Microsoft Announces New Microsoft 365 Features for Consumers

Microsoft has announced today a new Microsoft 365 Personal and Family subscription for consumers that gives users access to Office, OneDrive, and Outlook. a new Family Safety App, and Teams for Consumer. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-announces-new-microsoft-365-features-for-consumers/

Hackers Take Advantage of Zoom's Popularity to Push Malware

Attackers are attempting to take advantage of Zoom's increasing user base since the COVID-19 outbreak started by registering hundreds of new Zoom-themed domains for malicious purposes. [...]

https://www.bleepingcomputer.com/news/security/hackers-take-advantage-of-zooms-popularity-to-push-malware/

Microsoft Edge to Warn Of Credentials Leaked in Data Breaches

Microsoft Edge is introducing a new feature called "Password Monitor" that will alert users if their login credentials have been leaked in data breaches. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-to-warn-of-credentials-leaked-in-data-breaches/

UK's ICO Says Mobile Tracking is Legal During COVID-19 Crisis

UK's Information Commissioner's Office (ICO) has announced over the weekend that the government can use anonymized mobile phone tracking data to help fight the current coronavirus pandemic. [...]

https://www.bleepingcomputer.com/news/security/uks-ico-says-mobile-tracking-is-legal-during-covid-19-crisis/

Banking Malware Spreading via COVID-19 Relief Payment Phishing

The Zeus Sphinx banking Trojan has recently resurfaced after a three years hiatus as part of a coronavirus-themed phishing campaign, the most common theme behind most attacks by far during the current pandemic. [...]

https://www.bleepingcomputer.com/news/security/banking-malware-spreading-via-covid-19-relief-payment-phishing/

FBI Warns of Ongoing Zoom-Bombing Attacks on Video Meetings

The US Federal Bureau of Investigation (FBI) warned today of hijackers who join Zoom video conferences used for online lessons and business meetings with the end goal of disrupting them or for pulling pranks that could be later shared on social media platforms. [...]

https://www.bleepingcomputer.com/news/security/fbi-warns-of-ongoing-zoom-bombing-attacks-on-video-meetings/

Windows 10 KB4554364 Update Fixes Internet Connectivity Issues

Microsoft has released an out-of-band Windows 10 update to fix a bug that was causing internet connectivity issues on devices with proxies, including virtual private networks (VPNs). [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-kb4554364-update-fixes-internet-connectivity-issues/

Grammarly is Now Available for Microsoft Word on Mac

Grammarly has announced that its AI-driven writing assistant is now available for Mac users as an add-in for Microsoft Word. [...]

https://www.bleepingcomputer.com/news/software/grammarly-is-now-available-for-microsoft-word-on-mac/

Cloudflare's 1.1.1.1 DNS Passes Privacy Audit, Some Issues Found

Cloudflare has released the results of a privacy audit of their a 1.1.1.1 DNS service that backs up Cloudflare's statement regarding how DNS query data is being stored and collected on their servers. [...]

https://www.bleepingcomputer.com/news/security/cloudflares-1111-dns-passes-privacy-audit-some-issues-found/

Marriott Reports Data Breach Affecting Up to 5.2 Million Guests

Marriott International​​​​​​​ today revealed that the personal information of roughly 5.2 million hotel guests was impacted in a data breach incident detected at the end of February 2020. [...]

https://www.bleepingcomputer.com/news/security/marriott-reports-data-breach-affecting-up-to-52-million-guests/

Critical WordPress Plugin Bug Lets Hackers Turn Users Into Admins

A critical privilege escalation vulnerability found in the Rank Math WordPress SEO plugin can allow attackers to give administrator privileges to any registered user on one of the 200,000 sites with active installations if left unpatched. [...]

https://www.bleepingcomputer.com/news/security/critical-wordpress-plugin-bug-lets-hackers-turn-users-into-admins/

WinRAR 5.90 Final Released For Windows, Mac, Linux, and Android

WinRAR 5.90 Final has been released with numerous performance improvements and bug fixes for Windows, Mac, Linux, and Android. [...]

https://www.bleepingcomputer.com/news/software/winrar-590-final-released-for-windows-mac-linux-and-android/

Microsoft Delays Disabling Insecure TLS in Browsers Until July

Microsoft announced today that it will delay disabling support for the insecure Transport Layer Security (TLS) 1.0 and 1.1 protocols from Microsoft web browsers because of the current global situation until the second half of 2020, with an estimated time of roll out during July. [...]

https://www.bleepingcomputer.com/news/security/microsoft-delays-disabling-insecure-tls-in-browsers-until-july/

Microsoft Updates Windows 10 PowerToys With New Utilities

Microsoft updated the open-source Windows 10 PowerToys toolset with new utilities for quickly switching between windows, for previewing files in Windows Explorer, and for batch resizing images from the context menu. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-updates-windows-10-powertoys-with-new-utilities/

How to Secure Your Zoom Meetings from Zoom-Bombing Attacks

This guide will walk you through securing your Zoom meetings so that virtual get-togethers, meetings, exercise classes, and even hours are not Zoom-bombed by unauthorized users. [...]

https://www.bleepingcomputer.com/news/software/how-to-secure-your-zoom-meetings-from-zoom-bombing-attacks/

Zoom Client Leaks Windows Login Credentials to Attackers

The Zoom Windows client is vulnerable to UNC path injection in the client's chat feature that could allow attackers to steal the Windows credentials of users who click on the link. [...]

https://www.bleepingcomputer.com/news/security/zoom-client-leaks-windows-login-credentials-to-attackers/

Microsoft is Alerting Hospitals Vulnerable to Ransomware Attacks

Microsoft has started to send targeted notifications to dozens of hospitals about vulnerable public-facing VPN devices and gateways located on their network. [...]

https://www.bleepingcomputer.com/news/security/microsoft-is-alerting-hospitals-vulnerable-to-ransomware-attacks/

Hacker Group Backdoors Thousands of Microsoft SQL Servers Daily

Hackers have been brute-forcing thousands of vulnerable Microsoft SQL (MSSQL) servers to install cryptominers and remote access Trojans (RATs) since May 2018 as researchers at Guardicore Labs discovered in December. [...]

https://www.bleepingcomputer.com/news/security/hacker-group-backdoors-thousands-of-microsoft-sql-servers-daily/

Cloudflare Launches a DNS-Based Parental Control Service

Cloudflare introduced today '1.1.1.1 for Families,' a privacy-focused DNS resolver designed to help parents in their efforts to safeguard their children's online security and privacy​​​​​​ by automatically filtering out bad sites.​​​​​​​ [...]

https://www.bleepingcomputer.com/news/security/cloudflare-launches-a-dns-based-parental-control-service/

Introduce Kids to Cybersecurity With This Free Activity Book

Security company Balbix has released a 12-page printable activity book for children that introduces them to cybersecurity in a fun way. [...]

https://www.bleepingcomputer.com/news/security/introduce-kids-to-cybersecurity-with-this-free-activity-book/

How to Mitigate the Windows Font Parsing Zero-Day Bug via GPO

Active Directory (AD) admins can mitigate the recently disclosed and actively exploited remote code execution (RCE) zero-day found in the Windows Adobe Type Manager Library in large AD environments using group policies. [...]

https://www.bleepingcomputer.com/news/security/how-to-mitigate-the-windows-font-parsing-zero-day-bug-via-gpo/