The Week in Ransomware - October 23rd 2020 - From Russia with Love
This week has been busy with ransomware related news, including new charges against Russian state-sponsored hackers and numerous attacks against well-known organizations. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-october-23rd-2020-from-russia-with-love/
This week has been busy with ransomware related news, including new charges against Russian state-sponsored hackers and numerous attacks against well-known organizations. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-october-23rd-2020-from-russia-with-love/
BleepingComputer
The Week in Ransomware - October 23rd 2020 - From Russia with Love
This week has been busy with ransomware related news, including new charges against Russian state-sponsored hackers and numerous attacks against well-known organizations.
HPE fixes maximum severity remote auth bypass bug in SSMC console
Hewlett Packard Enterprise (HPE) has fixed a maximum severity remote authentication bypass vulnerability affecting the company's HPE StoreServ Management Console (SSMC) data center storage management solution. [...]
https://www.bleepingcomputer.com/news/security/hpe-fixes-maximum-severity-remote-auth-bypass-bug-in-ssmc-console/
Hewlett Packard Enterprise (HPE) has fixed a maximum severity remote authentication bypass vulnerability affecting the company's HPE StoreServ Management Console (SSMC) data center storage management solution. [...]
https://www.bleepingcomputer.com/news/security/hpe-fixes-maximum-severity-remote-auth-bypass-bug-in-ssmc-console/
BleepingComputer
HPE fixes maximum severity remote auth bypass bug in SSMC console
Hewlett Packard Enterprise (HPE) has fixed a maximum severity remote authentication bypass vulnerability affecting the company's HPE StoreServ Management Console (SSMC) data center storage management solution.
YouTube-dl GitHub repos taken down by RIAA via DMCA takedown
The Recording Industry Association of America, Inc. (RIAA) has taken down the popular Youtube-dl GitHub repositories using a DMCA takedown notice. [...]
https://www.bleepingcomputer.com/news/software/youtube-dl-github-repos-taken-down-by-riaa-via-dmca-takedown/
The Recording Industry Association of America, Inc. (RIAA) has taken down the popular Youtube-dl GitHub repositories using a DMCA takedown notice. [...]
https://www.bleepingcomputer.com/news/software/youtube-dl-github-repos-taken-down-by-riaa-via-dmca-takedown/
BleepingComputer
YouTube-dl removed from GitHub after RIAA DMCA notice
The Recording Industry Association of America, Inc. (RIAA) has taken down the popular Youtube-dl GitHub repositories using a DMCA takedown notice.
Microsoft is investigating these known Windows 10 20H2 issues
Microsoft has added two Windows 10 20H2 safeguard holds while investigating errors and issues affecting Windows 10 devices with certain versions of Conexant or Synaptics audio device drivers. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-is-investigating-these-known-windows-10-20h2-issues/
Microsoft has added two Windows 10 20H2 safeguard holds while investigating errors and issues affecting Windows 10 devices with certain versions of Conexant or Synaptics audio device drivers. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-is-investigating-these-known-windows-10-20h2-issues/
BleepingComputer
Microsoft is investigating these known Windows 10 20H2 issues
Microsoft has added two Windows 10 20H2 safeguard holds while investigating errors and issues affecting Windows 10 devices with certain versions of Conexant or Synaptics audio device drivers.
Emotet malware now lures you with Microsoft Word upgrades
Emotet switched to a new template this week that pretends to be a Microsoft Office message stating that Microsoft Word needs to be updated to add a new feature. [...]
https://www.bleepingcomputer.com/news/security/emotet-malware-now-lures-you-with-microsoft-word-upgrades/
Emotet switched to a new template this week that pretends to be a Microsoft Office message stating that Microsoft Word needs to be updated to add a new feature. [...]
https://www.bleepingcomputer.com/news/security/emotet-malware-now-lures-you-with-microsoft-word-upgrades/
A closer look at Windows 10's brand-new Start Menu
The brand-new Start Menu is now available with Windows 10's October 2020 Update. [...]
https://www.bleepingcomputer.com/news/microsoft/a-closer-look-at-windows-10s-brand-new-start-menu/
The brand-new Start Menu is now available with Windows 10's October 2020 Update. [...]
https://www.bleepingcomputer.com/news/microsoft/a-closer-look-at-windows-10s-brand-new-start-menu/
BleepingComputer
A closer look at Windows 10's brand-new Start Menu
During a Windows Insider webcast, Microsoft teased its vision for a new Windows 10 Start Menu that features partially transparent theme-aware tiles to showcase the new Fluent-based colorful icons.
