Leading US video delivery provider confirms ransomware attack

SeaChange International, a US-based leading supplier of video delivery software solutions, has confirmed a ransomware attack that disrupted its operations during the first quarter of 2020. [...]

https://www.bleepingcomputer.com/news/security/leading-us-video-delivery-provider-confirms-ransomware-attack/

Azure now installs security updates on Windows VMs automatically

Microsoft has announced a new Azure capability known as automatic VM guest patching and designed to automatically apply patch Windows virtual machines against newly discovered vulnerabilities. [...]

https://www.bleepingcomputer.com/news/security/azure-now-installs-security-updates-on-windows-vms-automatically/

Microsoft Edge now gives you more control of your downloads

Microsoft is porting a feature from Edge Classic that gives users more control over how they can download files in the browser. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-now-gives-you-more-control-of-your-downloads/

BLURtooth vulnerability lets attackers defeat Bluetooth encryption

A vulnerability exists in certain implementations of Bluetooth 4.0 through 5.0 which allows an attacker to overwrite or lower the strength of the pairing key, giving them access to authenticated services. [...]

https://www.bleepingcomputer.com/news/security/blurtooth-vulnerability-lets-attackers-defeat-bluetooth-encryption/

ProLock ransomware increases payment demand and victim count

Using standard tactics, the operators of ProLock ransomware were able to deploy a large number of attacks over the past six months, averaging close to one target every day. [...]

https://www.bleepingcomputer.com/news/security/prolock-ransomware-increases-payment-demand-and-victim-count/

New CDRThief malware steals VoIP metadata from Linux softswitches

Malware researchers discovered a new threat that they named CDRThief targeting a specific Voice over IP system to steal call data records (CDR) from telephone exchange equipment. [...]

https://www.bleepingcomputer.com/news/security/new-cdrthief-malware-steals-voip-metadata-from-linux-softswitches/

Office 365 phishing runs real-time check of stolen domain logins

Threat researchers investigating phishing attacks encountered a less common technique in spear-phishing aimed at a senior executive at a top American company. [...]

https://www.bleepingcomputer.com/news/security/office-365-phishing-runs-real-time-check-of-stolen-domain-logins/

Equinix data center giant hit by Netwalker Ransomware, $4.5M ransom

Data center and colocation giant Equinix has been hit with a Netwalker ransomware attack where threat actors are demanding $4.5 million for a decryptor and to prevent the release of stolen data. [...]

https://www.bleepingcomputer.com/news/security/equinix-data-center-giant-hit-by-netwalker-ransomware-45m-ransom/

Microsoft: Windows 10 1903 support ending in December 2020

Microsoft today reminded users that Windows 10, version 1903 (also known as the Windows 10 May 2019 Update) is reaching end of service on December 8, 2020, in an official announcement published on the Microsoft Lifecycle Policy site. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-windows-10-1903-support-ending-in-december-2020/

Google Chrome's new Tab Groups feature now available for everyone

Google Chrome now comes with a new feature called "Tab Groups" that would make it a lot easier for Chrome users to stay organized. Google's new Tab Groups feature, which lets you organize active tabs into groups and improve your workflow, is now available for everyone in the latest version of Chrome. [...]

https://www.bleepingcomputer.com/news/google/google-chromes-new-tab-groups-feature-now-available-for-everyone/

Windows 10 now lets you mount Linux ext4 filesystems in WSL 2

Windows 10 now allows you to mount physical disks formatted using the Linux ext4 filesystem in the Windows Subsystem for Linux 2. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-now-lets-you-mount-linux-ext4-filesystems-in-wsl-2/

Hackers are fighting a war over 300K vulnerable WordPress sites

Attackers who are actively exploiting a critical remote code execution flaw affecting over 600,000 of WordPress sites running vulnerable File Manager plugin versions have also been seen protecting the sites they compromise from other threat actors' attacks. [...]

https://www.bleepingcomputer.com/news/security/hackers-are-fighting-a-war-over-300k-vulnerable-wordpress-sites/

Microsoft: State-backed hackers are targeting the 2020 US elections

Nation state-sponsored hacking groups operating from Russia, China, and Iran are targeting organizations and individuals involved in this year's U.S. presidential election according to Microsoft. [...]

https://www.bleepingcomputer.com/news/security/microsoft-state-backed-hackers-are-targeting-the-2020-us-elections/

SoftServe hit by ransomware, Windows customization tool exploited

Ukrainian software developer and IT services provider SoftServe suffered a ransomware attack on September 1st that may have led to the theft of customers' source code. [...]

https://www.bleepingcomputer.com/news/security/softserve-hit-by-ransomware-windows-customization-tool-exploited/

Zoom adds two-factor authentication (2FA) support to all accounts

Zoom has announced that starting today it has added two-factor authentication (2FA) support to all user accounts to make it simpler to secure them against security breaches and identity theft. [...]

https://www.bleepingcomputer.com/news/security/zoom-adds-two-factor-authentication-2fa-support-to-all-accounts/

Palo Alto Networks fixes critical flaw in PAN-OS firewall software

Palo Alto Networks has fixed a new critical vulnerability affecting multiple versions of PAN-OS, the operating system affecting its next-generation firewalls. [...]

https://www.bleepingcomputer.com/news/security/palo-alto-networks-fixes-critical-flaw-in-pan-os-firewall-software/

Office 365 will let users view their quarantined phishing messages

Microsoft is planning to allow Office 365 users to view and request the release of phishing messages automatically quarantined by the Exchange Online Protection (EOP) filtering stack. [...]

https://www.bleepingcomputer.com/news/microsoft/office-365-will-let-users-view-their-quarantined-phishing-messages/

Windows 10 is getting a built-in video conferencing feature

Microsoft is testing a new feature in Windows 10 preview builds that integrates Skype's Meet Now video conferencing feature directly into the operating system. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-is-getting-a-built-in-video-conferencing-feature/

Development Bank of Seychelles hit by ransomware attack

The Development Bank of Seychelles (DBS) was hit by ransomware according to a press statement published earlier today by the Central Bank of Seychelles (CBS). [...]

https://www.bleepingcomputer.com/news/security/development-bank-of-seychelles-hit-by-ransomware-attack/

Windows 10 Control Panel gets another nail in its coffin

Microsoft continues to chip away at the venerable Windows 10 Control Panel by now testing the redirection of the 'Program and Features' control panel to the modern 'Apps & Features' Settings page. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-control-panel-gets-another-nail-in-its-coffin/

IT staffing firm Artech says ransomware attack led to data breach

Artech Information Systems, one of the largest US IT staffing companies, has disclosed a data breach caused by a ransomware attack that affected some of its systems during early January 2020. [...]

https://www.bleepingcomputer.com/news/security/it-staffing-firm-artech-says-ransomware-attack-led-to-data-breach/