BleepingComputer.com: Cybersecurity News

"This Week in Ransomware-May 26th 2023-Cities Under Attack."

Views expressed in this cybersecurity, cybercrime update are those of the reporters and correspondents.  Accessed on 27 May 2023, 1350 UTC. Content provided by "BleepingComputer.com."

Source:  https://www.bleepingcomputer.com/ ("BleepingComputer.com").

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

The Week in Ransomware - May 26th 2023 - Cities Under Attack

  • Ransomware gangs continue to hammer local governments in attacks, taking down IT systems and disrupting cities' online services.

  • Microsoft Defender
     

Microsoft Defender Antivirus gets ‘performance mode’ for Dev Drives

  • Microsoft has introduced a new Microsoft Defender capability named "performance mode" for developers on Windows 11, tuned to reduce the impact of antivirus scans when analyzing files stored on Dev Drives.

  • ABB
     

US govt contractor ABB confirms ransomware attack, data theft

  • Swiss tech multinational and U.S. government contractor ABB has confirmed that some of its systems were impacted by a ransomware attack, previously described by the company as "an IT security incident."

  • Emby
     

Emby shuts down user media servers hacked in recent attack

  • Emby says it remotely shut down an undisclosed number of user-hosted media server instances that were recently hacked by exploiting a previously known vulnerability and an insecure admin account configuration.

  • Mozilla
     

Mozilla stops Firefox fullscreen VPN ads after user outrage

  • Firefox users have been complaining about very intrusive full-screen advertisements promoting Mozilla VPN displayed in the web browser when navigating an unrelated page.

  • Augusta Georgia
     

BlackByte ransomware claims City of Augusta cyberattack

  • The city of Augusta in Georgia, U.S., has confirmed that the most recent IT system outage was caused by unauthorized access to its network.

  • Windows 11
     

Windows 11 finally gets a 'never combine taskbar buttons' mode

  • Microsoft has released a new Windows 11 dev build that adds a long-awaited feature allowing users to ensure that all windows are shown as individual items in the taskbar.

  • Android malware
     

Predator: Looking under the hood of Intellexa’s Android spyware

  • Security researchers at Cisco Talos and the Citizen Lab have presented a new technical analysis of the commercial Android spyware 'Predator' and its loader 'Alien,' sharing its data-theft capabilities and other operational details.

  • Malware Phishing
     

Microsoft 365 phishing attacks use encrypted RPMSG messages

  • Attackers are now using encrypted RPMSG attachments sent via compromised Microsoft 365 accounts to steal Microsoft credentials in targeted phishing attacks designed to evade detection by email security gateways.

  • D-Link
     

D-Link fixes auth bypass and RCE flaws in D-View 8 software

  • D-Link has fixed two critical-severity vulnerabilities in its D-View 8 network management suite that could allow remote attackers to bypass authentication and execute arbitrary code.

  • Malware
     

New Russian-linked CosmicEnergy malware targets industrial systems

  • Mandiant security researchers have discovered a new OT known as CosmicEnergy that targets operational technology (OT), raising concerns about potential disruptions to electric power systems worldwide. 

  • Zyxel USG FLEX
     

Zyxel warns of critical vulnerabilities in firewall and VPN devices

  • Zyxel is warning customers of two critical-severity vulnerabilities in several of its firewall and VPN products that attackers could leverage without authentication.

  • ChatGPT
     

ChatGPT is down worldwide - OpenAI confirms issues

  • ChatGPT, the famous artificial intelligence chatbot that allows users to converse with various personalities and topics, has connectivity issues worldwide.

  • Data theft data breach hacker cyberattack
     

‘Operation Magalenha’ targets credentials of 30 Portuguese banks

  • A Brazilian hacking group has been targeting thirty Portuguese government and private financial institutions since 2021 in a malicious campaign called 'Operation Magalenha.'

VIEW MORE

Comments

Popular posts from this blog

BleepingComputer.com

The Cyberwire Daily Briefing

SecurityWeek Briefing