Someone just emptied out a $1 billion BitCoin wallet
A password-protected cryptocurrency wallet with almost a billion dollar-worth of BitCoins has just been emptied out. Mystery surrounds the party who finally managed to cash out the big fat amount: was it the owner themselves, or did someone crack this wallet? [...]
https://www.bleepingcomputer.com/news/security/someone-just-emptied-out-a-1-billion-bitcoin-wallet/
A password-protected cryptocurrency wallet with almost a billion dollar-worth of BitCoins has just been emptied out. Mystery surrounds the party who finally managed to cash out the big fat amount: was it the owner themselves, or did someone crack this wallet? [...]
https://www.bleepingcomputer.com/news/security/someone-just-emptied-out-a-1-billion-bitcoin-wallet/
BleepingComputer
Someone just emptied out a $1 billion Bitcoin wallet
A password-protected cryptocurrency wallet with almost a billion dollar-worth of Bitcoins has just been emptied out. Mystery surrounds the party who finally managed to cash out the big fat amount: was it the owner themselves, or did someone crack this wallet?
Sneaky Office 365 phishing inverts images to evade detection
A creative Office 365 phishing campaign has been inverting images used as backgrounds for landing pages to avoid getting flagged as malicious by crawlers designed to spot phishing sites. [...]
https://www.bleepingcomputer.com/news/security/sneaky-office-365-phishing-inverts-images-to-evade-detection/
A creative Office 365 phishing campaign has been inverting images used as backgrounds for landing pages to avoid getting flagged as malicious by crawlers designed to spot phishing sites. [...]
https://www.bleepingcomputer.com/news/security/sneaky-office-365-phishing-inverts-images-to-evade-detection/
BleepingComputer
Sneaky Office 365 phishing inverts images to evade detection
A creative Office 365 phishing campaign has been inverting images used as backgrounds for landing pages to avoid getting flagged as malicious by crawlers designed to spot phishing sites.
Microsoft outage breaks sites, Windows Store, Xbox, and other services
Microsoft is experiencing an outage that causes website content not to display correctly and for the Microsoft Store app to fail to load. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-outage-breaks-sites-windows-store-xbox-and-other-services/
Microsoft is experiencing an outage that causes website content not to display correctly and for the Microsoft Store app to fail to load. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-outage-breaks-sites-windows-store-xbox-and-other-services/
BleepingComputer
Microsoft outage breaks sites, Windows Store, Xbox, and other services
Microsoft is experiencing an outage that causes website content not to display correctly and for the Microsoft Store app to fail to load.
Cisco discloses AnyConnect VPN zero-day, exploit code available
Cisco has disclosed today a zero-day vulnerability in the Cisco AnyConnect Secure Mobility Client software with proof-of-concept exploit code publicly available. [...]
https://www.bleepingcomputer.com/news/security/cisco-discloses-anyconnect-vpn-zero-day-exploit-code-available/
Cisco has disclosed today a zero-day vulnerability in the Cisco AnyConnect Secure Mobility Client software with proof-of-concept exploit code publicly available. [...]
https://www.bleepingcomputer.com/news/security/cisco-discloses-anyconnect-vpn-zero-day-exploit-code-available/
BleepingComputer
Cisco discloses AnyConnect VPN zero-day, exploit code available
Cisco has disclosed today a zero-day vulnerability in the Cisco AnyConnect Secure Mobility Client software with proof-of-concept exploit code publicly available.
Apple search bot leaked internal IPs via proxy configuration
A podcast creator and security researcher discovered that Apple's search bot, namely Applebot, crawling his podcast series had been leaking internal IPs due to a misconfigured proxy server. And, it took Apple over 9 months to fix this, for no obvious reason. [...]
https://www.bleepingcomputer.com/news/security/apple-search-bot-leaked-internal-ips-via-proxy-configuration/
A podcast creator and security researcher discovered that Apple's search bot, namely Applebot, crawling his podcast series had been leaking internal IPs due to a misconfigured proxy server. And, it took Apple over 9 months to fix this, for no obvious reason. [...]
https://www.bleepingcomputer.com/news/security/apple-search-bot-leaked-internal-ips-via-proxy-configuration/
BleepingComputer
Apple search bot leaked internal IPs via proxy configuration
A podcast creator and security researcher discovered that Apple's search bot, namely Applebot, crawling his podcast series had been leaking internal IPs due to a misconfigured proxy server. And, it took Apple over 9 months to fix this, for no obvious reason.
