Kmart nationwide retailer suffers a ransomware attack

US department store retailer Kmart has suffered a ransomware attack that impacts back-end services at the company, BleepingComputer has learned. [...]

https://www.bleepingcomputer.com/news/security/kmart-nationwide-retailer-suffers-a-ransomware-attack/

Credit card stealing malware hides in social media sharing icons

Newly discovered web skimming malware is capable of hiding in plain sight to inject payment card skimmer scripts into compromised online stores. [...]

https://www.bleepingcomputer.com/news/security/credit-card-stealing-malware-hides-in-social-media-sharing-icons/

Metro Vancouver’s transit system TransLink hit by Egregor ransomware

The Egregor ransomware operation has breached Metro Vancouver's transportation agency TransLink with the cyberattack causing disruptions in services and payment systems. [...]

https://www.bleepingcomputer.com/news/security/metro-vancouver-s-transit-system-translink-hit-by-egregor-ransomware/

BlackShadow hackers extort Israeli insurance company for $1 million

Threat actors are extorting an Israeli insurance company by demanding almost $1 million in bitcoin to stop leaking the company's stolen data. [...]

https://www.bleepingcomputer.com/news/security/blackshadow-hackers-extort-israeli-insurance-company-for-1-million/

VMware fixes zero-day vulnerability reported by the NSA

VMware has released security updates to address a zero-day vulnerability in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. [...]

https://www.bleepingcomputer.com/news/security/vmware-fixes-zero-day-vulnerability-reported-by-the-nsa/

Largest global staffing agency Randstad hit by Egregor ransomware

Staffing agency Randstad NV announced today that their network was breached by the Egregor ransomware, who stole unencrypted files during the attack. [...]

https://www.bleepingcomputer.com/news/security/largest-global-staffing-agency-randstad-hit-by-egregor-ransomware/

US and Australia to develop shared cyberattack training platform

The United States and Australia have signed a first-ever bilateral agreement that allows the U.S. Cyber Command (USCYBERCOM) and the Information Warfare Division (IWD) of the Australian Defense Force to jointly develop and share a virtual cyber training platform. [...]

https://www.bleepingcomputer.com/news/security/us-and-australia-to-develop-shared-cyberattack-training-platform/

Monolith mystery solved: Artist claims he made 'alien' structures

An artist has claimed responsibility for the mysterious monoliths that have been appearing across the world, including Utah, California, and Romania. The pseudonymous artist has these monumental structures for sale on their website for $45,000. [...]

https://www.bleepingcomputer.com/news/technology/monolith-mystery-solved-artist-claims-he-made-alien-structures/

FBI: You may be a money mule and not even know it

The FBI has warned of an increasing number of scammers preying on unemployed Americans by trying to recruit them into their money mule schemes and use them to launder funds obtained via fraud, online scams, and other types of criminal activities. [...]

https://www.bleepingcomputer.com/news/security/fbi-you-may-be-a-money-mule-and-not-even-know-it/

The Week in Ransomware - December 4th 2020 - Education under attack

It has been another rough week for the enterprise and education as ransomware continues to impact business operations and shut down schools. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-december-4th-2020-education-under-attack/

MetaMask phishing steals cryptocurrency wallets via Google ads

Over the past week, users of the MetaMask cryptocurrency wallet have been losing funds to a phishing scam that lured potential victims through Google search ads. [...]

https://www.bleepingcomputer.com/news/security/metamask-phishing-steals-cryptocurrency-wallets-via-google-ads/

Google Chrome is getting a real-time webpage performance overlay

Google Chrome is getting a new browser heads-up display that displays performance metrics about the web pages you are visiting. [...]

https://www.bleepingcomputer.com/news/google/google-chrome-is-getting-a-real-time-webpage-performance-overlay/

How to hide unwanted driver updates in Windows 10

Almost every month, the Windows Update catalogue is updated with unwanted drivers prepared by OEMs and driver vendors. Fortunately, Microsoft allows users to hide or pause specific driver updates using a tool called "Show or hide updates troubleshooter". [...]

https://www.bleepingcomputer.com/news/microsoft/how-to-hide-unwanted-driver-updates-in-windows-10/

Police arrest two in data theft cyberattack on Leonardo defense corp

Italian police have arrested two people allegedly for using malware to steal 10 GB of confidental data and military secrets from defense company Leonardo S.p.A. [...]

https://www.bleepingcomputer.com/news/security/police-arrest-two-in-data-theft-cyberattack-on-leonardo-defense-corp/

Microsoft tests new method to release Windows 10 features and fixes

Microsoft is testing a way to quickly bring new features and improvements to Windows 10 outside of the regularly scheduled Windows updates. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-tests-new-method-to-release-windows-10-features-and-fixes/

Hands on with Cortana's new file finder feature on Windows 10

A new Windows 10 feature lets you use the digital assistant to open and find files and save time spent navigating File Explorer or OneDrive. [...]

https://www.bleepingcomputer.com/news/microsoft/hands-on-with-cortanas-new-file-finder-feature-on-windows-10/

QNAP patches QTS vulnerabilities allowing NAS device takeover

Network-attached storage (NAS) maker QNAP today released security updates to address vulnerabilities that could enable attackers to take control of unpatched NAS devices following successful exploitation. [...]

https://www.bleepingcomputer.com/news/security/qnap-patches-qts-vulnerabilities-allowing-nas-device-takeover/

NSA: Russian state hackers exploit new VMware vulnerability to steal data

The National Security Agency (NSA) warns that Russian state-sponsored threat actors are exploiting a recently patched VMware vulnerability to steal sensitive information after deploying web shells on vulnerable servers. [...]

https://www.bleepingcomputer.com/news/security/nsa-russian-state-hackers-exploit-new-vmware-vulnerability-to-steal-data/

NortonLifeLock purchases Avira for $360 million

NortonLifeLock announced today that they have agreed to acquire Avira in an all-cash transaction for approximately $360 million. [...]

https://www.bleepingcomputer.com/news/security/nortonlifelock-purchases-avira-for-360-million/

Microsoft announces Azure cloud for top secret government data

Microsoft today announced the launch of a new offering for its mission-critical Azure Government cloud targeted at government customers and partners that regularly work with top-secret classified data. [...]

https://www.bleepingcomputer.com/news/security/microsoft-announces-azure-cloud-for-top-secret-government-data/

Foxconn electronics giant hit by ransomware, $34 million ransom

Foxconn electronics giant suffered a ransomware attack at a Mexican facility over the Thanksgiving weekend, where attackers stole unencrypted files before encrypting devices. [...]

https://www.bleepingcomputer.com/news/security/foxconn-electronics-giant-hit-by-ransomware-34-million-ransom/