On mobile, though, everything is working fine. [...]

https://www.bleepingcomputer.com/news/google/youtube-web-site-subscriptions-are-broken-videos-not-displayed/

T-Mobile Data Breach Exposes Customer Personal, Financial Info

T-Mobile has announced a data breach caused by an email vendor being hacked that exposed the personal and financial information for some of its customers. [...]

https://www.bleepingcomputer.com/news/security/t-mobile-data-breach-exposes-customer-personal-financial-info/

Attackers Deliver Malware via Fake Website Certificate Errors

Cybercriminals are distributing malware using fake security certificate update requests displayed on previously compromised websites, attempting to infect potential victims with backdoors and Trojans using a malicious installer. [...]

https://www.bleepingcomputer.com/news/security/attackers-deliver-malware-via-fake-website-certificate-errors/

PwndLocker Ransomware Gets Pwned: Decryption Now Available

Emsisoft has discovered a way to decrypt files encrypted by the new PwndLocker Ransomware so that victims can recover their files without paying a ransom. [...]

https://www.bleepingcomputer.com/news/security/pwndlocker-ransomware-gets-pwned-decryption-now-available/

Microsoft Shares Tactics Used in Human-Operated Ransomware Attacks

Microsoft today shared tips on how to defend against human-operated ransomware attacks known to be behind hundreds of millions of dollars in losses following campaigns targeting enterprises and government entities. [...]

https://www.bleepingcomputer.com/news/security/microsoft-shares-tactics-used-in-human-operated-ransomware-attacks/

Virgin Media Data Breach Exposes Info of 900,000 Customers

Virgin Media announced today that the personal information of roughly 900,000 of its customers was accessed without permission on at least one occasion because of a misconfigured and unsecured marketing database. [...]

https://www.bleepingcomputer.com/news/security/virgin-media-data-breach-exposes-info-of-900-000-customers/

Microsoft Issues Fix for Windows 10 Drivers Blocked by Core Isolation

Microsoft has issued guidance on how to resolve problems loading drivers in Windows 10 that are being blocked due to virtualization-based security protections. [...]

https://www.bleepingcomputer.com/news/security/microsoft-issues-fix-for-windows-10-drivers-blocked-by-core-isolation/

US Govt Adds Stricter Requirements for .gov Domain Registration

The U.S. government will start requiring notarized signatures as part of the registration process for .gov domains starting March 10, 2020, to prevent wire and mail fraud that might lead to such domains being registered by unauthorized organizations​​​​​​​ or individuals. [...]

https://www.bleepingcomputer.com/news/security/us-govt-adds-stricter-requirements-for-gov-domain-registration/

Windows 10 Insider Build 19577 Released With New Windows Security Icon

Microsoft has released Windows 10 Insider Preview Build 19577 to Insiders in the Fast ring, which includes the new Windows Security Fluent-based icon and diagnostic data changes. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-insider-build-19577-released-with-new-windows-security-icon/

TrickBot Malware Targets Italy in Fake WHO Coronavirus Emails

A new spam campaign is underway that is preying on the fears of Coronavirus (COVID-19) to target people in Italy with the TrickBot information-stealing malware. [...]

https://www.bleepingcomputer.com/news/security/trickbot-malware-targets-italy-in-fake-who-coronavirus-emails/