Microsoft fixes Windows 10 issue behind displays going black
Microsoft says that it fixed a known issue affecting devices running Windows 10, version 2004 since June and causing external displays to go black when drawing in certain applications including Microsoft Office Word and Whiteboard. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-10-issue-behind-displays-going-black/
Microsoft says that it fixed a known issue affecting devices running Windows 10, version 2004 since June and causing external displays to go black when drawing in certain applications including Microsoft Office Word and Whiteboard. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-10-issue-behind-displays-going-black/
BleepingComputer
Microsoft fixes Windows 10 issue behind displays going black
Microsoft says that it fixed a known issue affecting devices running Windows 10, version 2004 since June and causing external displays to go black when drawing in certain applications including Microsoft Office Word and Whiteboard.
Japanese game dev Capcom hit by cyberattack, business impacted
Japanese game developer Capcom has disclosed that they suffered a cyberattack over the weekend that is impacting business operations, including email systems. [...]
https://www.bleepingcomputer.com/news/security/japanese-game-dev-capcom-hit-by-cyberattack-business-impacted/
Japanese game developer Capcom has disclosed that they suffered a cyberattack over the weekend that is impacting business operations, including email systems. [...]
https://www.bleepingcomputer.com/news/security/japanese-game-dev-capcom-hit-by-cyberattack-business-impacted/
BleepingComputer
Japanese game dev Capcom hit by cyberattack, business impacted
Japanese game developer Capcom has disclosed that they suffered a cyberattack over the weekend that is impacting business operations, including email systems.
Scam PSA: Ransomware gangs don't always delete stolen data when paid
Ransomware gangs are increasingly failing to keep their promise to delete stolen data after a victim pays a ransom. [...]
https://www.bleepingcomputer.com/news/security/scam-psa-ransomware-gangs-dont-always-delete-stolen-data-when-paid/
Ransomware gangs are increasingly failing to keep their promise to delete stolen data after a victim pays a ransom. [...]
https://www.bleepingcomputer.com/news/security/scam-psa-ransomware-gangs-dont-always-delete-stolen-data-when-paid/
BleepingComputer
Scam PSA: Ransomware gangs don't always delete stolen data when paid
Ransomware gangs are increasingly failing to keep their promise to delete stolen data after a victim pays a ransom.
QBot phishing lures victims using US election interference emails
The Qbot botnet is now spewing U.S. election-themed phishing emails used to infect victims with malicious payloads designed to harvest user data and emails for use in future campaigns. [...]
https://www.bleepingcomputer.com/news/security/qbot-phishing-lures-victims-using-us-election-interference-emails/
The Qbot botnet is now spewing U.S. election-themed phishing emails used to infect victims with malicious payloads designed to harvest user data and emails for use in future campaigns. [...]
https://www.bleepingcomputer.com/news/security/qbot-phishing-lures-victims-using-us-election-interference-emails/
BleepingComputer
QBot phishing lures victims using US election interference emails
The Qbot botnet is now spewing U.S. election-themed phishing emails used to infect victims with malicious payloads designed to harvest user data and emails for use in future campaigns.
Capcom hit by Ragnar Locker ransomware, 1TB allegedly stolen
Japanese game developer Capcom has suffered a ransomware attack where threat actors claim to have stolen 1TB of sensitive data from their corporate networks in the US, Japan, and Canada. [...]
https://www.bleepingcomputer.com/news/security/capcom-hit-by-ragnar-locker-ransomware-1tb-allegedly-stolen/
Japanese game developer Capcom has suffered a ransomware attack where threat actors claim to have stolen 1TB of sensitive data from their corporate networks in the US, Japan, and Canada. [...]
https://www.bleepingcomputer.com/news/security/capcom-hit-by-ragnar-locker-ransomware-1tb-allegedly-stolen/
BleepingComputer
Capcom hit by Ragnar Locker ransomware, 1TB allegedly stolen
Japanese game developer Capcom has suffered a ransomware attack where threat actors claim to have stolen 1TB of sensitive data from their corporate networks in the US, Japan, and Canada.
Critical bug actively used to deploy Cobalt Strike on Oracle servers
Threat actors are actively exploiting vulnerable Oracle WebLogic servers unpatched against CVE-2020-14882 to deploy Cobalt Strike beacons to gain persistent remote access to compromised devices. [...]
https://www.bleepingcomputer.com/news/security/critical-bug-actively-used-to-deploy-cobalt-strike-on-oracle-servers/
Threat actors are actively exploiting vulnerable Oracle WebLogic servers unpatched against CVE-2020-14882 to deploy Cobalt Strike beacons to gain persistent remote access to compromised devices. [...]
https://www.bleepingcomputer.com/news/security/critical-bug-actively-used-to-deploy-cobalt-strike-on-oracle-servers/
BleepingComputer
Critical bug actively used to deploy Cobalt Strike on Oracle servers
Threat actors are actively exploiting vulnerable Oracle WebLogic servers unpatched against CVE-2020-14882 to deploy Cobalt Strike beacons to gain persistent remote access to compromised devices.
