US issues guidance on North Korean hackers, offers $5M reward

The U.S. government has issued guidance on North Korean hacking activity in a joint advisory published by the U.S. Departments of State, Treasury, and Homeland Security, and the FBI. [...]

https://www.bleepingcomputer.com/news/security/us-issues-guidance-on-north-korean-hackers-offers-5m-reward/

Nemty Ransomware shuts down public RaaS operation, goes private

The Nemty Ransomware is shutting down its public Ransomware-as-a-Service (RaaS) operation and switching to an exclusive private operation where affiliates are hand-selected for their expertise. [...]

https://www.bleepingcomputer.com/news/security/nemty-ransomware-shuts-down-public-raas-operation-goes-private/

Windows Defender broken by recent updates, no fix yet

When performing a full antivirus scan using Windows Defender, a recent definition update or Windows update is causing the program to crash in the middle of a scan. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-defender-broken-by-recent-updates-no-fix-yet/

Zoom to let you report Zoom-bombing attackers crashing meetings

Zoom's efforts to improve the video conferencing platform's privacy and security will continue next week with the introduction of a user report feature aimed at helping prevent future zoom-bombing attacks. [...]

https://www.bleepingcomputer.com/news/security/zoom-to-let-you-report-zoom-bombing-attackers-crashing-meetings/

Gmail blocked 18M COVID-19-themed phishing emails in a week

Google says that the malware scanners built within the Gmail free email service blocked around 18 million phishing and malware emails using COVID-19 lures within the last week. [...]

https://www.bleepingcomputer.com/news/security/gmail-blocked-18m-covid-19-themed-phishing-emails-in-a-week/

Hackers steal WiFi passwords using upgraded Agent Tesla malware

Some new variants of the Agent Tesla info-stealer malware now come with a dedicated module for stealing WiFi passwords from infected devices, credentials that might be used in future attacks to spread to and compromise other systems on the same wireless network. [...]

https://www.bleepingcomputer.com/news/security/hackers-steal-wifi-passwords-using-upgraded-agent-tesla-malware/

Fake Valorant beta key generators are stealing gamers' passwords

With Riot Game's new eagerly anticipated tactical FPS game Valorant reaching closed beta, gamers around the world have been scrambling to get an invite so that they can start playing the game before its released. [...]

https://www.bleepingcomputer.com/news/security/fake-valorant-beta-key-generators-are-stealing-gamers-passwords/

Windows 10 2004 almost here, final build released to Insiders!

Microsoft has officially released the final build of Windows 10 2004 to Insiders in the Release preview ring and plans on releasing it to everyone in May as the "May 2020 Update". [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-2004-almost-here-final-build-released-to-insiders/

GitHub accounts stolen in ongoing phishing attacks

GitHub users are currently being targeted by a phishing campaign specifically designed to collect and steal their credentials via landing pages mimicking GitHub's login page.  [...]

https://www.bleepingcomputer.com/news/security/github-accounts-stolen-in-ongoing-phishing-attacks/

Microsoft helped stop a botnet controlled via an LED light console

Microsoft says that its Digital Crimes Unit (DCU) discovered and helped take down a botnet of 400,000 compromised devices controlled with the help of an LED light control console. [...]

https://www.bleepingcomputer.com/news/security/microsoft-helped-stop-a-botnet-controlled-via-an-led-light-console/

Leading accounting firm MNP hit with cyberattack

A leading accounting firm in Canada forced a company-wide shutdown of their systems after getting hit with a cyberattack last weekend, BleepingComputer has learned. [...]

https://www.bleepingcomputer.com/news/security/leading-accounting-firm-mnp-hit-with-cyberattack/

Microsoft: Trickbot in hundreds of unique COVID-19 lures per week

TrickBot is, at the moment, the malware showing up in the highest number of unique COVID-19 related malicious emails and attachments delivered to potential victims' inboxes based on Microsoft's Office 365 Advanced Threat Protection (ATP) data. [...]

https://www.bleepingcomputer.com/news/security/microsoft-trickbot-in-hundreds-of-unique-covid-19-lures-per-week/

The Week in Ransomware - April 17th 2020 - Changing Tactics

There was not a lot of new ransomware variants released this week, but some pretty interesting news about operations changing their tactics to remain more profitable and to evade law enforcement. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-april-17th-2020-changing-tactics/

US govt: Hacker used stolen AD credentials to ransom hospitals

Hackers have deployed ransomware on the systems of U.S. hospitals and government entities using Active Directory credentials stolen months after exploiting a known remote code execution (RCE) vulnerability in their Pulse Secure VPN servers. [...]

https://www.bleepingcomputer.com/news/security/us-govt-hacker-used-stolen-ad-credentials-to-ransom-hospitals/

Windows 10 making it easier to manage default file associations

Microsoft is making it easier to change your default file associations by adding a new search feature that lets you quickly find the extension you wish to modify. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-making-it-easier-to-manage-default-file-associations/

IT services giant Cognizant suffers Maze Ransomware cyber attack

Information technologies services giant Cognizant suffered a cyber attack Friday night allegedly by the operators of the Maze Ransomware, BleepingComputer has learned. [...]

https://www.bleepingcomputer.com/news/security/it-services-giant-cognizant-suffers-maze-ransomware-cyber-attack/

Coronavirus Dark Web Scams: From infected blood to ventilators

The dark web has always been a cesspool of black markets and conspiracy theories, but now with the Coronavirus outbreak, scammers have a new and more desperate audience to target their scams. [...]

https://www.bleepingcomputer.com/news/security/coronavirus-dark-web-scams-from-infected-blood-to-ventilators/

Windows 10: Manage Reserved Storage from the command line

In a couple of weeks, Windows May 2020 Update will begin rolling out to consumers and enterprises and it will arrive with the ability to manage Reserved Storage from the command line. [...]

https://www.bleepingcomputer.com/news/microsoft/windows-10-manage-reserved-storage-from-the-command-line/

FBI: Extortion scammers more active due to stay-at-home orders

The U.S. Federal Bureau of Investigation (FBI) warned today of an increasing number of online extortion scam reports because a lot more people are being targeted due to the "stay-at-home" orders issued during the COVID-19 pandemic. [...]

https://www.bleepingcomputer.com/news/security/fbi-extortion-scammers-more-active-due-to-stay-at-home-orders/

267 million Facebook profiles sold for $600 on the dark web

Threat actors are selling over 267 million Facebook profiles for £500 ($623) on dark web sites and hacker forums. While none of these records include passwords, they do contain information that could allow attackers to perform spear phishing or SMS attacks to steal credentials. [...]

https://www.bleepingcomputer.com/news/security/267-million-facebook-profiles-sold-for-600-on-the-dark-web/