Hacking group’s new malware abuses Google and Facebook services

Molerats cyberespionage group has been using in recent spear-phishing campaigns fresh malware that relies on Dropbox, Google Drive, and Facebook for command and control communication and to store stolen data. [...]

https://www.bleepingcomputer.com/news/security/hacking-group-s-new-malware-abuses-google-and-facebook-services/

Hacking group’s new malware abuses Google and Facebook services

Molerats cyberespionage group has been using in recent spear-phishing campaigns fresh malware that relies on Dropbox, Google Drive, and Facebook for command and control communication and to store stolen data. [...]

https://www.bleepingcomputer.com/news/security/hacking-group-s-new-malware-abuses-google-and-facebook-services/

Google outage affecting YouTube, Gmail and more

Google users are currently experiencing issues around the world, with users unable to access Gmail, YouTube, Google Drive, and possibly other Google services. [...]

https://www.bleepingcomputer.com/news/google/google-outage-affecting-youtube-gmail-and-more/

Microsoft partially fixes Windows 10 Conexant audio driver issues

Microsoft has partially addressed known issues impacting Windows 10 devices with certain Conexant or Synaptics audio devices after investigating ongoing errors since May 2020. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-partially-fixes-windows-10-conexant-audio-driver-issues/

US govt, FireEye breached after SolarWinds supply-chain attack

SolarWinds's Orion IT monitoring and management software has been used in a supply chain attack leading to the breach of government and high-profile companies using a malware dubbed SUNBURST or Solorigate. [...]

https://www.bleepingcomputer.com/news/security/us-govt-fireeye-breached-after-solarwinds-supply-chain-attack/

Microsoft removes update block for Windows 10 NVMe SSD devices

Microsoft has removed a safeguard hold blocking Windows 10 updates on systems affected by a known issue causing blue screen of death (BSOD) crashes when users plugged in a Thunderbolt NVMe (Non-Volatile Memory Express) Solid State Drive (SSD). [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-removes-update-block-for-windows-10-nvme-ssd-devices/

Windows 10 to get a built-in command-line disk space analyzer

Microsoft is working on a new built-in command-line 'Disk Usage' utility that reports how much disk space a folder uses. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-to-get-a-built-in-command-line-disk-space-analyzer/

Mozilla shares fix for Netflix, Hulu errors on Apple Silicon Macs

Mozilla published a support document on how to fix a known issue leading to errors on multiple video streaming platforms including Netflix, Hulu, Disney+, and Amazon's Prime Video Prime on the Mac version of Firefox 84. [...]

https://www.bleepingcomputer.com/news/technology/mozilla-shares-fix-for-netflix-hulu-errors-on-apple-silicon-macs/

Critical Golang XML parser bugs can cause SAML authentication bypass

This week, Mattermost, in coordination with Golang has disclosed 3 critical vulnerabilities within Go language's XML parser.
If exploited, these vulnerabilities, also impacting multiple Go-based SAML implementations, can lead to a complete bypass of SAML authentication which powers prominent web applications today. [...]

https://www.bleepingcomputer.com/news/security/critical-golang-xml-parser-bugs-can-cause-saml-authentication-bypass/

Twitter fined by EU data protection watchdog for GDPR breach

Ireland's Data Protection Commission fined Twitter €450,000 for failing to notify the DPC of a breach within the 72-hour timeframe imposed by required by European Union's General Data Protection Regulation (GDPR) and to adequately document it. [...]

https://www.bleepingcomputer.com/news/technology/twitter-fined-by-eu-data-protection-watchdog-for-gdpr-breach/

Firefox 84 dramatically boosts performance on Apple Silicon Macs

Mozilla Firefox 84 was released today with a dramatic performance boost after adding native support on macOS devices with Apple Silicon processors. [...]

https://www.bleepingcomputer.com/news/software/firefox-84-dramatically-boosts-performance-on-apple-silicon-macs/

Ransomware attack causing billing delays for Missouri city

The City of Independence, Missouri, suffered a ransomware attack last week that continues to disrupt the city's services. [...]

https://www.bleepingcomputer.com/news/security/ransomware-attack-causing-billing-delays-for-missouri-city/

Pandemic year increases bug bounties and report submissions

Vulnerability submissions have increased over the past 12 months on at least one crowdsourced security platform, with critical issue reports recording a 65% jump. [...]

https://www.bleepingcomputer.com/news/security/pandemic-year-increases-bug-bounties-and-report-submissions/

Google outage caused by critical system running out of storage

Google's global outage from yesterday was due to a bug that restricted storage space to the Identity Management System and caused the system to fail. [...]

https://www.bleepingcomputer.com/news/google/google-outage-caused-by-critical-system-running-out-of-storage/

Microsoft 365 gets native app support on Apple Silicon Macs

Microsoft has started rolling out new Universal versions of Microsoft 365 apps with native support for both Apple Silicon and Intel-based Macs starting today. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-365-gets-native-app-support-on-apple-silicon-macs/

New Windows malware may soon target Linux, macOS devices

Newly discovered Windows info-stealing malware linked to an active threat group tracked as AridViper shows signs that it might be used to infect computers running Linux and macOS. [...]

https://www.bleepingcomputer.com/news/security/new-windows-malware-may-soon-target-linux-macos-devices/

Microsoft to quarantine compromised SolarWinds binaries tomorrow

Microsoft has announced today that Microsoft Defender will begin quarantining compromised SolarWind Orion binaries starting tomorrow morning. [...]

https://www.bleepingcomputer.com/news/security/microsoft-to-quarantine-compromised-solarwinds-binaries-tomorrow/

Gmail hit by a second outage within a single day

Gmail is suffering its second outage in 24 hours, with users able to access their email but unable to send to other Gmail users or experiencing unexpected behavior. [...]

https://www.bleepingcomputer.com/news/google/gmail-hit-by-a-second-outage-within-a-single-day/

Microsoft Authenticator brings password autofill to mobile devices

Microsoft has released a new version of Microsoft Authenticator that now acts as a password manager for Android and iOS. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-authenticator-brings-password-autofill-to-mobile-devices/

Ransomware gangs automate payload delivery with SystemBC malware

SystemBC, a commodity malware sold on underground marketplaces, is being used by ransomware-as-a-service (RaaS) operations to hide malicious traffic and automate ransomware payload delivery on the networks of compromised victims. [...]

https://www.bleepingcomputer.com/news/security/ransomware-gangs-automate-payload-delivery-with-systembc-malware/

HPE discloses critical zero-day in server management software

Hewlett Packard Enterprise (HPE) has disclosed a zero-day bug in the latest versions of its proprietary HPE Systems Insight Manager (SIM) software for Windows and Linux. [...]

https://www.bleepingcomputer.com/news/security/hpe-discloses-critical-zero-day-in-server-management-software/