Microsoft Releases Huge OneNote Update for Windows 10

Microsoft has released a huge update for the Windows 10 OneNote app that introduces a slew of new features for general public and Windows Insiders. With this new update, Microsoft is adding the live tile improvements such as a title to create a new note, new pasting options, built-in translator  and more. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-huge-onenote-update-for-windows-10/

Microsoft Says It Blocked Attempts at Hacking Midterm Campaigns

Speaking at the Aspen Security Forum today, Microsoft said it already blocked the first attempts of a Russian threat actor at hacking into the campaigns of three congressional candidates participating in the 2018 midterm elections. [...]

https://www.bleepingcomputer.com/news/government/microsoft-says-it-blocked-attempts-at-hacking-midterm-campaigns/

Google User Content CDN Used for Malware Hosting

Hackers are hiding malicious code inside the metadata fields of images hosted on Google's official CDN (content delivery network) —googleusercontent.com. [...]

https://www.bleepingcomputer.com/news/security/google-user-content-cdn-used-for-malware-hosting/

Droppers Is How Android Malware Keeps Sneaking Into the Play Store

For the past year, Android malware authors have been increasingly relying on a solid trick for bypassing Google's security scans and sneaking malicious apps into the official Play Store. [...]

https://www.bleepingcomputer.com/news/security/droppers-is-how-android-malware-keeps-sneaking-into-the-play-store/

Hackers Stole a Third of Singapore's Healthcare Data, Including Prime Minister's

Singapore's Ministry of Health (MOH) revealed today that a hacker had breached its IT systems and stolen personal and health-related data on roughly 1.5 million citizens. [...]

https://www.bleepingcomputer.com/news/security/hackers-stole-a-third-of-singapores-healthcare-data-including-prime-ministers/

Microsoft To-Do for Android and iOS Updated With New Features

The Microsoft To-Do app was recently updated on Windows 10 with the star feature and today a new update is rolling out to Android and iOS versions with similar changes. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-to-do-for-android-and-ios-updated-with-new-features/

Half a Billion IoT Devices Vulnerable to DNS Rebinding Attacks

Armis, the cyber-security firm that discovered the BlueBorne vulnerabilities in the Bluetooth protocol, warns that nearly half a billion of today's "smart" devices are vulnerable to a decade-old attack known as DNS rebinding. [...]

https://www.bleepingcomputer.com/news/security/half-a-billion-iot-devices-vulnerable-to-dns-rebinding-attacks/

Microsoft Trying to Fix the Windows 10 App Gap Ahead of Andromeda

In order to achieve a successful launch of Andromeda, Microsoft first needs to fix the "app gap" issue affecting Windows 10. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-trying-to-fix-the-windows-10-app-gap-ahead-of-andromeda/

Researchers Discover Calisto, a Precursor to Dangerous Proton macOS Malware

Security researchers have discovered a precursor of the notorious Proton macOS malware. This supposed precursor appears to have been developed back in 2016, a year before Proton, and uploaded on VirusTotal, where it remained undetected for nearly two years until May 2018, when Kaspersky researchers stumbled upon it. [...]

https://www.bleepingcomputer.com/news/security/researchers-discover-calisto-a-precursor-to-dangerous-proton-macos-malware/

The Week in Ransomware - July 20th 2018 - Developer's Vent, Ransomware Attacks, and More

While it has been pretty slow for new ransomware this week, there was a quite a bit of ransomware related news such as the LabCorp attack being a ransomware infection, Magniber branching out, and a ransomware dev venting on Twitter. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-july-20th-2018-developers-vent-ransomware-attacks-and-more/

Microsoft, Google, Facebook, Twitter Announce "Data Transfer Project"

Facebook, Google, Microsoft, and Twitter have announced on Friday, July 20, the Data Transfer Project (DTP), an initiative to create an open-source, service-to-service data portability platform so that users of their sites and others can easily migrate data from one platform to another. [...]

https://www.bleepingcomputer.com/news/technology/microsoft-google-facebook-twitter-announce-data-transfer-project/

Microsoft Edge's XSS Filter Appears to Be Broken

A security feature that's included with the Microsoft Edge browser appears to have stopped working, according to Gareth Heyes, a security researcher with cyber-security firm PortSwigger. [...]

https://www.bleepingcomputer.com/news/security/microsoft-edges-xss-filter-appears-to-be-broken/

Unknown Dev Brings LibreOffice to Windows 10 via the Microsoft Store

The free and open-source Microsoft Office challenger called LibreOffice is now available in the Microsoft Store for Windows 10 PCs and Tablets. What is concerning, though, is that the app's publisher does not appear to be LibreOffice's actual developer, but rather a 3rd party that also prompts you to purchase it for $2.99. [...]

https://www.bleepingcomputer.com/news/microsoft/unknown-dev-brings-libreoffice-to-windows-10-via-the-microsoft-store/

Source Code for Exobot Android Banking Trojan Leaked Online

The source code of a top-of-the-line Android banking trojan has been leaked online and has since rapidly spread in the malware community, worrying researchers that a new wave of malware campaigns may be in the works. [...]

https://www.bleepingcomputer.com/news/security/source-code-for-exobot-android-banking-trojan-leaked-online/

After Chrome & Edge, Firefox Also Gets Option to Mute Sites With Autoplay Sound

Mozilla has added an experimental feature to the Firefox Nightly edition browser (63.0a1) that lets users control if a site is allowed to autoplay sound when it loads. [...]

https://www.bleepingcomputer.com/news/software/after-chrome-and-edge-firefox-also-gets-option-to-mute-sites-with-autoplay-sound/

Academics Announce New Protections Against Spectre and Rowhammer Attacks

Academics from multiple universities have announced fixes for two severe security flaws known as Spectre and Rowhammer. [...]

https://www.bleepingcomputer.com/news/security/academics-announce-new-protections-against-spectre-and-rowhammer-attacks/

That IE Zero-Day From May Needed a Second Patch in July

The July Patch Tuesday that was delivered two weeks ago included a second patch for an Internet Explorer zero-day discovered and initially fixed by Microsoft in May. [...]

https://www.bleepingcomputer.com/news/security/that-ie-zero-day-from-may-needed-a-second-patch-in-july/

Researchers Detail New CPU Side-Channel Attack Named SpectreRSB

Academics from the University of California, Riverside (UCR) have published details last week about a new Spectre-class attack that they call SpectreRSB. [...]

https://www.bleepingcomputer.com/news/security/researchers-detail-new-cpu-side-channel-attack-named-spectrersb/

Dark Mode Rolling Out Now To Outlook.com Users

Earlier this month, we reported that a Dark Mode was coming to Outlook.com. Well, it is finally here and currently being slowly rolled out to Outlook.com users right now. [...]

https://www.bleepingcomputer.com/news/security/dark-mode-rolling-out-now-to-outlookcom-users/

Microsoft Getting Ready to Launch Windows 10 Redstone 6 Preview Builds

With Windows 10 Redstone 5 nearly feature-complete and close to entering the stabilization process, Microsoft is now preparing to begin work on the very next Windows 10 release internally codenamed Redstone 6/19H1. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-getting-ready-to-launch-windows-10-redstone-6-preview-builds/