Microsoft shares workaround for 0xc004c003 Windows 10 activation errors

Microsoft has shared a workaround for customers experiencing 0xc004c003 activation failures on Windows 10, version 2004 and 20H2 devices after installing the January 2021 monthly "C" release KB4598291 preview update. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-shares-workaround-for-0xc004c003-windows-10-activation-errors/

MangaDex manga site temporarily shut down after cyberattack

Manga scanlation giant MangaDex has been temporarily shut down after suffering a cyberattack and having its source code stolen. [...]

https://www.bleepingcomputer.com/news/security/mangadex-manga-site-temporarily-shut-down-after-cyberattack/

Microsoft releases printer fix for older Windows Versions

Microsoft has released out-of-band emergency updates for Windows 7, 8.1, Windows Server 2008, and Windows Server 2012 to fix printer issues arising from the March 2021 Patch Tuesday updates. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-printer-fix-for-older-windows-versions/

Microsoft: 92% of Exchange servers safe from ProxyLogon attacks

Roughly 92% of all Internet-connected on-premises Microsoft Exchange servers affected by the ProxyLogon vulnerabilities are now patched and safe from attacks, Microsoft said on Monday. [...]

https://www.bleepingcomputer.com/news/security/microsoft-92-percent-of-exchange-servers-safe-from-proxylogon-attacks/

Ransomware attack shuts down Sierra Wireless IoT maker

Sierra Wireless, a world-leading IoT solutions provider, today disclosed a ransomware attack that forced it to halt production at all manufacturing sites. [...]

https://www.bleepingcomputer.com/news/security/ransomware-attack-shuts-down-sierra-wireless-iot-maker/

High-availability server maker Stratus hit by ransomware

Stratus Technologies has suffered a ransomware attack that required systems to be taken offline to prevent the attack's spread. [...]

https://www.bleepingcomputer.com/news/security/high-availability-server-maker-stratus-hit-by-ransomware/

Microsoft warns of phishing attacks bypassing email gateways

An ongoing phishing operation that stole an estimated 400,000 OWA and Office 365 credentials since December has now expanded to abuse new legitimate services to bypass secure email gateways (SEGs). [...]

https://www.bleepingcomputer.com/news/security/microsoft-warns-of-phishing-attacks-bypassing-email-gateways/

Ransomware gang leaks data stolen from Colorado, Miami universities

Grades and social security numbers for students at the University of Colorado and University of Miami patient data have been posted online by the Clop ransomware group. [...]

https://www.bleepingcomputer.com/news/security/ransomware-gang-leaks-data-stolen-from-colorado-miami-universities/

Purple Fox malware worms its way into exposed Windows systems

Purple Fox, a malware previously distributed via exploit kits and phishing emails, has now added a worm module that allows it to scan for and infect Windows systems reachable over the Internet in ongoing attacks. [...]

https://www.bleepingcomputer.com/news/security/purple-fox-malware-worms-its-way-into-exposed-windows-systems/

CNA insurance firm hit by a cyberattack, operations impacted

CNA Financial, a leading US-based insurance company, has suffered a cyberattack impacting its business operations and shutting down its website. [...]

https://www.bleepingcomputer.com/news/security/cna-insurance-firm-hit-by-a-cyberattack-operations-impacted/

Resentful employee deletes 1,200 Microsoft Office 365 accounts, gets prison

A former IT consultant hacked a company in Carlsbad, California, and deleted almost all its Microsoft Office 365 accounts in an act of revenge that has brought him two years of prison time. [...]

https://www.bleepingcomputer.com/news/security/resentful-employee-deletes-1-200-microsoft-office-365-accounts-gets-prison/

Google removes privacy-focused ClearURLs Chrome extension

Google has mysteriously removed the popular browser extension ClearURLs from the Chrome Web Store.
ClearURLs is a privacy-preserving browser add-on which automatically removes tracking elements from URLs. This, according to its developer, can help protect your privacy when browsing the Internet. [...]

https://www.bleepingcomputer.com/news/security/google-removes-privacy-focused-clearurls-chrome-extension/

Slack now lets you DM people outside your company

​Slack has enabled a new 'Slack Connect' feature that allows users to send messages or create shared channels with people outside of their organization. [...]

https://www.bleepingcomputer.com/news/software/slack-now-lets-you-dm-people-outside-your-company/

Cisco addresses critical bug in Windows, macOS Jabber clients

Cisco has addressed a critical arbitrary program execution vulnerability impacting several Cisco Jabber client software for Windows, macOS, Android, and iOS. [...]

https://www.bleepingcomputer.com/news/security/cisco-addresses-critical-bug-in-windows-macos-jabber-clients/

Google Chrome will use HTTPS as default navigation protocol

Google Chrome will switch to choosing HTTPS as the default protocol for all URLs typed in the address bar, starting with the web browser's next stable version. [...]

https://www.bleepingcomputer.com/news/google/google-chrome-will-use-https-as-default-navigation-protocol/

Microsoft fixes Windows PSExec privilege elevation vulnerability

Microsoft has fixed a vulnerability in the PsExec utility that allows local users to gain elevated privileges on Windows devices. [...]

https://www.bleepingcomputer.com/news/security/microsoft-fixes-windows-psexec-privilege-elevation-vulnerability/

Facebook blocks Chinese state hackers targeting Uyghur activists

Facebook took down accounts used by a Chinese-sponsored hacking group to deploy surveillance malware on devices used by Uyghurs activists, journalists, and dissidents living outside China. [...]

https://www.bleepingcomputer.com/news/security/facebook-blocks-chinese-state-hackers-targeting-uyghur-activists/

Microsoft improves Windows Sandbox in latest Windows 10 build

The Windows Sandbox and the Microsoft Defender Application Guard (WDAG) now launch faster in Windows 10 after installing the Insider Preview Build 21343 for Windows Insiders in the Dev Channel. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-improves-windows-sandbox-in-latest-windows-10-build/

Engineer reports data leak to Apperta, hears from the police

A security engineer and ex-contributor to the open systems non-profit organization, Apperta Foundation, recently reported a data leak to them. In return, he gets contacted by their lawyers and eventually the police. [...]

https://www.bleepingcomputer.com/news/security/engineer-reports-data-leak-to-apperta-hears-from-the-police/

BackBlaze mistakenly shared backup metadata with Facebook

Backblaze has removed Facebook tracking code (also known as an advertising pixel) accidentally added to web UI pages only accessible to logged-in customers. [...]

https://www.bleepingcomputer.com/news/security/backblaze-mistakenly-shared-backup-metadata-with-facebook/

QNAP warns of ongoing brute-force attacks against NAS devices

QNAP warns customers of ongoing attacks targeting QNAP NAS (network-attached storage) devices and urges them to immediately take action to mitigate them. [...]

https://www.bleepingcomputer.com/news/security/qnap-warns-of-ongoing-brute-force-attacks-against-nas-devices/