Massive Nitro data breach impacts Microsoft, Google, Apple, more

A massive data breach suffered by the Nitro PDF service impacts many well-known organizations, including Google, Apple, Microsoft, Chase, and Citibank. [...]

https://www.bleepingcomputer.com/news/security/massive-nitro-data-breach-impacts-microsoft-google-apple-more/

Microsoft upgrades password spray attack detection capabilities

Microsoft has improved password spray detection in Azure Active Directory (Azure AD) by doubling the number of compromised accounts it detects using a new machine learning (ML) system. [...]

https://www.bleepingcomputer.com/news/security/microsoft-upgrades-password-spray-attack-detection-capabilities/

Microsoft is throttling Windows 10 20H2 availability for all users

Microsoft is currently throttling Windows 10, version 20H2 availability to provide all users who want to upgrade with a positive experience while downloading and upgrading the OS. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-is-throttling-windows-10-20h2-availability-for-all-users/

Angry YouTube-dl users flood GitHub with new repos after takedown

Users of the extremely popular YouTube-dl YouTube media downloader have flooded GitHub with new repositories containing the tool's source code after GitHub took down the project's repositories on Friday. [...]

https://www.bleepingcomputer.com/news/software/angry-youtube-dl-users-flood-github-with-new-repos-after-takedown/

Google employees personal info exposed in law firm data breach

Immigration law firm Fragomen, Del Rey, Bernsen & Loewy, LLP has disclosed a data breach that exposed current and former Google employees' personal information. [...]

https://www.bleepingcomputer.com/news/security/google-employees-personal-info-exposed-in-law-firm-data-breach/

Finnish psychotherapy clinic discloses data breach, victims extorted

A large psychotherapy clinic in Finland is under heavy stress after a threat actor asked a ransom for a client database with confidential information stolen in a data breach that likely happened almost two years ago. [...]

https://www.bleepingcomputer.com/news/security/finnish-psychotherapy-clinic-discloses-data-breach-victims-extorted/

Amazon sacks insiders over data leak, alerts customers

Amazon has recently dismissed multiple employees for leaking customer data including their email addresses to an unaffiliated third-party. The company has sent out an email announcement to the affected customers following the incident. [...]

https://www.bleepingcomputer.com/news/security/amazon-sacks-insiders-over-data-leak-alerts-customers/

FBI: Hackers stole government source code via SonarQube instances

The Federal Bureau of Investigation (FBI) issued a flash alert warning of hackers stealing data from U.S. government agencies and enterprise organizations via insecure and internet-exposed SonarQube instances. [...]

https://www.bleepingcomputer.com/news/security/fbi-hackers-stole-government-source-code-via-sonarqube-instances/

Steelcase furniture giant hit by Ryuk ransomware attack

Office furniture giant Steelcase has suffered a ransomware attack that forced them to shut down their network to contain the attack's spread. [...]

https://www.bleepingcomputer.com/news/security/steelcase-furniture-giant-hit-by-ryuk-ransomware-attack/

Enel Group hit by ransomware again, Netwalker demands $14 million

Networks of giant energy company Enel have been hit by a ransomware attack for the second time this year. This time, it's Netwalker asking $14 million ransom for the decryption key. [...]

https://www.bleepingcomputer.com/news/security/enel-group-hit-by-ransomware-again-netwalker-demands-14-million/

Mozilla rolls out new Firefox version to fix Windows reboot bug

Mozilla today started rolling out Firefox 82.0.1, a new version that fixes a known bug where the Windows installer displays unnecessary reboot prompts on some systems after it finishes the installation. [...]

https://www.bleepingcomputer.com/news/software/mozilla-rolls-out-new-firefox-version-to-fix-windows-reboot-bug/

Microsoft releases update to remove Adobe Flash from Windows

Microsoft has released the KB4577586 update to remove Adobe Flash from Windows and prevents it from being installed again. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-update-to-remove-adobe-flash-from-windows/

Microsoft Edge gets Vertical Tabs feature you won't find in Chrome

Today, Microsoft is rolling out the new Vertical Tabs feature to users in the Dev and Canary channels. Once enabled, this feature will move the tab bar from the top to the left side in a vertical layout and you can switch between old and new layout with one click. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-gets-vertical-tabs-feature-you-wont-find-in-chrome/

Mac users unable to print after Apple revoked HP certificate

Apple macOS X users with HP printers are left unable to print from their computers after Apple revoked a certificate that signed HP's print drivers. The result is print drivers being mistaken for malware. [...]

https://www.bleepingcomputer.com/news/security/mac-users-unable-to-print-after-apple-revoked-hp-certificate/

Microsoft: Disposable emails now available in Exchange Online

Microsoft says that Office 365 customers can use unlimited disposable recipient email addresses after the Plus Addressing feature rolled out to all Exchange Online users. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-disposable-emails-now-available-in-exchange-online/

FTC receives almost 2 million robocall complaints in nine months

The Federal Trade Commission (FTC) received almost 2 million complaints from Americans regarding illegal robocalls during the first nine months of 2020. [...]

https://www.bleepingcomputer.com/news/security/ftc-receives-almost-2-million-robocall-complaints-in-nine-months/

QNAP warns of new QTS bugs that allow take over of devices

QNAP today announced two vulnerabilities affecting QTS, the operating system powering its network-attached storage devices, that could allow running arbitrary commands. [...]

https://www.bleepingcomputer.com/news/security/qnap-warns-of-new-qts-bugs-that-allow-take-over-of-devices/

Microsoft Defender ATP scars admins with false Cobalt Strike alerts

Administrators woke up to a scary surprise today after false positives in Microsoft Defender ATP showed network devices infected with Cobalt Strike. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-defender-atp-scars-admins-with-false-cobalt-strike-alerts/

Microsoft: Iranian attackers hacked security conference attendees

Microsoft disclosed today that Iranian state-sponsored hackers successfully hacked into the email accounts of multiple high-profile individuals and potential attendees at this year's Munich Security Conference and the Think 20 (T20) summit. [...]

https://www.bleepingcomputer.com/news/security/microsoft-iranian-attackers-hacked-security-conference-attendees/

Microsoft shares list of URLs required by Microsoft Defender ATP

Microsoft has released a spreadsheet containing the full list of URLs that Microsoft Defender ATP must reach to function correctly. [...]

https://www.bleepingcomputer.com/news/security/microsoft-shares-list-of-urls-required-by-microsoft-defender-atp/

Russian Turla hackers breach European government organization

Russian-speaking hacking group Turla has hacked into the systems of an undisclosed European government organization according to a new Accenture Cyber Threat Intelligence (ACTI) report. [...]

https://www.bleepingcomputer.com/news/security/russian-turla-hackers-breach-european-government-organization/