Windows 10 now hides the SYSTEM control panel, how to access it
With the release of Windows 10 20H2, Microsoft is now preventing access to the venerable SYSTEM control panel and is instead redirecting users to the newly updated 'About' settings page. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-now-hides-the-system-control-panel-how-to-access-it/
With the release of Windows 10 20H2, Microsoft is now preventing access to the venerable SYSTEM control panel and is instead redirecting users to the newly updated 'About' settings page. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-now-hides-the-system-control-panel-how-to-access-it/
BleepingComputer
Windows 10 now hides the SYSTEM control panel, how to access it
With the release of Windows 10 20H2, Microsoft is now preventing access to the venerable SYSTEM control panel and is instead redirecting users to the newly updated 'About' settings page.
Microsoft begins to finally kill off Internet Explorer
Microsoft is taking further steps to kill off the antiquated Internet Explorer in favor of its new Chromium-based Microsoft Edge browser. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-begins-to-finally-kill-off-internet-explorer/
Microsoft is taking further steps to kill off the antiquated Internet Explorer in favor of its new Chromium-based Microsoft Edge browser. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-begins-to-finally-kill-off-internet-explorer/
BleepingComputer
Microsoft begins to finally kill off Internet Explorer
Microsoft is taking further steps to kill off the antiquated Internet Explorer in favor of its new Chromium-based Microsoft Edge browser.
Take control of Windows 10 feature updates using these settings
In this article, we're highlighting two group policies that you can try to take control over Windows 10 feature updates. [...]
https://www.bleepingcomputer.com/news/microsoft/take-control-of-windows-10-feature-updates-using-these-settings/
In this article, we're highlighting two group policies that you can try to take control over Windows 10 feature updates. [...]
https://www.bleepingcomputer.com/news/microsoft/take-control-of-windows-10-feature-updates-using-these-settings/
BleepingComputer
Take control of Windows 10 feature updates using these settings
In this article, we're highlighting two group policies that you can try to take control over Windows 10 feature updates.
Sopra Steria confirms being hit by Ryuk ransomware attack
French enterprise IT services company Sopra Steria confirmed today that they were hit with a Ryuk ransomware attack on October 20th, 2020. [...]
https://www.bleepingcomputer.com/news/security/sopra-steria-confirms-being-hit-by-ryuk-ransomware-attack/
French enterprise IT services company Sopra Steria confirmed today that they were hit with a Ryuk ransomware attack on October 20th, 2020. [...]
https://www.bleepingcomputer.com/news/security/sopra-steria-confirms-being-hit-by-ryuk-ransomware-attack/
BleepingComputer
Sopra Steria confirms being hit by Ryuk ransomware attack
French enterprise IT services company Sopra Steria confirmed today that they were hit with a Ryuk ransomware attack on October 20th, 2020.
Massive Nitro data breach impacts Microsoft, Google, Apple, more
A massive data breach suffered by the Nitro PDF service impacts many well-known organizations, including Google, Apple, Microsoft, Chase, and Citibank. [...]
https://www.bleepingcomputer.com/news/security/massive-nitro-data-breach-impacts-microsoft-google-apple-more/
A massive data breach suffered by the Nitro PDF service impacts many well-known organizations, including Google, Apple, Microsoft, Chase, and Citibank. [...]
https://www.bleepingcomputer.com/news/security/massive-nitro-data-breach-impacts-microsoft-google-apple-more/
BleepingComputer
Massive Nitro data breach impacts Microsoft, Google, Apple, more
A massive data breach suffered by the Nitro PDF service impacts many well-known organizations, including Google, Apple, Microsoft, Chase, and Citibank.
