Visa urges merchants to migrate e-commerce sites to Magento 2.x

Payments processor Visa is urging merchants to migrate their online stores to Magento 2.x before the Magento 1.x e-commerce platform reaches end-of-life (EoL) in June 2020 to avoid exposing their stores to Magecart attacks and to remain PCI compliant. [...]

https://www.bleepingcomputer.com/news/security/visa-urges-merchants-to-migrate-e-commerce-sites-to-magento-2x/

Leak shows Windows 10 2004 could come as 'May 2020 Update'

A PowerShell command has leaked that the name of the upcoming Windows 10 2004 feature update is going to be called the "May 2020 Update" and that the 20H2 version coming after will be codenamed "Manganese". [...]

https://www.bleepingcomputer.com/news/microsoft/leak-shows-windows-10-2004-could-come-as-may-2020-update/

Over 3.6M users installed iOS fleeceware from Apple’s App Store

Developers of fleeceware apps are now using the Apple App Store as a distribution platform having already successfully delivered their iOS apps onto over 3.5 million iPhone and iPad devices according to a report from Sophos. [...]

https://www.bleepingcomputer.com/news/security/over-36m-users-installed-ios-fleeceware-from-apple-s-app-store/

The Sandboxie Windows sandbox isolation tool is now open-source!

Cybersecurity firm Sophos announced today that it has open-sourced the Sandboxie Windows sandbox-based isolation utility 15 years after it was released. [...]

https://www.bleepingcomputer.com/news/software/the-sandboxie-windows-sandbox-isolation-tool-is-now-open-source/

US wants to ban China Telecom over national cybersecurity risks

Several U.S. Executive Branch agencies are asking the Federal Communications Commission (FCC) to block China Telecom Americas authorization to operate within the United States over significant cybersecurity risks. [...]

https://www.bleepingcomputer.com/news/security/us-wants-to-ban-china-telecom-over-national-cybersecurity-risks/

Large email extortion campaign underway, DON'T PANIC!

A large email extortion campaign is underway telling recipients that their computer was hacked and that a video was taken through the hacked computer's webcam. The attackers then demand $1,900 in bitcoins or the video will be sent to family and friends. [...]

https://www.bleepingcomputer.com/news/security/large-email-extortion-campaign-underway-dont-panic/

Dutch police arrests suspect behind DDoS attacks on government sites

A 19-year old man from Breda, Netherlands, was arrested today for allegedly carrying out distributed denial-of-service (DDoS) attacks that caused two Dutch government websites to shut down for several hours on March 19, 2020. [...]

https://www.bleepingcomputer.com/news/security/dutch-police-arrests-suspect-behind-ddos-attacks-on-government-sites/

San Francisco Intl Airport discloses data breach after hack

San Francisco International Airport (SFO) disclosed a data breach after two of its websites, SFOConnect.com and SFOConstruction.com, were hacked during March 2020. [...]

https://www.bleepingcomputer.com/news/security/san-francisco-intl-airport-discloses-data-breach-after-hack/

VMWare releases fix for critical vCenter Server vulnerability

VMware released a security update that fixes a critical vulnerability in the vCenter Server virtual infrastructure management platform that could allow attackers to gain access to sensitive information and potentially take control of affected virtual appliances or Windows systems. [...]

https://www.bleepingcomputer.com/news/security/vmware-releases-fix-for-critical-vcenter-server-vulnerability/

Windows 10X: Latest news and info on Microsoft's upcoming OS

In October 2019, Microsoft revealed a 'new expression' of Windows 10 called Windows 10X. Microsoft says this new version of Windows 10 operating system is optimized to work with dual-screen or multiple screen/posture devices, such as the Surface Neo, Lenovo ThinkPad X1 Fold, and Intel prototypes. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10x-latest-news-and-info-on-microsofts-upcoming-os/

YouTube borked when users enable Firefox anti-fingerprinting

Firefox users have recently started to notice that YouTube does not display videos properly when they enable the browser's anti-fingerprinting technology for better privacy. [...]

https://www.bleepingcomputer.com/news/google/youtube-borked-when-users-enable-firefox-anti-fingerprinting/

Windows Defender incorrectly flagged Winaero Tweaker as HackTool

Users are reporting that the popular third-party Windows tweaking app called 'Winaero Tweaker' has been flagged as 'potentially unwanted software' or 'Hacktool' in Windows Defender. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-defender-incorrectly-flagged-winaero-tweaker-as-hacktool/

The Week in Ransomware - April 3rd 2020 - No Sign of Letting Up

Over the past two week, we have seen an increase in warnings from law enforcement agencies stating that healthcare organizations need to be on high alert for attacks by ransomware operators and other attackers who are looking to capitalize on the Coronavirus pandemic. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-april-3rd-2020-no-sign-of-letting-up/

Windows 10: The new hidden features found in preview builds

With the latest Windows 10 Insider build, new hidden features have been found that add long-awaited media controls to the volume flyout and a new settings page that shows a 'What's New' section for the current Windows release. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-the-new-hidden-features-found-in-preview-builds/

Sodinokibi Ransomware to stop taking Bitcoin to hide money trail

The Sodinokibi Ransomware has started to accept the Monero cryptocurrency to make it harder for law enforcement to track ransom payments and plans to stop allowing bitcoin payments in the future. [...]

https://www.bleepingcomputer.com/news/security/sodinokibi-ransomware-to-stop-taking-bitcoin-to-hide-money-trail/

New Wiper Malware impersonates security researchers as prank

A malware distributor has decided to play a nasty prank by locking victim's computers before they can start Windows and then blaming the infection on two well-known and respected security researchers. [...]

https://www.bleepingcomputer.com/news/security/new-wiper-malware-impersonates-security-researchers-as-prank/

Credit card thieves target WooCommerce sites with new skimmer

Credit card thieves are targeting WordPress e-commerce sites using the WooCommerce plugin using a dedicated JavaScript-based card-skimmer malware instead of run-of-the-mill attempts to redirect payments to attacker-controlled accounts.  [...]

https://www.bleepingcomputer.com/news/security/credit-card-thieves-target-woocommerce-sites-with-new-skimmer/

Microsoft Outlook outage affecting Australians since Saturday

Microsoft's Outlook.com webmail service has been going through a three-day-long outage that has prevented Australian users from accessing or signing in over the weekend. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-outlook-outage-affecting-australians-since-saturday/

Over 500,000 Zoom accounts sold on hacker forums, the dark web

Over 500 hundred thousand Zoom accounts are being sold on the dark web and hacker forums for less than a penny each, and in some cases, given away for free. [...]

https://www.bleepingcomputer.com/news/security/over-500-000-zoom-accounts-sold-on-hacker-forums-the-dark-web/

Cloudflare drops Google's reCAPTCHA due to privacy concerns

Cloudflare announced that it has moved from Google's reCAPTCHA to hCaptcha, an independent alternative CAPTCHA provider focused on user privacy. [...]

https://www.bleepingcomputer.com/news/technology/cloudflare-drops-googles-recaptcha-due-to-privacy-concerns/