US files lawsuit to seize cryptocurrency stolen by DPRK hackers

The U.S. Justice Department today filed a civil forfeiture complaint aiming to seize control of 280 Bitcoin (BTC) and Ethereum (ETH) accounts containing funds allegedly stolen by North Korean hackers in attacks against two unnamed cryptocurrency exchanges. [...]

https://www.bleepingcomputer.com/news/security/us-files-lawsuit-to-seize-cryptocurrency-stolen-by-dprk-hackers/

Elon Musk confirmed Russian's plans to extort Tesla

The FBI thwarted the plans of 27-year-old Russian national Egor Igorevich Kriuchkov to recruit an insider within Tesla's Sparks, Nevada factory, persuade him to plant malware on the company's network, and then ransom Tesla under threat that he would leak data stolen from their systems. [...]

https://www.bleepingcomputer.com/news/security/elon-musk-confirmed-russians-plans-to-extort-tesla/

Microsoft to remove insecure TLS support on its Linux Software Repository

Microsoft is discontinuing support for the insecure TLS 1.0 and TLS 1.1 protocols on its Linux Software Repository starting with September 24, 2020. [...]

https://www.bleepingcomputer.com/news/security/microsoft-to-remove-insecure-tls-support-on-its-linux-software-repository/

UltraRank hackers steal credit cards from hundreds of stores

A cybercriminal group specialized in infecting online shops to steal payment card data. is responsible for compromising almost 700 websites and more than a dozen third-party service providers. [...]

https://www.bleepingcomputer.com/news/security/ultrarank-hackers-steal-credit-cards-from-hundreds-of-stores/

Cisco engineer resigns then nukes 16k WebEx accounts, 456 VMs

A former Cisco employee pleaded guilty to accessing the company's cloud infrastructure in 2018, five months after resigning, to deploy code that led to the shut down of more than 16,000 WebEx Teams accounts and the deletion of 456 virtual machines. [...]

https://www.bleepingcomputer.com/news/security/cisco-engineer-resigns-then-nukes-16k-webex-accounts-456-vms/

Single & penniless: FBI warns of $475M lost to romance scams

The Federal Bureau of Investigation is warning of online romance scams, an ongoing online fraud trend that can lead to large financial losses, as well as devastating emotional scars. [...]

https://www.bleepingcomputer.com/news/security/single-and-penniless-fbi-warns-of-475m-lost-to-romance-scams/

How to run Linux programs from a Windows 10 command prompt

Using the Windows Subsystem for Linux (WSL), you can launch Linux applications directly in a Windows 10 command prompt or PowerShell prompt. [...]

https://www.bleepingcomputer.com/news/microsoft/how-to-run-linux-programs-from-a-windows-10-command-prompt/

Why streaming a video could freeze Microsoft IIS servers

Microsoft August 2020 security patch fixed over 120 flaws. One of these flaws lets anyone freeze IIS servers by streaming videos, and seeking through them fast. [...]

https://www.bleepingcomputer.com/editorial/security/why-streaming-a-video-could-freeze-microsoft-iis-servers/

Emotet malware's new 'Red Dawn' attachment is just as dangerous

The Emotet botnet has begun to use a new template for their malicious attachments, and it is just as dangerous as ever. [...]

https://www.bleepingcomputer.com/news/security/emotet-malwares-new-red-dawn-attachment-is-just-as-dangerous/

Windows 10 21H1: The exciting features in next year's major update

In this article, we've highlighted the new features that Microsoft is currently testing for Windows 10 21H1 and greater. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-21h1-the-exciting-features-in-next-years-major-update/

Namecheap hosting and email DOWN in prolonged outage

One of the world's largest domain registrars, Namecheap has been hit with a series of mysterious outages today and it is not clear why.. [...]

https://www.bleepingcomputer.com/news/technology/namecheap-hosting-and-email-down-in-prolonged-outage/

Slack pays stingy $1,750 reward for a desktop hijack vulnerability

A researcher responsibly disclosed multiple vulnerabilities to Slack that allowed an attacker to hijack a user's computer, and they were only rewarded a measly $1,750. [...]

https://www.bleepingcomputer.com/news/security/slack-pays-stingy-1-750-reward-for-a-desktop-hijack-vulnerability/

CenturyLink routing issue led to outages on Hulu, Steam, Discord, more

A CenturyLink BGP routing mistake has led to a ripple effect across the Internet that led to outages for numerous Internet-connected services such as Cloudflare, Amazon, Garmin, Steam, Discord, Blizzard, and many more. [...]

https://www.bleepingcomputer.com/news/technology/centurylink-routing-issue-led-to-outages-on-hulu-steam-discord-more/

You have two days left to purchase 2-year TLS/SSL certificates

If you are looking to purchase a 2-year TLS or SSL certificate, you have only two days left before all new certificates will have a maximum 397 day validity period. [...]

https://www.bleepingcomputer.com/news/technology/you-have-two-days-left-to-purchase-2-year-tls-ssl-certificates/

Cisco warns of actively exploited bug in carrier-grade routers

Cisco warned over the weekend that threat actors are trying to exploit a high severity memory exhaustion denial-of-service (DoS) vulnerability in the company's Cisco IOS XR software that runs on carrier-grade routers. [...]

https://www.bleepingcomputer.com/news/security/cisco-warns-of-actively-exploited-bug-in-carrier-grade-routers/

RobinHood, Vanguard, TD Ameritrade affected by stock trading outages

Customers are reporting performance issues trying to trade on Vanguard, Schwab, TD Ameritrade, Robinhood, and Merril Lynch this morning. [...]

https://www.bleepingcomputer.com/news/technology/robinhood-vanguard-td-ameritrade-affected-by-stock-trading-outages/

Attackers are exploiting a QNAP NAS remote code execution flaw

Hackers are scanning for vulnerable network-attached storage (NAS) devices running multiple QNAP firmware versions, trying to exploit a remote code execution (RCE) vulnerability addressed by QNAP in a previous release. [...]

https://www.bleepingcomputer.com/news/security/attackers-are-exploiting-a-qnap-nas-remote-code-execution-flaw/

Malware authors trick Apple into trusting malicious Shlayer apps

The authors of the Mac malware known as Shlayer have successfully managed to get their malicious payloads through Apple's automated notarizing process. [...]

https://www.bleepingcomputer.com/news/security/malware-authors-trick-apple-into-trusting-malicious-shlayer-apps/

Lenovo warns of Windows 10 2004 crashing ThinkPad laptops

Lenovo has issued an advisory warning that Windows 10 2004, the May 2020 Update, can cause BSODs in various ThinkPad laptop models. [...]

https://www.bleepingcomputer.com/news/microsoft/lenovo-warns-of-windows-10-2004-crashing-thinkpad-laptops/

American Payroll Association discloses credit card theft incident

The American Payroll Association (APA) disclosed a data breach affecting members and customers after attackers successfully planted a web skimmer on the organization's website login and online store checkout pages. [...]

https://www.bleepingcomputer.com/news/security/american-payroll-association-discloses-credit-card-theft-incident/

Windows 10 2004 now blocked on devices with LTE cellular modems

Microsoft has acknowledged another known issue affecting Windows 10 devices with WWAN LTE cellular modems and is now blocking Windows 10, version 2004 from being installed on them until a solution will be available. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-2004-now-blocked-on-devices-with-lte-cellular-modems/