US govt behind $1 billion Bitcoin transfer of Silk Road funds
More details have emerged on the password-protected Bitcoin wallet which had been emptied out the night of the US Presidential Election. [...]
https://www.bleepingcomputer.com/news/security/us-govt-behind-1-billion-bitcoin-transfer-of-silk-road-funds/
More details have emerged on the password-protected Bitcoin wallet which had been emptied out the night of the US Presidential Election. [...]
https://www.bleepingcomputer.com/news/security/us-govt-behind-1-billion-bitcoin-transfer-of-silk-road-funds/
BleepingComputer
US govt behind $1 billion Bitcoin transfer of Silk Road funds
More details have emerged on the password-protected Bitcoin wallet which had been emptied out the night of the US Presidential Election.
Apple patches three actively exploited iOS zero-days
Apple has patched today three iOS zero-day vulnerabilities actively exploited in the wild and affecting iPhone, iPad, and iPod devices. [...]
https://www.bleepingcomputer.com/news/security/apple-patches-three-actively-exploited-ios-zero-days/
Apple has patched today three iOS zero-day vulnerabilities actively exploited in the wild and affecting iPhone, iPad, and iPod devices. [...]
https://www.bleepingcomputer.com/news/security/apple-patches-three-actively-exploited-ios-zero-days/
BleepingComputer
Apple patches three actively exploited iOS zero-days
Apple has patched today three iOS zero-day vulnerabilities actively exploited in the wild and affecting iPhone, iPad, and iPod devices.
Brazil's court system under massive RansomExx ransomware attack
Brazil's Superior Court of Justice was hit by a ransomware attack on Tuesday during judgment sessions that were taking place over video conference. [...]
https://www.bleepingcomputer.com/news/security/brazils-court-system-under-massive-ransomexx-ransomware-attack/
Brazil's Superior Court of Justice was hit by a ransomware attack on Tuesday during judgment sessions that were taking place over video conference. [...]
https://www.bleepingcomputer.com/news/security/brazils-court-system-under-massive-ransomexx-ransomware-attack/
BleepingComputer
Brazil's court system under massive RansomExx ransomware attack
Brazil's Superior Court of Justice was hit by a ransomware attack on Tuesday during judgment sessions that were taking place over video conference.
Campari hit by Ragnar Locker Ransomware, $15 million demanded
Italian liquor company Campari Group was hit by a Ragnar Locker ransomware attack, where 2 TB of unencrypted files was allegedly stolen. To recover their files, Ragnar Locker is demanding $15 million. [...]
https://www.bleepingcomputer.com/news/security/campari-hit-by-ragnar-locker-ransomware-15-million-demanded/
Italian liquor company Campari Group was hit by a Ragnar Locker ransomware attack, where 2 TB of unencrypted files was allegedly stolen. To recover their files, Ragnar Locker is demanding $15 million. [...]
https://www.bleepingcomputer.com/news/security/campari-hit-by-ragnar-locker-ransomware-15-million-demanded/
BleepingComputer
Campari hit by Ragnar Locker Ransomware, $15 million demanded
Italian liquor company Campari Group was hit by a Ragnar Locker ransomware attack, where 2 TB of unencrypted files was allegedly stolen. To recover their files, Ragnar Locker is demanding $15 million.
Reverse shell botnet Gitpaste-12 spreads via GitHub and Pastebin
A newly discovered worm and botnet named Gitpaste-12 lives on GitHub and also uses Pastebin to host malicious code. The advanced malware comes equipped with reverse shell and crypto mining capabilities. [...]
https://www.bleepingcomputer.com/news/security/reverse-shell-botnet-gitpaste-12-spreads-via-github-and-pastebin/
A newly discovered worm and botnet named Gitpaste-12 lives on GitHub and also uses Pastebin to host malicious code. The advanced malware comes equipped with reverse shell and crypto mining capabilities. [...]
https://www.bleepingcomputer.com/news/security/reverse-shell-botnet-gitpaste-12-spreads-via-github-and-pastebin/
BleepingComputer
Reverse shell botnet Gitpaste-12 spreads via GitHub and Pastebin
A newly discovered worm and botnet named Gitpaste-12 lives on GitHub and also uses Pastebin to host malicious code. The advanced malware comes equipped with reverse shell and crypto mining capabilities.
