Zoom web client outage prevents users from joining meetings

Zoom users are currently unable to join meetings and webinars through the Zoom web client and WebSDK, with the outage not impacting users joining through the Zoom application. [...]

https://www.bleepingcomputer.com/news/technology/zoom-web-client-outage-prevents-users-from-joining-meetings/

FritzFrog malware attacks Linux servers over SSH to mine Monero

A sophisticated botnet campaign named FritzFrog has been discovered breaching SSH servers around the world, since at least January 2020. [...]

https://www.bleepingcomputer.com/news/security/fritzfrog-malware-attacks-linux-servers-over-ssh-to-mine-monero/

Researchers detail bug in wireless devices impacting critical sectors

A vulnerability affecting components used in millions of critical connected devices in the automotive, energy, telecom, and medical sector could let hackers hijack the device or access the internal network. [...]

https://www.bleepingcomputer.com/news/security/researchers-detail-bug-in-wireless-devices-impacting-critical-sectors/

Tor Project shares proposals to limit DDoS impact on Onion sites

The Tor Project proposed some defense schemes that could be used in the future to limit the impact of distributed-denial-of-service (DDoS) attacks that have been plaguing defend dark web (Onion) sites for years. [...]

https://www.bleepingcomputer.com/news/security/tor-project-shares-proposals-to-limit-ddos-impact-on-onion-sites/

Microsoft Teams users can't join meetings hosted in North America

Microsoft Teams users have been experiencing issues joining meetings hosted in North America for the last two hours, with Microsoft saying that it's seeing partial recovery after re-routing traffic. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-teams-users-cant-join-meetings-hosted-in-north-america/

US govt exposes new North Korean BLINDINGCAN backdoor malware

U.S. government agencies today published a malware analysis report exposing information on a remote access trojan (RAT) malware used by North Korean hackers. [...]

https://www.bleepingcomputer.com/news/security/us-govt-exposes-new-north-korean-blindingcan-backdoor-malware/

Lucifer cryptomining DDoS malware now targets Linux systems

A hybrid DDoS botnet known for turning vulnerable Windows devices into Monero cryptomining bots is now also scanning for and infecting Linux systems. [...]

https://www.bleepingcomputer.com/news/security/lucifer-cryptomining-ddos-malware-now-targets-linux-systems/

Spotify hit with outage after forgetting to renew a certifficate

Spotify was hit with a brief outage today after they forgot to renew a certificate used as part of their service. [...]

https://www.bleepingcomputer.com/news/technology/spotify-hit-with-outage-after-forgetting-to-renew-a-certifficate/

Microsoft issues out of band KB4578013 Windows security update

Microsoft has issued an emergency out of band Windows security update designed to address privilege escalation bugs found to impact the Windows Remote Access service. [...]

https://www.bleepingcomputer.com/news/security/microsoft-issues-out-of-band-kb4578013-windows-security-update/

Gun exchange site confirms data breach after database posted online

A hacker has released the databases of Utah-based gun exchange, hunting, and kratom sites for free on a cybercrime forum. [...]

https://www.bleepingcomputer.com/news/security/gun-exchange-site-confirms-data-breach-after-database-posted-online/

Memory leak in IBM DB2 gives access to sensitive data, causes DoS

A memory leak vulnerability in IBM Db2 relational database could allow an attacker to gain access to sensitive data or cause a denial-of-service (DoS) condition in the database. [...]

https://www.bleepingcomputer.com/news/security/memory-leak-in-ibm-db2-gives-access-to-sensitive-data-causes-dos/

MITRE shares this year's top 25 most dangerous software bugs

MITRE today shared a list of the top 25 most common and dangerous weaknesses plaguing software during the last two previous years.  [...]

https://www.bleepingcomputer.com/news/security/mitre-shares-this-years-top-25-most-dangerous-software-bugs/

Google fixes Gmail bug allowing attackers to send spoofed emails

Google fixed a critical bug affecting Gmail and G Suite that would have allowed attackers to send spoofed malicious emails as any other Google user or enterprise customer. [...]

https://www.bleepingcomputer.com/news/security/google-fixes-gmail-bug-allowing-attackers-to-send-spoofed-emails/

Windows 10 Updates Health Report - KB4566782 & KB4565351

This Windows 10 Health Report provides an overview of the problems people encounter with the recently released Windows 10 2004 KB4566782 and Windows 10 1909 KB4565351 cumulative updates. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-updates-health-report-kb4566782-and-kb4565351/

Microsoft enables TLS 1.3 by default in latest Windows 10 builds

Microsoft says that TLS 1.3 will be enabled by default in all Windows 10 Insider Preview builds beginning with Build 20170 as the start of a wider rollout to all Windows 10 systems. [...]

https://www.bleepingcomputer.com/news/security/microsoft-enables-tls-13-by-default-in-latest-windows-10-builds/

Windows 10 KB4566116 update fixes crashing settings, unlock bug

Microsoft released the August 2020 Windows 10 KB4566116 non-security preview cumulative update with fixes for an issue leading to the Settings page to crash, preventing users from properly configuring applications and Windows features. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-kb4566116-update-fixes-crashing-settings-unlock-bug/

WSL2 now rolling out to devices running Windows 10 1903 and 1909

If you are still running Windows 10 version 1903 or 1909, then you have a nice little present coming as Microsoft just backported Windows Subsystem for Linux 2 to these older versions. [...]

https://www.bleepingcomputer.com/news/microsoft/wsl2-now-rolling-out-to-devices-running-windows-10-1903-and-1909/

University of Utah pays $450K ransom to stop leak of stolen data

The University of Utah has paid a $457,000 ransomware to prevent threat actors from releasing files stolen during a ransomware attack. [...]

https://www.bleepingcomputer.com/news/security/university-of-utah-pays-450k-ransom-to-stop-leak-of-stolen-data/

Malware can no longer disable Microsoft Defender via the Registry

Microsoft has removed the ability to disable Microsoft Defender and third-party security software via the Registry to prevent malware from tampering with protection settings. [...]

https://www.bleepingcomputer.com/news/microsoft/malware-can-no-longer-disable-microsoft-defender-via-the-registry/

Windows 10 2009 is almost here, released to enterprise for testing

The Windows 10 2009 feature update, also known as Windows 10 20H2, is almost ready, and Microsoft has released the latest version to the enterprise for testing via the Windows Server Update Service (WSUS). [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-2009-is-almost-here-released-to-enterprise-for-testing/

Community-provided Amazon Machine Images come with malware risk

Security researchers are sounding the alarm about Amazon Machine Images (AMIs) tainted with malicious code that could compromise an organization's cloud environment. [...]

https://www.bleepingcomputer.com/news/security/community-provided-amazon-machine-images-come-with-malware-risk/