The Week in Ransomware - February 12th 2021 - More keys released

This week we saw another ransomware shut down its operation and a significant attack against Cyberpunk 2077 game developer CD Projekt Red. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-february-12th-2021-more-keys-released/

Windows 10 is getting revamped battery settings and usage stats

Windows 10 is getting a redesigned 'Battery' settings page that provides detailed graphs showing how your mobile device uses the battery. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-is-getting-revamped-battery-settings-and-usage-stats/

CD Projekt's stolen source code allegedly sold by ransomware gang

A ransomware gang who says they stole unencrypted source code for the company's most popular games and then encrypted CD Projekt's servers claims to have sold the data. [...]

https://www.bleepingcomputer.com/news/security/cd-projekts-stolen-source-code-allegedly-sold-by-ransomware-gang/

Leading Canadian rental car company hit by DarkSide ransomware

Canadian Discount Car and Truck Rentals has been hit with a DarkSide ransomware attack where the hackers claim to have stolen 120GB of data. [...]

https://www.bleepingcomputer.com/news/security/leading-canadian-rental-car-company-hit-by-darkside-ransomware/

Personalize your Windows 10 desktop with these three apps

With Windows apps, you've got an almost limitless number of ways to customize and personalize the operating system to meet your requirements. In this article, we're going to share a list of apps that you can download from Microsoft and Github to change the appearance of the desktop, search and flyouts too. [...]

https://www.bleepingcomputer.com/news/microsoft/personalize-your-windows-10-desktop-with-these-three-apps/

Pro-India hackers use Android spyware to spy on Pakistani military

This week a report has revealed details on the two spyware strains leveraged by state-sponsored threat actors during the India-Pakistan conflict.
The malware strains named Hornbill and SunBird have been delivered as fake Android apps (APKs) by the Confucius advanced persistent threat group (APT), a state-sponsored operation. [...]

https://www.bleepingcomputer.com/news/security/pro-india-hackers-use-android-spyware-to-spy-on-pakistani-military/

Egregor ransomware members arrested by Ukrainian, French police

A joint operation between French and Ukrainian law enforcement has reportedly led to the arrests of several members of the Egregor ransomware operation in Ukraine. [...]

https://www.bleepingcomputer.com/news/security/egregor-ransomware-members-arrested-by-ukrainian-french-police/

Google Chrome, Microsoft Edge getting this Intel security feature

Chromium-based browsers such as Microsoft Edge and Google Chrome will soon support the Intel CET security feature to prevent a wide range of vulnerabilities. [...]

https://www.bleepingcomputer.com/news/security/google-chrome-microsoft-edge-getting-this-intel-security-feature/

Microsoft will alert Office 365 admins of Forms phishing attempts

Microsoft is adding new security warnings to the Security and Compliance Center (SCC) default alert policies to inform IT admins of detected phishing attempts abusing Microsoft Forms in their tenants. [...]

https://www.bleepingcomputer.com/news/security/microsoft-will-alert-office-365-admins-of-forms-phishing-attempts/

France links Russian Sandworm hackers to hosting provider attacks

The French national cyber-security agency has linked a series of attacks that resulted in the breach of multiple French IT providers over a span of four years to the Russian-backed Sandworm hacking group. [...]

https://www.bleepingcomputer.com/news/security/france-links-russian-sandworm-hackers-to-hosting-provider-attacks/

Cyberattack on Dutch Research Council (NWO) suspends research grants

Servers belonging to the Dutch Research Council (NWO) have been compromised, forcing the organization to make its network unavailable and suspend subsidy allocation for the foreseeable future. [...]

https://www.bleepingcomputer.com/news/security/cyberattack-on-dutch-research-council-nwo-suspends-research-grants/

Microsoft is testing a hidden Windows Terminal Settings screen

Microsoft released Windows Terminal Preview v1.5 this week, and it comes with some useful improvements, including full support for clickable hyperlinks, command palette improvements, emoji icon support, and more. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-is-testing-a-hidden-windows-terminal-settings-screen/

DDoS attack takes down EXMO cryptocurrency exchange servers

The servers of British cryptocurrency exchange EXMO were taken offline temporarily after being targeted in a distributed denial-of-service (DDoS) attack. [...]

https://www.bleepingcomputer.com/news/security/ddos-attack-takes-down-exmo-cryptocurrency-exchange-servers/

Microsoft pulls Windows KB4601392 for blocking security updates

Microsoft has pulled a problematic Windows servicing stack update (SSU) after blocking Windows 10 and Windows Server customers from installing the security updates released during this month Patch Tuesday. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-pulls-windows-kb4601392-for-blocking-security-updates/

Malvertisers exploited browser zero-day to redirect users to scams

The ScamClub malvertising group used a zero-day vulnerability in the WebKit web browser engine to push payloads that redirected to gift card scams. [...]

https://www.bleepingcomputer.com/news/security/malvertisers-exploited-browser-zero-day-to-redirect-users-to-scams/

Microsoft confirms Windows 10 21H1 will run on existing hardware

Microsoft has officially confirmed that Windows 10, version 21H1 will be the next Windows 10 update to be released later during the spring of 2021. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-confirms-windows-10-21h1-will-run-on-existing-hardware/

LastPass Free to force users to choose between mobile, desktop

Starting next month, LastPass will no longer allow a free account to be used on multiple types of devices (computers and mobile) at the same time. [...]

https://www.bleepingcomputer.com/news/security/lastpass-free-to-force-users-to-choose-between-mobile-desktop/

Windows 10 Secure Boot update triggers BitLocker key recovery

Microsoft has acknowledged an issue affecting Windows 10 customers who have installed the KB4535680 security update that addresses a security feature bypass vulnerability in Secure Boot. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-secure-boot-update-triggers-bitlocker-key-recovery/

Kia Motors America experiences massive IT outage across the US

Kia Motors USA is experiencing a nationwide outage affecting IT servers, self-payment phone services, dealer platforms, and phone support. [...]

https://www.bleepingcomputer.com/news/security/kia-motors-america-experiences-massive-it-outage-across-the-us/

Microsoft Edge is getting a new child-friendly Kids Mode

Microsoft is adding a new 'Kids Mode' to the Microsoft Edge browser that provides a safe environment for children to browse the web and consume family-friendly content. [...]

https://www.bleepingcomputer.com/news/security/microsoft-edge-is-getting-a-new-child-friendly-kids-mode/

Microsoft releases Azure Firewall Premium in public preview

Microsoft has announced that the new Premium tier for its managed cloud-based network security service Azure Firewall has entered public preview starting today. [...]

https://www.bleepingcomputer.com/news/security/microsoft-releases-azure-firewall-premium-in-public-preview/