Critical bug actively used to deploy Cobalt Strike on Oracle servers

Threat actors are actively exploiting vulnerable Oracle WebLogic servers unpatched against CVE-2020-14882 to deploy Cobalt Strike beacons to gain persistent remote access to compromised devices. [...]

https://www.bleepingcomputer.com/news/security/critical-bug-actively-used-to-deploy-cobalt-strike-on-oracle-servers/

US govt behind $1 billion Bitcoin transfer of Silk Road funds

More details have emerged on the password-protected Bitcoin wallet which had been emptied out the night of the US Presidential Election. [...]

https://www.bleepingcomputer.com/news/security/us-govt-behind-1-billion-bitcoin-transfer-of-silk-road-funds/

Apple patches three actively exploited iOS zero-days

Apple has patched today three iOS zero-day vulnerabilities actively exploited in the wild and affecting iPhone, iPad, and iPod devices. [...]

https://www.bleepingcomputer.com/news/security/apple-patches-three-actively-exploited-ios-zero-days/

Brazil's court system under massive RansomExx ransomware attack

Brazil's Superior Court of Justice was hit by a ransomware attack on Tuesday during judgment sessions that were taking place over video conference. [...]

https://www.bleepingcomputer.com/news/security/brazils-court-system-under-massive-ransomexx-ransomware-attack/

Campari hit by Ragnar Locker Ransomware, $15 million demanded

Italian liquor company Campari Group was hit by a Ragnar Locker ransomware attack, where 2 TB of unencrypted files was allegedly stolen. To recover their files, Ragnar Locker is demanding $15 million. [...]

https://www.bleepingcomputer.com/news/security/campari-hit-by-ragnar-locker-ransomware-15-million-demanded/

Reverse shell botnet Gitpaste-12 spreads via GitHub and Pastebin

A newly discovered worm and botnet named Gitpaste-12 lives on GitHub and also uses Pastebin to host malicious code. The advanced malware comes equipped with reverse shell and crypto mining capabilities. [...]

https://www.bleepingcomputer.com/news/security/reverse-shell-botnet-gitpaste-12-spreads-via-github-and-pastebin/

Windows 10 20H2 crashes when connecting Thunderbolt NVMe SSDs

Microsoft says that devices running Windows 10 2004 or Windows 10 20H2 might crash with blue screens of death (BSODs) when users plug in a Thunderbolt NVMe (Non-Volatile Memory Express) Solid State Drive (SSD). [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-20h2-crashes-when-connecting-thunderbolt-nvme-ssds/

Windows 10 20H2 LSASS crash issue causes forced reboots

Microsoft has acknowledged a new known issue causing forced restarts on Windows 10 20H2 devices due to the Local Security Authority Subsystem Service (LSASS) system process crashing. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-20h2-lsass-crash-issue-causes-forced-reboots/

RansomExx ransomware also encrypts Linux systems

With companies commonly using a mixed environment of Windows and Linux servers, ransomware operations have increasingly started to create Linux versions of their malware to ensure they encrypt all critical data. [...]

https://www.bleepingcomputer.com/news/security/ransomexx-ransomware-also-encrypts-linux-systems/

New Pay2Key ransomware encrypts networks within one hour

A new ransomware called Pay2Key has been targeting organizations from Israel and Brazil, encrypting their networks within an hour in targeted attacks still under investigation. [...]

https://www.bleepingcomputer.com/news/security/new-pay2key-ransomware-encrypts-networks-within-one-hour/

New Windows 10 policy lets you disable cloud customized taskbars

Microsoft has added a new group policy in Windows 10 20H2 that allows you to disable a new feature that customizes the taskbar based on what accounts or devices you have. [...]

https://www.bleepingcomputer.com/news/microsoft/new-windows-10-policy-lets-you-disable-cloud-customized-taskbars/

The Week in Ransomware - November 6th 2020 - Video Games and Liquor!

This week, it has been busy with attacks worldwide and one of the largest ransomware operations officially shutting down. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-november-6th-2020-video-games-and-liquor/

How Ryuk Ransomware operators made $34 million from one victim

One hacker group that is targeting high-revenue companies with Ryuk ransomware received $34 million from one victim in exchange for the decryption key that unlocked their computers. [...]

https://www.bleepingcomputer.com/news/security/how-ryuk-ransomware-operators-made-34-million-from-one-victim/

Luxottica data breach exposes LensCrafters, EyeMed patient info

A Luxottica data breach has exposed the personal and protected health information for patients of LensCrafters, Target Optical, EyeMed, and other eye care practices. [...]

https://www.bleepingcomputer.com/news/security/luxottica-data-breach-exposes-lenscrafters-eyemed-patient-info/

Managing Windows 10 apps with the Chocolatey package manager

Chocolatey is designed for both consumers (general users) and businesses, thanks to the easy to understand user interface and a suite of powerful features for existing programs deployment infrastructure. [...]

https://www.bleepingcomputer.com/news/microsoft/managing-windows-10-apps-with-the-chocolatey-package-manager/

Office 365 will let admins review Microsoft Forms phishing attempts

Microsoft is working on adding a new Microsoft Forms phishing attempt review feature that will allow Office 365 admins to confirm and block forms that try to maliciously harvest sensitive data. [...]

https://www.bleepingcomputer.com/news/security/office-365-will-let-admins-review-microsoft-forms-phishing-attempts/

This script lets you download ISOs for any Windows 10 version

A new script makes it easy to create an ISO for any version of Windows 10, including Windows 10 version 1507 through 20H2. [...]

https://www.bleepingcomputer.com/news/microsoft/this-script-lets-you-download-isos-for-any-windows-10-version/

Trump lawsuit site to report rejected votes leaked voter data

The DontTouchTheGreenButton website just launched by the Trump campaign in relation to the lawsuit filed on rejected votes in Arizona is leaking voter data. [...]

https://www.bleepingcomputer.com/news/security/trump-lawsuit-site-to-report-rejected-votes-leaked-voter-data/

HMRC smishing tax scam targets UK banking customers

An advanced HMRC tax rebate scam has been targeting UK residents this week via text messages (SMS). The smishing campaign is concerning as it employs multiple HMRC phishing domains and tactics, with new domains being added every day as older ones get flagged by spam filters. [...]

https://www.bleepingcomputer.com/news/security/hmrc-smishing-tax-scam-targets-uk-banking-customers/

How to beautify the Windows 10 Search feature

Since Windows Search interface is based on Microsoft's web technologies, it can be easily tweaked by injecting a custom JavaScript file. If you don't want to do this manually, you can use an open-source free tool called "BeautySearch". [...]

https://www.bleepingcomputer.com/news/microsoft/how-to-beautify-the-windows-10-search-feature/

Microsoft: Windows 10 1903 reaches end of service next month

Microsoft reminds customers that some editions of Windows 10, version 1903 (also known as the May 2019 Update) will reach its end of service next month. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-windows-10-1903-reaches-end-of-service-next-month/