Windows POS malware uses DNS to smuggle stolen credit cards

A Windows Point-of-Sale (POS) malware has been discovered using the DNS protocol to smuggle stolen credit cards to a remote server under attacker's control. [...]

https://www.bleepingcomputer.com/news/security/windows-pos-malware-uses-dns-to-smuggle-stolen-credit-cards/

TrickBot malware now checks screen resolution to evade analysis

The infamous TrickBot trojan has started to check the screen resolutions of victims to detect whether the malware is running in a virtual machine. [...]

https://www.bleepingcomputer.com/news/security/trickbot-malware-now-checks-screen-resolution-to-evade-analysis/

Federal Reserve shares tips on mitigating synthetic identity fraud

The U.S. Federal Reserve today issued guidance on how financial organizations from the United States can mitigate payment fraud attempts scammers carry out with the help of synthetic identity accounts.  [...]

https://www.bleepingcomputer.com/news/security/federal-reserve-shares-tips-on-mitigating-synthetic-identity-fraud/

Microsoft unveils new Windows 10 Start Menu with theme-aware tiles

Say goodbye to the blocky Window 10 Start Menu tiles with colored backgrounds and hello to partially transparent theme-aware tiles that look so much nicer. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-unveils-new-windows-10-start-menu-with-theme-aware-tiles/

GoldenSpy backdoor installed by tax software gets remotely removed

As soon as security researchers uncovered the activity of GoldenSpy backdoor, the actor behind it fell back and delivered an uninstall tool to remove all traces of the malware. [...]

https://www.bleepingcomputer.com/news/security/goldenspy-backdoor-installed-by-tax-software-gets-remotely-removed/

Hundreds arrested after encrypted messaging network takeover

European law enforcement agencies arrested hundreds of suspects in several countries including France, Netherlands, the UK, Norway, and Sweden after infiltrating the EncroChat encrypted mobile communication network used by organized crime groups. [...]

https://www.bleepingcomputer.com/news/security/hundreds-arrested-after-encrypted-messaging-network-takeover/

Researchers link APT15 hackers to Chinese military company

Researchers have linked the APT15 hacking group known for Android spyware apps to a Chinese military company, Xi'an Tian He Defense Technology Co. Ltd. [...]

https://www.bleepingcomputer.com/news/security/researchers-link-apt15-hackers-to-chinese-military-company/

Microsoft shares Windows 10 2004 workaround for Storage Spaces issue

Microsoft has provided workarounds to help customers partially mitigate the impact of an issue affecting some devices with Parity Storage Spaces configurations after applying the May 2020 Update. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-shares-windows-10-2004-workaround-for-storage-spaces-issue/

NSA releases guidance on securing IPsec Virtual Private Networks

The US National Security Agency (NSA) has published guidance on how to properly secure IP Security (IPsec) Virtual Private Networks (VPNs) against potential attacks. [...]

https://www.bleepingcomputer.com/news/security/nsa-releases-guidance-on-securing-ipsec-virtual-private-networks/

Windows 10 background image tool can be abused to download malware

A binary in Windows 10 responsible for setting an image for the desktop and lock screen can help attackers download malware on a compromised system without raising the alarm. [...]

https://www.bleepingcomputer.com/news/security/windows-10-background-image-tool-can-be-abused-to-download-malware/

Surge of MongoDB ransom attacks use GDPR as extortion leverage

A flood of attacks is targeting unsecured MongoDB servers and wiping their databases. Left behind are notes demanding a ransom payment, or the data will be leaked, and the owners reported for GDPR violations. [...]

https://www.bleepingcomputer.com/news/security/surge-of-mongodb-ransom-attacks-use-gdpr-as-extortion-leverage/

Malwarebytes AdwCleaner now removes malware from the command line

The popular AdwCleaner tool from Malwarebytes is about to get even more popular as it now can be used entirely from the command line. [...]

https://www.bleepingcomputer.com/news/security/malwarebytes-adwcleaner-now-removes-malware-from-the-command-line/

Microsoft Defender ATP now helps secure network devices

Microsoft Defender Advanced Threat Protection (ATP) can now assess the collective security configuration state of devices on an enterprise network with the help of a new feature dubbed Microsoft Secure Score for Devices. [...]

https://www.bleepingcomputer.com/news/security/microsoft-defender-atp-now-helps-secure-network-devices/

Windows 10 2004 breaks OneDrive connectivity for some users

Microsoft says that some users might experience OneDrive connectivity issues after updating their devices to Windows 10, version 2004 or enabling Files on Demand in OneDrive. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-2004-breaks-onedrive-connectivity-for-some-users/

Avaddon ransomware shows that Excel 4.0 macros are still effective

Avaddon ransomware has been spreading this week via an old technique that's making a comeback, Microsoft cautions on Thursday. [...]

https://www.bleepingcomputer.com/news/security/avaddon-ransomware-shows-that-excel-40-macros-are-still-effective/

F5 patches critical BIG-IP ADC remote code execution vulnerability

F5 Networks (F5) patched a critical remote code execution (RCE) vulnerability found in undisclosed pages of Traffic Management User Interface (TMUI) of the BIG-IP application delivery controller (ADC). [...]

https://www.bleepingcomputer.com/news/security/f5-patches-critical-big-ip-adc-remote-code-execution-vulnerability/

The Week in Ransomware - July 3rd 2020 - Yes, Macs need antivirus

Many macOS users, including my family and friends, have been under the impression that Macs are not affected by malware and thus do not need security software. After this week, I hope the point is clear; that assumption is wrong, and Macs need antivirus software. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-july-3rd-2020-yes-macs-need-antivirus/

Try2Cry ransomware tries to worm its way to other Windows systems

A new ransomware known as Try2Cry is trying to worm its way onto other Windows computers by infecting USB flash drives and using Windows shortcuts (LNK files) posing as the targets' files to lure them into infecting themselves. [...]

https://www.bleepingcomputer.com/news/security/try2cry-ransomware-tries-to-worm-its-way-to-other-windows-systems/

Companies start reporting ransomware attacks as data breaches

Corporate victims are finally starting to realize that ransomware attacks are data breaches and have begun to notify employees and clients about data stolen data. [...]

https://www.bleepingcomputer.com/news/security/companies-start-reporting-ransomware-attacks-as-data-breaches/

New Behave! extension warns of website port scans, local attacks

A new browser extension called Behave! will warn you if a web site is using scripts to perform scans or attacks on local and private IP addresses on your network. [...]

https://www.bleepingcomputer.com/news/security/new-behave-extension-warns-of-website-port-scans-local-attacks/

.NET Core vulnerability lets attackers evade malware detection

A vulnerability in the .NET Core library allows malicious programs to be launched while evading detection by security software. [...]

https://www.bleepingcomputer.com/news/security/net-core-vulnerability-lets-attackers-evade-malware-detection/