Hacker selling 550 million stolen user records on hacking forum

A threat actor is selling twenty-nine databases on a hacker forum that allegedly contains a combined total of 550 million stolen user records. [...]

https://www.bleepingcomputer.com/news/security/hacker-selling-550-million-stolen-user-records-on-hacking-forum/

New Microsoft 365 sign-in pages already spoofed for phishing

Microsoft says that attackers have already adapted their phishing campaigns to use the newly updated design for Azure AD and Microsoft 365 sign-in pages. [...]

https://www.bleepingcomputer.com/news/security/new-microsoft-365-sign-in-pages-already-spoofed-for-phishing/

New COMpfun malware variant gets commands from HTTP error codes

A new COMpfun remote access trojan (RAT) variant controlled using uncommon HTTP status codes was used in attacks targeting European diplomatic entities. [...]

https://www.bleepingcomputer.com/news/security/new-compfun-malware-variant-gets-commands-from-http-error-codes/

Free Grand Theft Auto V offer brings down Epic Games Store

Epic Games store is experiencing an outage after being bum-rushed by gamers looking to snag a copy of Grand Theft Auto 5 being offered for free today. [...]

https://www.bleepingcomputer.com/news/gaming/free-grand-theft-auto-v-offer-brings-down-epic-games-store/

Microsoft Office 365 ATP getting malware campaign analysis

Microsoft is in the process of expanding the Office 365 Advanced Threat Protection (ATP) capabilities with attack flow overviews of malware attacks targeting organizations. [...]

https://www.bleepingcomputer.com/news/security/microsoft-office-365-atp-getting-malware-campaign-analysis/

Backdoors in recent espionage attempts link to Microcin malware

Antivirus engines foiled an advanced attacker's attempts to infiltrate a governmental institution and corporate networks of two companies in the telecommunications and gas sector. [...]

https://www.bleepingcomputer.com/news/security/backdoors-in-recent-espionage-attempts-link-to-microcin-malware/

Ransomware recruits affiliates with huge payouts, automated leaks

The Netwalker ransomware operation is recruiting potential affiliates with the possibility of million-dollar payouts and an auto-publishing data leak blog to help drive successful ransom payments. [...]

https://www.bleepingcomputer.com/news/security/ransomware-recruits-affiliates-with-huge-payouts-automated-leaks/

RATicate drops info stealing malware and RATs on industrial targets

Security researchers from Sophos have identified a hacking group that abused NSIS installers to deploy remote access tools (RATs) and information-stealing malware in attacks targeting industrial companies. [...]

https://www.bleepingcomputer.com/news/security/raticate-drops-info-stealing-malware-and-rats-on-industrial-targets/

New BotSight browser extension reveals Twitter bots

The new browser extension called BotSight aims to reveal what Twitter accounts are bots or real humans so that you can judge the truthfulness of their tweets. [...]

https://www.bleepingcomputer.com/news/security/new-botsight-browser-extension-reveals-twitter-bots/

Wannabe ransomware operators arrested before hospital attacks

Law enforcement in Romania today arrested a group of individuals that were planning ransomware attacks against healthcare institutions in the country. [...]

https://www.bleepingcomputer.com/news/security/wannabe-ransomware-operators-arrested-before-hospital-attacks/

Critical WordPress plugin bug allows for automated takeovers

Attackers can exploit a critical vulnerability in the WP Product Review Lite plugin installed on over 40,000 WordPress sites to inject malicious code and potentially take over vulnerable websites. [...]

https://www.bleepingcomputer.com/news/security/critical-wordpress-plugin-bug-allows-for-automated-takeovers/

WordPress malware finds WooCommerce sites for Magecart attacks

Researchers at website security firm Sucuri have discovered a new WordPress malware used by threat actors to scan for and identify WooCommerce online shops with a lot of customers. [...]

https://www.bleepingcomputer.com/news/security/wordpress-malware-finds-woocommerce-sites-for-magecart-attacks/

Windows 10 quietly got a built-in network sniffer, how to use

Microsoft has quietly added a built-in network packet sniffer to the Windows 10 October 2018 Update, and it has gone unnoticed since its release. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-quietly-got-a-built-in-network-sniffer-how-to-use/

The Week in Ransomware - May 15th 2020 - REvil targets Trump

This week, we saw some interesting news about ransomware features being added and continued attackers against high profile victims. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-may-15th-2020-revil-targets-trump/

What's new in Windows Subsystem for Linux 2.0, coming soon

Windows Subsystem for Linux 2 (WSL2) is being released soon with the May 2020 Update (Windows 10 2004) and comes with new features and performance improvements. [...]

https://www.bleepingcomputer.com/news/microsoft/whats-new-in-windows-subsystem-for-linux-20-coming-soon/

Zoom global outage preventing meetings, video, and audio

Zoom has a global outage that is preventing users from joining meetings or see video and hear audio once they have joined. There is currently no indication as to when the issue will be resolved. [...]

https://www.bleepingcomputer.com/news/software/zoom-global-outage-preventing-meetings-video-and-audio/

European supercomputers hacked in mysterious cyberattacks

Several high-performance computers and data centers used for research projects used for research projects have been shut down this week across Europe due to security incidents. [...]

https://www.bleepingcomputer.com/news/security/european-supercomputers-hacked-in-mysterious-cyberattacks/

Microsoft Edge Canary now lets you read aloud your PDF files

In latest Edge Canary, the company has finally added support fora Read Aloud feature in PDFs using their new cloud-powered voices. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-canary-now-lets-you-read-aloud-your-pdf-files/

FBI warns of ProLock ransomware decryptor not working properly

Multiple actors in the ransomware business saw the new coronavirus pandemic as the perfect opportunity to focus on an already overburdened healthcare sector. ProLock is yet another threat to the list. [...]

https://www.bleepingcomputer.com/news/security/fbi-warns-of-prolock-ransomware-decryptor-not-working-properly/

Windows 10 Defender's hidden features revealed by this free tool

Windows 10's built-in Microsoft Defender antivirus solution has many advanced hidden features that allow you to customize how the security software works. Unfortunately, most people do not know these settings exist or even how to access them. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-defenders-hidden-features-revealed-by-this-free-tool/

Ransomware attack impacts Texas Department of Transportation

A new ransomware attack is affecting the Texas government. This time, hackers got into the network of the state's Department of Transportation (TxDOT). [...]

https://www.bleepingcomputer.com/news/security/ransomware-attack-impacts-texas-department-of-transportation/