Brooklyn & Vermont hospitals are latest Ryuk ransomware victims

Wyckoff Heights Medical Center in Brooklyn and the University of Vermont Health Network are the latest victims of the Ryuk ransomware attack spree covering the healthcare industry across the U.S. [...]

https://www.bleepingcomputer.com/news/security/brooklyn-and-vermont-hospitals-are-latest-ryuk-ransomware-victims/

UHS restores hospital systems after Ryuk ransomware attack

Universal Health Services (UHS), a Fortune 500 hospital and healthcare services provider, says that it has managed to restore systems after a September Ryuk ransomware attack. [...]

https://www.bleepingcomputer.com/news/security/uhs-restores-hospital-systems-after-ryuk-ransomware-attack/

Over 1M Lazada RedMart accounts sold online after data breach

Singapore's largest online grocery store Lazada Redmart has suffered a data breach after 1.1 million user accounts were put up for sale on a hacker forum. [...]

https://www.bleepingcomputer.com/news/security/over-1m-lazada-redmart-accounts-sold-online-after-data-breach/

Windows kernel zero-day vulnerability used in targeted attacks

Project Zero, Google's 0day bug-hunting team, today disclosed a zero-day elevation of privileges (EoP) vulnerability found in the Windows kernel and actively exploited in targeted attacks. [...]

https://www.bleepingcomputer.com/news/security/windows-kernel-zero-day-vulnerability-used-in-targeted-attacks/

Windows 10's new resource monitor for gamers is now available

This new resources monitor works just like the traditional Task Manager, but it sits on top of running games and allows you to kill background processes without having to leave your game [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10s-new-resource-monitor-for-gamers-is-now-available/

The Week in Ransomware - October 30th 2020 - Hospitals under siege

This week we have seen a concerted attack against the healthcare industry by hacking groups utilizing the Ryuk ransomware. Also, we saw some large well-known companies suffer ransomware attacks that impacted their business operations. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-october-30th-2020-hospitals-under-siege/

FBI shares technical details on Iran's fake Proud Boys emails

The Federal Bureau of Investigation (FBI) shared indicators of compromise (IOCs) associated with the Iranian state-sponsored threat group behind last week's Proud Boys voter intimidation emails that targeted Democratic voters. [...]

https://www.bleepingcomputer.com/news/security/fbi-shares-technical-details-on-irans-fake-proud-boys-emails/

FBI: How Iranian hackers stole voter info from state election sites

DHS CISA and the FBI today shared more info on how an Iranian state-sponsored hacking group was able to harvest voter registration info from U.S. state websites, including election sites. [...]

https://www.bleepingcomputer.com/news/security/fbi-how-iranian-hackers-stole-voter-info-from-state-election-sites/

Emotet malware wants to invite you to a Halloween party

To take advantage of the trick-or-treating festivities, the Emotet malware gang is sending out spam emails that invite you to a Halloween party. [...]

https://www.bleepingcomputer.com/news/security/emotet-malware-wants-to-invite-you-to-a-halloween-party/

Hacker is selling 34 million user records stolen from 17 companies

A threat actor is selling account databases containing an aggregate total of 34 million user records that they claim were stolen from seventeen companies during data breaches. [...]

https://www.bleepingcomputer.com/news/security/hacker-is-selling-34-million-user-records-stolen-from-17-companies/

Open Shell brings back the glory days of the Windows Start Menu

Open Shell, originally known as Classic Shell, is open-source software that allows you to replace the standard Start Menu on Windows 10 and Windows 8. [...]

https://www.bleepingcomputer.com/news/microsoft/open-shell-brings-back-the-glory-days-of-the-windows-start-menu/

Gold seller JM Bullion hacked to steal customers' credit cards

Precious metal online retailer JM Bullion has disclosed a data breach after their site was hacked to include malicious scripts that stole customers' credit card information. [...]

https://www.bleepingcomputer.com/news/security/gold-seller-jm-bullion-hacked-to-steal-customers-credit-cards/

NetMarketShare ends browser war reports due to Google Chrome changes

NetMarketShare is sunsetting the service because of a recent change proposed by Google. On its website, the company stated that Google's proposed "User Agent Client Hints" will cause data inaccuracies for a long period of time. [...]

https://www.bleepingcomputer.com/news/software/netmarketshare-ends-browser-war-reports-due-to-google-chrome-changes/

Maze ransomware shuts down operations, denies creating cartel

The Maze ransomware gang announced today that they have officially closed down their ransomware operation and will no longer be leaking new companies' data on their site. [...]

https://www.bleepingcomputer.com/news/security/maze-ransomware-shuts-down-operations-denies-creating-cartel/

Microsoft is investigating lost Windows 10 certificates issue

Microsoft is investigating a known issue leading to missing system and user certificates after updating certain Windows 10 systems using outdated installation media through update management tools, physical media, or ISO images. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-is-investigating-lost-windows-10-certificates-issue/

GitHub threatens to ban users who bypass YouTube-dl takedown

GitHub has issued a warning that accounts could be banned if they continue to upload content that was removed due to DMCA takedown notices. [...]

https://www.bleepingcomputer.com/news/software/github-threatens-to-ban-users-who-bypass-youtube-dl-takedown/

Microsoft: Windows 10 1809 reaches end of service next week

Microsoft today reminded customers that some editions of Windows 10, version 1809 (also known as the October 2018 Update) will reach its end of service next week. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-windows-10-1809-reaches-end-of-service-next-week/

Oracle issues emergency patch for critical WebLogic Server flaw

Oracle issued an out-of-band security update over the weekend to address a critical remote code execution (RCE) vulnerability impacting multiple Oracle WebLogic Server versions. [...]

https://www.bleepingcomputer.com/news/security/oracle-issues-emergency-patch-for-critical-weblogic-server-flaw/

Google patches one more actively exploited Chrome zero-day

Google today released Chrome 86.0.4240.183 for Windows, Mac, and Linux to address 10 security vulnerabilities impacting the web browser, including a zero-day bug exploited in the wild. [...]

https://www.bleepingcomputer.com/news/security/google-patches-one-more-actively-exploited-chrome-zero-day/

GitHub breaks site layout after forgetting to renew certificate

This morning, GitHub's pristine layout vanished in what looks like a miss on the company's part in renewing an SSL certificate. The expired certificate prevented numerous resources like images, JavaScript, and CSS stylesheets from loading correctly on GitHub. [...]

https://www.bleepingcomputer.com/news/security/github-breaks-site-layout-after-forgetting-to-renew-certificate/

Microsoft Tips app leaks Windows 10's upcoming rounded corners

The Microsoft Tips app has leaked more evidence that Microsoft is working on rounded corners for Windows 10 windows. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-tips-app-leaks-windows-10s-upcoming-rounded-corners/