Microsoft upgrades password spray attack detection capabilities
Microsoft has improved password spray detection in Azure Active Directory (Azure AD) by doubling the number of compromised accounts it detects using a new machine learning (ML) system. [...]
https://www.bleepingcomputer.com/news/security/microsoft-upgrades-password-spray-attack-detection-capabilities/
Microsoft has improved password spray detection in Azure Active Directory (Azure AD) by doubling the number of compromised accounts it detects using a new machine learning (ML) system. [...]
https://www.bleepingcomputer.com/news/security/microsoft-upgrades-password-spray-attack-detection-capabilities/
BleepingComputer
Microsoft upgrades password spray attack detection capabilities
Microsoft has improved password spray detection in Azure Active Directory (Azure AD) by doubling the number of compromised accounts it detects using a new machine learning (ML) system.
Microsoft is throttling Windows 10 20H2 availability for all users
Microsoft is currently throttling Windows 10, version 20H2 availability to provide all users who want to upgrade with a positive experience while downloading and upgrading the OS. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-is-throttling-windows-10-20h2-availability-for-all-users/
Microsoft is currently throttling Windows 10, version 20H2 availability to provide all users who want to upgrade with a positive experience while downloading and upgrading the OS. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-is-throttling-windows-10-20h2-availability-for-all-users/
BleepingComputer
Microsoft is throttling Windows 10 20H2 availability for all users
Microsoft is currently throttling Windows 10, version 20H2 availability to provide all users who want to upgrade with a positive experience while downloading and upgrading the OS.
Angry YouTube-dl users flood GitHub with new repos after takedown
Users of the extremely popular YouTube-dl YouTube media downloader have flooded GitHub with new repositories containing the tool's source code after GitHub took down the project's repositories on Friday. [...]
https://www.bleepingcomputer.com/news/software/angry-youtube-dl-users-flood-github-with-new-repos-after-takedown/
Users of the extremely popular YouTube-dl YouTube media downloader have flooded GitHub with new repositories containing the tool's source code after GitHub took down the project's repositories on Friday. [...]
https://www.bleepingcomputer.com/news/software/angry-youtube-dl-users-flood-github-with-new-repos-after-takedown/
BleepingComputer
Angry YouTube-dl users flood GitHub with new repos after takedown
Users of the extremely popular YouTube-dl YouTube media downloader have flooded GitHub with new repositories containing the tool's source code after GitHub took down the project's repositories on Friday.
Google employees personal info exposed in law firm data breach
Immigration law firm Fragomen, Del Rey, Bernsen & Loewy, LLP has disclosed a data breach that exposed current and former Google employees' personal information. [...]
https://www.bleepingcomputer.com/news/security/google-employees-personal-info-exposed-in-law-firm-data-breach/
Immigration law firm Fragomen, Del Rey, Bernsen & Loewy, LLP has disclosed a data breach that exposed current and former Google employees' personal information. [...]
https://www.bleepingcomputer.com/news/security/google-employees-personal-info-exposed-in-law-firm-data-breach/
BleepingComputer
Google employees personal info exposed in law firm data breach
Immigration law firm Fragomen, Del Rey, Bernsen & Loewy, LLP has disclosed a data breach that exposed current and former Google employees' personal information.
Finnish psychotherapy clinic discloses data breach, victims extorted
A large psychotherapy clinic in Finland is under heavy stress after a threat actor asked a ransom for a client database with confidential information stolen in a data breach that likely happened almost two years ago. [...]
https://www.bleepingcomputer.com/news/security/finnish-psychotherapy-clinic-discloses-data-breach-victims-extorted/
A large psychotherapy clinic in Finland is under heavy stress after a threat actor asked a ransom for a client database with confidential information stolen in a data breach that likely happened almost two years ago. [...]
https://www.bleepingcomputer.com/news/security/finnish-psychotherapy-clinic-discloses-data-breach-victims-extorted/
BleepingComputer
Finnish psychotherapy clinic discloses data breach, victims extorted
A large psychotherapy clinic in Finland is under heavy stress after a threat actor asked a ransom for a client database with confidential information stolen in a data breach that likely happened almost two years ago.
