Enel power company admits ransomware attack

European energy company giant Enel Group suffered a ransomware attack a few days ago that impacted its internal network. [...]

https://www.bleepingcomputer.com/news/security/enel-power-company-admits-ransomware-attack/

City of Knoxville shuts down network after ransomware attack

The City of Knoxville, Tennessee, was forced to shut down its entire computer network following a ransomware attack that took place overnight and targeted the city's offices. [...]

https://www.bleepingcomputer.com/news/security/city-of-knoxville-shuts-down-network-after-ransomware-attack/

Windows 10 tests WSL2 Linux Kernel updates via Windows Update

In the latest Windows 10 Insider build, Microsoft has started to test the distribution of Windows Subsystem for Linux version 2 kernels via Windows Update.  [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-tests-wsl2-linux-kernel-updates-via-windows-update/

Fortune 500 insurance firm Genworth discloses data breach

Fortune 500 insurance holding company Genworth Financial disclosed a data breach after an unauthorized party gained access to insurance agents' online accounts using compromised login credentials. [...]

https://www.bleepingcomputer.com/news/security/fortune-500-insurance-firm-genworth-discloses-data-breach/

Live event solutions leader TAIT discloses data breach

TAIT, one of the world's leading live event solutions providers, disclosed a data breach that led to the exposure of personal and financial information stored on a server and on the email accounts of some of its employees. [...]

https://www.bleepingcomputer.com/news/security/live-event-solutions-leader-tait-discloses-data-breach/

Hackers are quick to notice exposed Elasticsearch servers

Bad guys find unprotected Elasticsearch servers exposed on the web faster than search engines can index them. A study found that threat actors are mainly going for cryptocurrency mining and credential theft. [...]

https://www.bleepingcomputer.com/news/security/hackers-are-quick-to-notice-exposed-elasticsearch-servers/

Office 365 to offer more info on how it protects your email

Microsoft is working on providing Office 365 Advanced Threat Protection (ATP) users with more information on the route incoming emails take while going through the filtering stack before reaching their inbox, as well as on the effectiveness of any configuration changes. [...]

https://www.bleepingcomputer.com/news/security/office-365-to-offer-more-info-on-how-it-protects-your-email/

Windows 10 printing breaks due to Microsoft June 2020 updates

Windows 10 users are reporting that they are unable to print using devices from multiple vendors after installing cumulative updates for Windows 10 versions 1903, 1909, and 2004 devices released on June 9, 2020. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-printing-breaks-due-to-microsoft-june-2020-updates/

Recent Windows 10 updates block programs from running

Since the release of the Windows 10 1903/1909 KB4535996 and Windows 10 2004 KB4557957 cumulative updates, Windows users have been reporting that they receive errors that programs are missing when they attempt to launch them. [...]

https://www.bleepingcomputer.com/news/microsoft/recent-windows-10-updates-block-programs-from-running/

D-Link leaves severe security bugs in home router unpatched

D-Link has released a firmware update to fix three out of six security vulnerabilities reported for the DIR-865L wireless router model for consumers. One flaw is rated critical, others are high-severity. [...]

https://www.bleepingcomputer.com/news/security/d-link-leaves-severe-security-bugs-in-home-router-unpatched/

Fraudster gets maximum jail time for news site DDoS extortion

Iranian-born U.S. citizen Andrew Rakhshan, previously convicted in Canada for fraud, was sentenced to the maximum sentence of five years and ordered to pay over $500,000 after being found guilty of launching several distributed denial of service (DDoS) attacks against news websites. [...]

https://www.bleepingcomputer.com/news/security/fraudster-gets-maximum-jail-time-for-news-site-ddos-extortion/

The Week in Ransomware - June 12th 2020 - Slithering into networks

Attacks picked up at a rapid pace this week as well-known companies and cities were targeted with ransomware that impacted their networks. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-june-12th-2020-slithering-into-networks/

Black Kingdom ransomware hacks networks with Pulse VPN flaws

Operators of Black Kingdom ransomware are targeting enterprises with unpatched Pulse Secure VPN software or initial access on the network, security researchers have found. [...]

https://www.bleepingcomputer.com/news/security/black-kingdom-ransomware-hacks-networks-with-pulse-vpn-flaws/

Windows 10 Privacy Settings bug let users change admin options

An "Important" and equally ironic vulnerability, tracked as CVE-2020-1296 was fixed in the Microsoft June 2020 updates that allows privilege escalation in the Windows Diagnostics & Feedback settings app: the annoying privacy setting screen is shown to users when setting up or upgrading Windows. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-privacy-settings-bug-let-users-change-admin-options/

Avast fixes bug blocking programs from starting in Windows 10

A bug has been fixed in AVG and Avast security applications that set registry keys that blocked applications from running in Windows 10. [...]

https://www.bleepingcomputer.com/news/microsoft/avast-fixes-bug-blocking-programs-from-starting-in-windows-10/

Extortionists threaten to destroy sites in fake ransom attacks

Scammers are targeting website owners with blackmail messages asking them to pay ransoms between $1,500 and $3,000 in bitcoins to avoid having their sites' databases leaked and their reputation destroyed. [...]

https://www.bleepingcomputer.com/news/security/extortionists-threaten-to-destroy-sites-in-fake-ransom-attacks/

Windows 10 Alert: Defragger bug defrags SSD Drives too often

With the release of Windows 10 version 2004, the Windows Defragger has become a mess as it starts to defrag SSD drives too often, perform trim on non-SSD drives, and forgets when it last optimized a drive. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-alert-defragger-bug-defrags-ssd-drives-too-often/

Attackers impersonate secure messaging site to steal bitcoins

In what can be described as the case of both cybersquatting and phishing, threat actors have created a site that imitates the legitimate secure note sharing service privnote.com to steal bitcoins. [...]

https://www.bleepingcomputer.com/news/security/attackers-impersonate-secure-messaging-site-to-steal-bitcoins/

Windows 10: What to expect in upcoming feature updates

Microsoft previously confirmed that Windows 11 wouldn't be released, and the company will keep updating Windows 10 with new features, improvements, fixes, and bugs. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-what-to-expect-in-upcoming-feature-updates/

Accessories giant Claire's hacked to steal credit card info

The websites for U.S. based jewelry and accessory giant Claire's, and its subsidiary Icing, were compromised in April and may have allowed hackers to gain access to customer's credit cards. [...]

https://www.bleepingcomputer.com/news/security/accessories-giant-claires-hacked-to-steal-credit-card-info/

Microsoft removes Windows 10 2004 GameInput update block

Microsoft removed a Windows 10 2004 compatibility hold applied to prevent customers from losing mouse input in some games and apps using GameInput Redistributable after applying the Windows 10 May 2020 Update. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-removes-windows-10-2004-gameinput-update-block/