Microsoft: Iranian attackers hacked security conference attendees

Microsoft disclosed today that Iranian state-sponsored hackers successfully hacked into the email accounts of multiple high-profile individuals and potential attendees at this year's Munich Security Conference and the Think 20 (T20) summit. [...]

https://www.bleepingcomputer.com/news/security/microsoft-iranian-attackers-hacked-security-conference-attendees/

Microsoft shares list of URLs required by Microsoft Defender ATP

Microsoft has released a spreadsheet containing the full list of URLs that Microsoft Defender ATP must reach to function correctly. [...]

https://www.bleepingcomputer.com/news/security/microsoft-shares-list-of-urls-required-by-microsoft-defender-atp/

Russian Turla hackers breach European government organization

Russian-speaking hacking group Turla has hacked into the systems of an undisclosed European government organization according to a new Accenture Cyber Threat Intelligence (ACTI) report. [...]

https://www.bleepingcomputer.com/news/security/russian-turla-hackers-breach-european-government-organization/

Microsoft Defender ATP adds vulnerable Windows device tracking

The Microsoft Defender Advanced Threat Protection (ATP) endpoint security platform now provides users with a new report designed to help them keep track of vulnerable Windows and macOS devices within their organization's environment. [...]

https://www.bleepingcomputer.com/news/security/microsoft-defender-atp-adds-vulnerable-windows-device-tracking/

Home Depot blunder emails customer order info to strangers

Multiple reports emerged today from Home Depot customers in Canada stating that the company had accidentally sent them hundreds of emails containing order information of strangers.
Multiple users received hundreds of "order ready for pickup" reminder emails, each pertaining to a different order and not associated with their account. [...]

https://www.bleepingcomputer.com/news/security/home-depot-blunder-emails-customer-order-info-to-strangers/

Maze ransomware is shutting down its cybercrime operation

​The Maze cybercrime gang is shutting down its operations after rising to become one of the most prominent players performing ransomware attacks. [...]

https://www.bleepingcomputer.com/news/security/maze-ransomware-is-shutting-down-its-cybercrime-operation/

REvil ransomware gang claims over $100 million profit in a year

REvil ransomware developers say that they made more than $100 million in one year of extorting large businesses across the world from various sectors. [...]

https://www.bleepingcomputer.com/news/security/revil-ransomware-gang-claims-over-100-million-profit-in-a-year/

Hacking group is targeting US hospitals with Ryuk ransomware

In a joint statement, the U.S. government is warning the healthcare industry that a hacking group is actively targeting hospitals and healthcare providers in Ryuk ransomware attacks. [...]

https://www.bleepingcomputer.com/news/security/hacking-group-is-targeting-us-hospitals-with-ryuk-ransomware/

Critical Oracle WebLogic vulnerability exploited in the wild

Threat actors have started to hunt for servers running Oracle WebLogic instances vulnerable to a critical flaw that allows taking control of the system with little effort and no authentication. [...]

https://www.bleepingcomputer.com/news/security/critical-oracle-weblogic-vulnerability-exploited-in-the-wild/

Emotet campaign used parked domains to deliver malware payloads

Researchers tracking malicious use of parked domains have spotted the Emotet botnet using such domains to deliver malware payloads as part of a large scale phishing campaign. [...]

https://www.bleepingcomputer.com/news/security/emotet-campaign-used-parked-domains-to-deliver-malware-payloads/

Georgia county voter information leaked by ransomware gang

The DoppelPaymer ransomware gang has released unencrypted data stolen from Hall County, Georgia, during a cyberattack earlier this month. [...]

https://www.bleepingcomputer.com/news/security/georgia-county-voter-information-leaked-by-ransomware-gang/

Microsoft releases KB4580364 update to fix Windows 10 freezes

​Microsoft has released the KB4580364 non-security update that fixes bugs causing responsiveness issues on affected Windows 10 2004 devices. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-kb4580364-update-to-fix-windows-10-freezes/

US shares info on Russian malware used to target parliaments, embassies

US Cyber Command today shared information on malware implants used by Russian hacking groups in attacks targeting multiple ministries of foreign affairs, national parliaments, and embassies. [...]

https://www.bleepingcomputer.com/news/security/us-shares-info-on-russian-malware-used-to-target-parliaments-embassies/

Microsoft warns of ongoing attacks using Windows Zerologon flaw

Microsoft today warned that threat actors are continuing to actively exploit systems unpatched against the ZeroLogon privilege escalation vulnerability in the Netlogon Remote Protocol (MS-NRPC). [...]

https://www.bleepingcomputer.com/news/security/microsoft-warns-of-ongoing-attacks-using-windows-zerologon-flaw/

Windows 10: Upcoming driver changes may break plug-and-play

Upcoming changes to how Windows 10 automatically installs driver updates may cause plug-and-play to break for some devices. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-upcoming-driver-changes-may-break-plug-and-play/

Brooklyn & Vermont hospitals are latest Ryuk ransomware victims

Wyckoff Heights Medical Center in Brooklyn and the University of Vermont Health Network are the latest victims of the Ryuk ransomware attack spree covering the healthcare industry across the U.S. [...]

https://www.bleepingcomputer.com/news/security/brooklyn-and-vermont-hospitals-are-latest-ryuk-ransomware-victims/

UHS restores hospital systems after Ryuk ransomware attack

Universal Health Services (UHS), a Fortune 500 hospital and healthcare services provider, says that it has managed to restore systems after a September Ryuk ransomware attack. [...]

https://www.bleepingcomputer.com/news/security/uhs-restores-hospital-systems-after-ryuk-ransomware-attack/

Over 1M Lazada RedMart accounts sold online after data breach

Singapore's largest online grocery store Lazada Redmart has suffered a data breach after 1.1 million user accounts were put up for sale on a hacker forum. [...]

https://www.bleepingcomputer.com/news/security/over-1m-lazada-redmart-accounts-sold-online-after-data-breach/

Windows kernel zero-day vulnerability used in targeted attacks

Project Zero, Google's 0day bug-hunting team, today disclosed a zero-day elevation of privileges (EoP) vulnerability found in the Windows kernel and actively exploited in targeted attacks. [...]

https://www.bleepingcomputer.com/news/security/windows-kernel-zero-day-vulnerability-used-in-targeted-attacks/

Windows 10's new resource monitor for gamers is now available

This new resources monitor works just like the traditional Task Manager, but it sits on top of running games and allows you to kill background processes without having to leave your game [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10s-new-resource-monitor-for-gamers-is-now-available/

The Week in Ransomware - October 30th 2020 - Hospitals under siege

This week we have seen a concerted attack against the healthcare industry by hacking groups utilizing the Ryuk ransomware. Also, we saw some large well-known companies suffer ransomware attacks that impacted their business operations. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-october-30th-2020-hospitals-under-siege/