Windows 10 20H2 crashes when connecting Thunderbolt NVMe SSDs
Microsoft says that devices running Windows 10 2004 or Windows 10 20H2 might crash with blue screens of death (BSODs) when users plug in a Thunderbolt NVMe (Non-Volatile Memory Express) Solid State Drive (SSD). [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-20h2-crashes-when-connecting-thunderbolt-nvme-ssds/
Microsoft says that devices running Windows 10 2004 or Windows 10 20H2 might crash with blue screens of death (BSODs) when users plug in a Thunderbolt NVMe (Non-Volatile Memory Express) Solid State Drive (SSD). [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-20h2-crashes-when-connecting-thunderbolt-nvme-ssds/
BleepingComputer
Windows 10 20H2 crashes when connecting Thunderbolt NVMe SSDs
Microsoft says that devices running Windows 10 2004 or Windows 10 20H2 might crash with blue screens of death (BSODs) when users plug in a Thunderbolt NVMe (Non-Volatile Memory Express) Solid State Drive (SSD).
Windows 10 20H2 LSASS crash issue causes forced reboots
Microsoft has acknowledged a new known issue causing forced restarts on Windows 10 20H2 devices due to the Local Security Authority Subsystem Service (LSASS) system process crashing. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-20h2-lsass-crash-issue-causes-forced-reboots/
Microsoft has acknowledged a new known issue causing forced restarts on Windows 10 20H2 devices due to the Local Security Authority Subsystem Service (LSASS) system process crashing. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-10-20h2-lsass-crash-issue-causes-forced-reboots/
BleepingComputer
Windows 10 20H2 LSASS crash issue causes forced reboots
Microsoft has acknowledged a new known issue causing forced restarts on Windows 10 20H2 devices due to the Local Security Authority Subsystem Service (LSASS) system process crashing.
RansomExx ransomware also encrypts Linux systems
With companies commonly using a mixed environment of Windows and Linux servers, ransomware operations have increasingly started to create Linux versions of their malware to ensure they encrypt all critical data. [...]
https://www.bleepingcomputer.com/news/security/ransomexx-ransomware-also-encrypts-linux-systems/
With companies commonly using a mixed environment of Windows and Linux servers, ransomware operations have increasingly started to create Linux versions of their malware to ensure they encrypt all critical data. [...]
https://www.bleepingcomputer.com/news/security/ransomexx-ransomware-also-encrypts-linux-systems/
BleepingComputer
RansomExx ransomware also encrypts Linux systems
With companies commonly using a mixed environment of Windows and Linux servers, ransomware operations have increasingly started to create Linux versions of their malware to ensure they encrypt all critical data.
New Pay2Key ransomware encrypts networks within one hour
A new ransomware called Pay2Key has been targeting organizations from Israel and Brazil, encrypting their networks within an hour in targeted attacks still under investigation. [...]
https://www.bleepingcomputer.com/news/security/new-pay2key-ransomware-encrypts-networks-within-one-hour/
A new ransomware called Pay2Key has been targeting organizations from Israel and Brazil, encrypting their networks within an hour in targeted attacks still under investigation. [...]
https://www.bleepingcomputer.com/news/security/new-pay2key-ransomware-encrypts-networks-within-one-hour/
BleepingComputer
New Pay2Key ransomware encrypts networks within one hour
A new ransomware called Pay2Key has been targeting organizations from Israel and Brazil, encrypting their networks within an hour in targeted attacks still under investigation.
New Windows 10 policy lets you disable cloud customized taskbars
Microsoft has added a new group policy in Windows 10 20H2 that allows you to disable a new feature that customizes the taskbar based on what accounts or devices you have. [...]
https://www.bleepingcomputer.com/news/microsoft/new-windows-10-policy-lets-you-disable-cloud-customized-taskbars/
Microsoft has added a new group policy in Windows 10 20H2 that allows you to disable a new feature that customizes the taskbar based on what accounts or devices you have. [...]
https://www.bleepingcomputer.com/news/microsoft/new-windows-10-policy-lets-you-disable-cloud-customized-taskbars/
BleepingComputer
New Windows 10 policy lets you disable cloud customized taskbars
Microsoft has added a new group policy in Windows 10 20H2 that allows you to disable a new feature that customizes the taskbar based on what accounts or devices you have.