Best Microsoft tools created for Windows 10 power users

Over the past year, Microsoft has quietly released new built-in Windows 10 command-line applications and free Microsoft Store apps that enhance the functionality of the operating system. [...]

https://www.bleepingcomputer.com/news/microsoft/best-microsoft-tools-created-for-windows-10-power-users/

Hacker posts exploits for over 49,000 vulnerable Fortinet VPNs

Thousands of domains, including those belonging to high street banks and government organizations are vulnerable to a critical Path Traversal flaw in FortiNet SSL VPN. [...]

https://www.bleepingcomputer.com/news/security/hacker-posts-exploits-for-over-49-000-vulnerable-fortinet-vpns/

Hands on with Windows Terminal 1.5's upcoming features

Microsoft released Windows Terminal Preview v1.5 this week, and it comes with some useful improvements, including full support for clickable hyperlinks, command palette improvements, emoji icon support, and more. [...]

https://www.bleepingcomputer.com/news/microsoft/hands-on-with-windows-terminal-15s-upcoming-features/

How to boost your Windows 10 experience with PowerToys

Windows 10 PowerToys currently comes with utilities for optimizing app windows for big monitors, previewing new image types in File Explorer, resizing images, and more. In this article, we're highlighting the new key features of PowerToys that you should try to supercharge your Windows 10 experience. [...]

https://www.bleepingcomputer.com/news/microsoft/how-to-boost-your-windows-10-experience-with-powertoys/

FBI warns of recently registered domains spoofing its sites

The U.S. Federal Bureau of Investigation (FBI) is warning the general public of the risks behind recently registered FBI-related domains that spoof some of the federal law enforcement agency's official websites. [...]

https://www.bleepingcomputer.com/news/security/fbi-warns-of-recently-registered-domains-spoofing-its-sites/

Here's how to enable Google Chrome's new modern PDF reader

The PDF reader or viewer within Google Chrome has always been relatively simple, especially when compared to Microsoft Edge. With Chrome 87, Google has introduced a new UI for the PDF reader and here's how you can enable it if you don't have it already. [...]

https://www.bleepingcomputer.com/news/google/heres-how-to-enable-google-chromes-new-modern-pdf-reader/

Fake Minecraft mods swamp over 1M Android devices with ads

Fraudsters bypassed Google's protections for the official Play Android store and published more than 20 fake modpacks for the popular game Minecraft. [...]

https://www.bleepingcomputer.com/news/security/fake-minecraft-mods-swamp-over-1m-android-devices-with-ads/

Ransomware forces E-Land South Korean retail giant to close stores

South Korean conglomerate and retail giant E-Land has suffered a ransomware attack causing 23 of its retail stores to suspend operations while they deal with the attack. [...]

https://www.bleepingcomputer.com/news/security/ransomware-forces-e-land-south-korean-retail-giant-to-close-stores/

Tesla Model X key fobs could be hacked to steal cars, fix released

Researchers at the University of Leuven in Belgium found vulnerabilities in the keyless entry system of the Tesla Model X that would have allowed attackers to steal the $100,000 car within just a few minutes. [...]

https://www.bleepingcomputer.com/news/security/tesla-model-x-key-fobs-could-be-hacked-to-steal-cars-fix-released/

VMware discloses critical zero-day vulnerability in Workspace One

VMware has released a workaround to address a critical zero-day in multiple VMware Workspace One components that allows attackers to execute commands on the host Linux and Windows operating systems using escalated privileges. [...]

https://www.bleepingcomputer.com/news/security/vmware-discloses-critical-zero-day-vulnerability-in-workspace-one/

Over 300K Spotify accounts hacked in credential stuffing attack

Hackers have been attempting to gain access to Spotify accounts using a database of 380 million records with login credentials and personal information collected from various sources. [...]

https://www.bleepingcomputer.com/news/security/over-300k-spotify-accounts-hacked-in-credential-stuffing-attack/

TikTok fixes bugs allowing account takeover with one click

TikTok has addressed two vulnerabilities that could have allowed attackers to take over accounts with a single click when chained together for users who signed-up via third-party apps. [...]

https://www.bleepingcomputer.com/news/security/tiktok-fixes-bugs-allowing-account-takeover-with-one-click/

Black Friday Deal: Get 50% off Malwarebytes Premium, 25% off Teams

Malwarebytes is starting Black Friday early with up to 50% off Malwarebytes Premium and 25% off the Malwarebytes for Teams business product. [...]

https://www.bleepingcomputer.com/news/software/black-friday-deal-get-50-percent-off-malwarebytes-premium-25-percent-off-teams/

New WAPDropper malware stealthily subscribes you to premium services

Security researchers are warning of a new malware family that currently targets mobile phone users to subscribe them silently to legitimate premium-rate services. [...]

https://www.bleepingcomputer.com/news/security/new-wapdropper-malware-stealthily-subscribes-you-to-premium-services/

TrickBot malware uses obfuscated Windows batch script to evade detection

This week researchers analyze BAT script obfuscation techniques used by Trickbot's 100 to evade antivirus detection. [...]

https://www.bleepingcomputer.com/news/security/trickbot-malware-uses-obfuscated-windows-batch-script-to-evade-detection/

Hands on with Microsoft Edge's new Smart Copy feature

Microsoft Edge is now testing a new feature that lets you copy tabular data and groups of items into the Windows clipboard for easy pasting into other apps. [...]

https://www.bleepingcomputer.com/news/microsoft/hands-on-with-microsoft-edges-new-smart-copy-feature/

UK urges orgs to patch critical MobileIron CVE-2020-15505 RCE bug

The UK National Cyber Security Centre (NCSC) issued an alert yesterday, prompting all organizations to patch the critical CVE-2020-15505 remote code execution (RCE) vulnerability in MobileIron mobile device management (MDM) systems. [...]

https://www.bleepingcomputer.com/news/security/uk-urges-orgs-to-patch-critical-mobileiron-cve-2020-15505-rce-bug/

Zoom lifts 40-minute time limit for Thanksgiving meetings

Zoom is lifting the 40-minute time limit on Thanksgiving Zoom meetings so family members and friends can virtually spend the holiday together. [...]

https://www.bleepingcomputer.com/news/software/zoom-lifts-40-minute-time-limit-for-thanksgiving-meetings/

Crooks impersonate US govt agencies offering financial aid

Cybercriminals looking to steal personal information are baiting U.S. citizens with emails purporting to be from government agencies offering federal assistance. [...]

https://www.bleepingcomputer.com/news/security/crooks-impersonate-us-govt-agencies-offering-financial-aid/

Black Friday deal: Get 68% off NordVPN + 3 months FREE

NordVPN's Black Friday promotion is now live with 68% off a 2-year VPN subscription and an additional three months for free. This offer gives you a total of 27 months of VPN access for a monthly cost of $3.30! [...]

https://www.bleepingcomputer.com/news/software/black-friday-deal-get-68-percent-off-nordvpn-plus-3-months-free/

How to disable Microsoft's new 'Meet Now' feature in Windows 10

Earlier this year, Microsoft added the Skype Meet Now feature to Windows 10 preview builds, and this same feature is now gradually rolling out to non-Insider (general public) users. [...]

https://www.bleepingcomputer.com/news/microsoft/how-to-disable-microsofts-new-meet-now-feature-in-windows-10/