Amazon sacks insiders over data leak, alerts customers
Amazon has recently dismissed multiple employees for leaking customer data including their email addresses to an unaffiliated third-party. The company has sent out an email announcement to the affected customers following the incident. [...]
https://www.bleepingcomputer.com/news/security/amazon-sacks-insiders-over-data-leak-alerts-customers/
Amazon has recently dismissed multiple employees for leaking customer data including their email addresses to an unaffiliated third-party. The company has sent out an email announcement to the affected customers following the incident. [...]
https://www.bleepingcomputer.com/news/security/amazon-sacks-insiders-over-data-leak-alerts-customers/
BleepingComputer
Amazon sacks insiders over data leak, alerts customers
Amazon has recently dismissed multiple employees for leaking customer data including their email addresses to an unaffiliated third-party. The company has sent out an email announcement to the affected customers following the incident.
FBI: Hackers stole government source code via SonarQube instances
The Federal Bureau of Investigation (FBI) issued a flash alert warning of hackers stealing data from U.S. government agencies and enterprise organizations via insecure and internet-exposed SonarQube instances. [...]
https://www.bleepingcomputer.com/news/security/fbi-hackers-stole-government-source-code-via-sonarqube-instances/
The Federal Bureau of Investigation (FBI) issued a flash alert warning of hackers stealing data from U.S. government agencies and enterprise organizations via insecure and internet-exposed SonarQube instances. [...]
https://www.bleepingcomputer.com/news/security/fbi-hackers-stole-government-source-code-via-sonarqube-instances/
BleepingComputer
FBI: Hackers stole government source code via SonarQube instances
The Federal Bureau of Investigation (FBI) issued a flash alert warning of hackers stealing data from U.S. government agencies and enterprise organizations via insecure and internet-exposed SonarQube instances.
Steelcase furniture giant hit by Ryuk ransomware attack
Office furniture giant Steelcase has suffered a ransomware attack that forced them to shut down their network to contain the attack's spread. [...]
https://www.bleepingcomputer.com/news/security/steelcase-furniture-giant-hit-by-ryuk-ransomware-attack/
Office furniture giant Steelcase has suffered a ransomware attack that forced them to shut down their network to contain the attack's spread. [...]
https://www.bleepingcomputer.com/news/security/steelcase-furniture-giant-hit-by-ryuk-ransomware-attack/
BleepingComputer
Steelcase furniture giant hit by Ryuk ransomware attack
Office furniture giant Steelcase has suffered a ransomware attack that forced them to shut down their network to contain the attack's spread.
Enel Group hit by ransomware again, Netwalker demands $14 million
Networks of giant energy company Enel have been hit by a ransomware attack for the second time this year. This time, it's Netwalker asking $14 million ransom for the decryption key. [...]
https://www.bleepingcomputer.com/news/security/enel-group-hit-by-ransomware-again-netwalker-demands-14-million/
Networks of giant energy company Enel have been hit by a ransomware attack for the second time this year. This time, it's Netwalker asking $14 million ransom for the decryption key. [...]
https://www.bleepingcomputer.com/news/security/enel-group-hit-by-ransomware-again-netwalker-demands-14-million/
BleepingComputer
Enel Group hit by ransomware again, Netwalker demands $14 million
Networks of giant energy company Enel have been hit by a ransomware attack for the second time this year. This time, it's Netwalker asking $14 million ransom for the decryption key.
Mozilla rolls out new Firefox version to fix Windows reboot bug
Mozilla today started rolling out Firefox 82.0.1, a new version that fixes a known bug where the Windows installer displays unnecessary reboot prompts on some systems after it finishes the installation. [...]
https://www.bleepingcomputer.com/news/software/mozilla-rolls-out-new-firefox-version-to-fix-windows-reboot-bug/
Mozilla today started rolling out Firefox 82.0.1, a new version that fixes a known bug where the Windows installer displays unnecessary reboot prompts on some systems after it finishes the installation. [...]
https://www.bleepingcomputer.com/news/software/mozilla-rolls-out-new-firefox-version-to-fix-windows-reboot-bug/
BleepingComputer
Mozilla rolls out new Firefox version to fix Windows reboot bug
Mozilla today started rolling out Firefox 82.0.1, a new version that fixes a known bug where the Windows installer displays unnecessary reboot prompts on some systems after it finishes the installation.