Apple: Closing MacBooks with camera covers leads to display damage

Apple warns customers to avoid closing their MacBook, MacBook Air, or MacBook Pro devices if they use a camera cover thicker than 0.1mm to avoid display damage. [...]

https://www.bleepingcomputer.com/news/apple/apple-closing-macbooks-with-camera-covers-leads-to-display-damage/

The Week in Ransomware - July 10th 2020 - A quiet week

It has been a pretty quiet week with few alleged attacks against corporate victims and mostly new variants of existing ransomware released. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-july-10th-2020-a-quiet-week/

How to enable Windows 10's hidden features using Mach2

Windows 10 builds contain many hidden features that are used by Microsoft to debug code or test applications that have not been officially released yet. A new tool has been released that enables you to find and enable these hidden features in Windows 10. [...]

https://www.bleepingcomputer.com/news/microsoft/how-to-enable-windows-10s-hidden-features-using-mach2/

TrickBot malware mistakenly warns victims that they are infected

The notorious TrickBot malware mistakenly left a test module that is warning victims that they are infected and should contact their administrator. [...]

https://www.bleepingcomputer.com/news/security/trickbot-malware-mistakenly-warns-victims-that-they-are-infected/

Zoom fixes zero-day RCE bug affecting Windows 7, more updates soon

​The Zoom web conference Client contained a zero-day vulnerability that could have allowed attackers to execute commands on vulnerable systems remotely. [...]

https://www.bleepingcomputer.com/news/security/zoom-fixes-zero-day-rce-bug-affecting-windows-7-more-updates-soon/

How to use Windows 10’s Storage Sense to free up Disk Space

Windows has always allowed users to free up storage space by emptying temporary files, recycling bin, and the downloads folder's contents. With Windows 10, Microsoft has made things a little bit easier with a new automated feature called 'Storage Sense.' [...]

https://www.bleepingcomputer.com/news/microsoft/how-to-use-windows-10-s-storage-sense-to-free-up-disk-space/

Malware adds Any.Run sandbox detection to evade analysis

Malware developers are now checking if their malware is running in the Any.Run malware analysis service to prevent their malware from being easily analyzed by researchers. [...]

https://www.bleepingcomputer.com/news/security/malware-adds-anyrun-sandbox-detection-to-evade-analysis/

Malware adds Any.Run sandbox detection to evade analysis

Malware developers are now checking if their malware is running in the Any.Run malware analysis service to prevent their malware from being easily analyzed by researchers. [...]

https://www.bleepingcomputer.com/news/security/malware-adds-anyrun-sandbox-detection-to-evade-analysis/

Windows 10's Feedback Hub: A forum for political trolls, spammers

When Microsoft made the Feedback Hub universal app available to Windows 10 Insiders in March 2016 and generally available two months later, the plan was for the app to be the perfect tool for users to report issues and share suggestions on how to improve Windows experience for all customers. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10s-feedback-hub-a-forum-for-political-trolls-spammers/

Microsoft Office 365 will add support for disposable emails

Microsoft will provide Office 365 customers with support for using disposable emails to make it simpler to manage their inboxes and to keep track of email campaigns. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-office-365-will-add-support-for-disposable-emails/

Microsoft extends security for Azure Storage file shares, data lakes

Microsoft today announced that advanced threat protection for Azure Storage now also allows customers to protect data stored in Azure Files file shares and Azure Data Lake Storage Gen2 API data stores. [...]

https://www.bleepingcomputer.com/news/security/microsoft-extends-security-for-azure-storage-file-shares-data-lakes/

LiveAuctioneers reports data breach after user records sold online

LiveAuctioneers has disclosed a data breach after a well-known data breach broker began selling 3.4 million stolen user records on a hacker forum. [...]

https://www.bleepingcomputer.com/news/security/liveauctioneers-reports-data-breach-after-user-records-sold-online/

New AgeLocker Ransomware uses Googler's utility to encrypt files

A new and targeted ransomware named AgeLocker utilizes the 'Age' encryption tool created by a Google employee to encrypt victim's files. [...]

https://www.bleepingcomputer.com/news/security/new-agelocker-ransomware-uses-googlers-utility-to-encrypt-files/

Critical SAP Recon flaw exposes thousands of systems to attacks

SAP patched a critical vulnerability affecting over 40,000 systems and found in the SAP NetWeaver Java versions 7.30 to 7.50, a core component of several solutions and products deployed in most SAP environments. [...]

https://www.bleepingcomputer.com/news/security/critical-sap-recon-flaw-exposes-thousands-of-systems-to-attacks/

Android chat app uses public code to spy, exposes user data

A chat application for Android claiming to be a secure messaging platform comes with spying functionality and stores user data in an unsecure location that is publicly available. [...]

https://www.bleepingcomputer.com/news/security/android-chat-app-uses-public-code-to-spy-exposes-user-data/

New GoldenHelper malware found in official Chinese tax software

A new backdoor dubbed GoldenHelper was discovered by Trustwave embedded within Golden Tax Invoicing Software, part of the Chinese government' Golden Tax Project and required for issuing invoices and paying value-add tax (VAT) taxes. [...]

https://www.bleepingcomputer.com/news/security/new-goldenhelper-malware-found-in-official-chinese-tax-software/

Adobe fixes critical bugs in Creative Cloud, Media Encoder

Adobe has released security updates to address four critical vulnerabilities that could allow attackers to execute arbitrary code and write arbitrary files on Windows devices running vulnerable versions of Creative Cloud, Adobe Download Manager, and Adobe Media Encoder. [...]

https://www.bleepingcomputer.com/news/security/adobe-fixes-critical-bugs-in-creative-cloud-media-encoder/

Hacker releases database of 270 million alleged Wattpad records

An allegedly stolen Wattpad database containing 270 million records were being sold in private sales for over $100,000. Now it is being offered for free on hacker forums. [...]

https://www.bleepingcomputer.com/news/security/hacker-releases-database-of-270-million-alleged-wattpad-records/

Windows 10 Cumulative Updates KB4565503 & KB4565483 Released

The July 2020 Patch Tuesday updates for Windows 10 version 2004 and later are now rolling out and you can download and install the latest security fixes by checking for updates in the Settings. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-cumulative-updates-kb4565503-and-kb4565483-released/

Microsoft patches critical wormable SigRed bug in Windows DNS Server

A critical vulnerability that's been sitting in Microsoft's Windows DNS Server for almost two decades could be exploited to gain Domain Administrator privileges and compromise the entire corporate infrastructure behind it. [...]

https://www.bleepingcomputer.com/news/security/microsoft-patches-critical-wormable-sigred-bug-in-windows-dns-server/

Microsoft July 2020 Patch Tuesday: 123 vulnerabilities, 18 Critical!

Today is Microsoft's July 2020 Patch Tuesday, and if you see Windows administrators cursing for no reason, now you know why! With the July 2020 Patch Tuesday security updates release, Microsoft has released one advisory for a tampering vulnerability in IIS and fixes for 123 vulnerabilities in Microsoft products. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-july-2020-patch-tuesday-123-vulnerabilities-18-critical/