Microsoft's PowerToys gets two new features on Windows 10

At the Build 2020 developer conference, Microsoft announced PowerToys 0.18 with two new features that allow you to quickly launch applications or modify keyboard shortcuts. [...]

https://www.bleepingcomputer.com/news/microsoft/microsofts-powertoys-gets-two-new-features-on-windows-10/

Hackers leak credit card info from Costa Rica's state bank

Maze ransomware operators have published credit card data stolen from the Bank of Costa Rica (BCR). They threaten to leak similar files on a weekly basis. [...]

https://www.bleepingcomputer.com/news/security/hackers-leak-credit-card-info-from-costa-ricas-state-bank/

eBay port scans visitors' computers for remote access programs

When visiting the eBay.com site, a script will run that performs a local port scan of your computer to detect remote support and remote management applications. [...]

https://www.bleepingcomputer.com/news/security/ebay-port-scans-visitors-computers-for-remote-access-programs/

Windows Hello is getting two new features in May 2020 Update

Windows Hello, which is an all-in-one biometric authentication process baked into Windows 10, is getting enhancements in the May 2020 Update. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-hello-is-getting-two-new-features-in-may-2020-update/

Windows Hello is getting two new features in Windows 10 2004

Windows Hello, which is an all-in-one biometric authentication process baked into Windows 10, is getting enhancements in the May 2020 Update. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-hello-is-getting-two-new-features-in-windows-10-2004/

Hacker extorts online shops, sells databases if ransom not paid

More than two dozen SQL databases stolen from online shops in various countries are being offered for sale on a public website. In total, the seller provides over 1.5 million rows of records but the damage is likely much larger. [...]

https://www.bleepingcomputer.com/news/security/hacker-extorts-online-shops-sells-databases-if-ransom-not-paid/

Russian cyberspies use Gmail to control updated ComRAT malware

ESET security researchers have discovered a new version of the ComRAT backdoor controlled using the Gmail web interface and used by the state-backed Russian hacker group Turla for harvesting and stealing in attacks against governmental institutions. [...]

https://www.bleepingcomputer.com/news/security/russian-cyberspies-use-gmail-to-control-updated-comrat-malware/

Hacking group builds new Ketrum malware from recycled backdoors

The Ke3chang hacking group historically believed to be operating out of China has developed new malware dubbed Ketrum by merging features and source code from their older Ketrican and Okrum backdoors. [...]

https://www.bleepingcomputer.com/news/security/hacking-group-builds-new-ketrum-malware-from-recycled-backdoors/

New [F]Unicorn ransomware hits Italy via fake COVID-19 infection map

A new ransomware threat called [F]Unicorn has been encrypting computers in Italy by tricking victims into downloading a fake contact tracing app that promises to bring real-time updates for COVID-19 infections. [...]

https://www.bleepingcomputer.com/news/security/new-f-unicorn-ransomware-hits-italy-via-fake-covid-19-infection-map/

List of ransomware that leaks victims' stolen files if not paid

Starting last year, ransomware operators have escalated their extortion strategies by stealing files from victims before encrypting their data. These stolen files are then used as further leverage to force victims to pay. [...]

https://www.bleepingcomputer.com/news/security/list-of-ransomware-that-leaks-victims-stolen-files-if-not-paid/

Critical Android bug lets malicious apps hide in plain sight

A critical Android security vulnerability disclosed today and dubbed StrandHogg 2.0 can allow malicious apps to camouflage as most legitimate applications and steal sensitive information from Android users. [...]

https://www.bleepingcomputer.com/news/security/critical-android-bug-lets-malicious-apps-hide-in-plain-sight/

Arbonne MLM data breach exposes user passwords, personal info

International multi-level marketing (MLM) firm Arbonne International exposed the personal information and credentials of thousands after its internal systems were breached by an unauthorized party last month. [...]

https://www.bleepingcomputer.com/news/security/arbonne-mlm-data-breach-exposes-user-passwords-personal-info/

Windows 10 Storage Sense and Disk Cleanup merged in new app

A new program called BurnBytes has been released that merges the traditional functionality of the Microsoft Disk Cleanup utility with the aesthetics of Windows 10's Storage Sense feature. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-storage-sense-and-disk-cleanup-merged-in-new-app/

26 million LiveJournal accounts being shared on hacker forums

A database containing over 26 million unique LiveJournal user accounts, including plain text passwords, is being shared for free on multiple hacker forums. [...]

https://www.bleepingcomputer.com/news/security/26-million-livejournal-accounts-being-shared-on-hacker-forums/

Ransomware's big jump: ransoms grew 14 times in one year

Ransomware has become one of the most insidious threats in the past couple of years, with actors scaling up their operations to the point that the average ransom demand increased more than 10 times in one year. [...]

https://www.bleepingcomputer.com/news/security/ransomwares-big-jump-ransoms-grew-14-times-in-one-year/

$100 million in bounties paid by HackerOne to ethical hackers

Bug bounty platform HackerOne announced today that it has paid out $100,000,000 in rewards to white-hat hackers around the world as of May 26, 2020. [...]

https://www.bleepingcomputer.com/news/security/100-million-in-bounties-paid-by-hackerone-to-ethical-hackers/

Germany govt urges iOS users to patch critical Mail app flaws

Germany's federal cybersecurity agency today urged iOS users to immediately install the iOS and iPadOS security updates released by Apple on May 20 to patch two actively exploited zero-click security vulnerabilities impacting the default email app. [...]

https://www.bleepingcomputer.com/news/security/germany-govt-urges-ios-users-to-patch-critical-mail-app-flaws/

Windows 10 May 2020 Update released, Here are the new features

Microsoft has released the Windows 10 May 2020 Update today, May 27th, 2019, in a gradual rollout to all users worldwide. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-may-2020-update-released-here-are-the-new-features/

Windows 10’s Pktmon sniffer gets real-time monitoring, PCAP support

Windows 10's built-in network packet sniffer Pktmon has been updated with real-time monitoring and PCAPNG capture file format support with today's release of Windows 10 2004. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-s-pktmon-sniffer-gets-real-time-monitoring-pcap-support/

Windows 10 2004 comes with Wi-Fi 6 and WPA3 support

Microsoft announced that Windows 10, version 2004 comes with Wi-Fi 6 and WPA3 support for gigabit speeds and better performance, as well as for more secure wireless network connectivity. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-2004-comes-with-wi-fi-6-and-wpa3-support/

Microsoft is investigating ten Windows 10 2004 known issues

Right after releasing the Windows 10 May 2020 Update to home customers, Microsoft has already added ten know issues under investigation to the Windows 10 2004 release health dashboard. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-is-investigating-ten-windows-10-2004-known-issues/