BleepingComputer.com

"Home Depot confirms third-party data breach exposed employee info."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 08 April 2024, 1353 UTC.

Content and Source:  https://www.bleepingcomputer.com/BleepingComputer.com.

Please scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

LATEST ARTICLES

Get ready for CompTIA exams with an extra 20% off this super bundle

  • Getting certified demonstrates your skills and helps guide your career choices. This 15-course CompTIA exam prep bundle can help you highlight your skills for $63.99, $521 off the $585 MSRP with code ENJOY20 at checkout now through 11:59pm PST on April 16th.

    • BLEEPINGCOMPUTER DEALS
      •  
    • APRIL 08, 2024
      •  
    • 07:12 AM
      •  
    • Comment Count 0
  • Notepad++
     
    SECURITY

Notepad++ wants your help in "parasite website" shutdown

  • The Notepad++ project is seeking the public's help in taking down a copycat website that closely impersonates Notepad++ but is not affiliated with the project. There is some concern that it could pose security threats—for example, if it starts pushing malicious releases or spam someday either deliberately or as a result of a hijack.

  • Windows 11
     
    MICROSOFT, SOFTWARE

The new features coming in Windows 11 24H2, expected this fall

  • Windows 11 24H2 is set to arrive on existing devices this fall with several new features, mostly Copilot-related improvements.

  • Home Depot
     
    SECURITY

Home Depot confirms third-party data breach exposed employee info

  • Home Depot has confirmed that it suffered a data breach after one of its SaaS vendors mistakenly exposed a small sample of limited employee data, which could potentially be used in targeted phishing attacks.

  • Windows
     
    MICROSOFT

New Windows driver blocks software from changing default web browser

  • Microsoft is now using a Windows driver to prevent users from changing the configured Windows 10 and Windows 11 default browser through software or by manually modifying the Registry.

  • Microsoft Office
     
    DEALS

Get Microsoft Office Pro 2021 with 20% off this instant download

  • Microsoft Office is a crucial tool for any professional. This direct download of the 2021 version of Office for Windows upgrades your laptop for $55.99, $163 off the $219 MSRP with code ENJOY20 at checkout.

    • BLEEPINGCOMPUTER DEALS
      •  
    • APRIL 07, 2024
      •  
    • 08:21 AM
      •  
    • Comment Count 0
  • Hospital
     
    SECURITY, HEALTHCARE

US Health Dept warns hospitals of hackers targeting IT help desks

  • The U.S. Department of Health and Human Services (HHS) warns that hackers are now using social engineering tactics to target IT help desks across the Healthcare and Public Health (HPH) sector.

  • D-Link
     
    SECURITY

Over 92,000 exposed D-Link NAS devices have a backdoor account

  • A threat researcher has disclosed a new arbitrary command injection and hardcoded backdoor flaw in multiple end-of-life D-Link Network Attached Storage (NAS) device models.

  • Cybersecurity Lock World
     
    DEALS

Gain security skills with an extra 20% off this ethical hacking bundle

  • White-hat hacking keeps criminals from breaching systems and knowing it can advance your career. These 18 ethical hacking courses get you started for $36.79, $1061 off the $1098 MSRP with code SECURE20 at checkout, now through 11:59pm PST on April 7th.

    • BLEEPINGCOMPUTER DEALS
      •  
    • APRIL 06, 2024
      •  
    • 08:12 AM
      •  
    • Comment Count 0
  • Windows
     
    MICROSOFT

Recent Windows updates break Microsoft Connected Cache delivery

  • Microsoft says Windows 10 updates released since the start of the year are breaking Microsoft Connected Cache (MCC) node discovery on enterprise networks.

  • VMware lock encrypted
     
    SECURITY

The Week in Ransomware - April 5th 2024 - Virtual Machines under Attack

  • Ransomware attacks targeting VMware ESXi and other virtual machine platforms are wreaking havoc among the enterprise, causing widespread disruption and loss of services.

  • Ivanti
     
    SECURITY

New Ivanti RCE flaw may impact 16,000 exposed VPN gateways

  • Approximately 16,500 Ivanti Connect Secure and Poly Secure gateways exposed on the internet are likely vulnerable to a remote code execution (RCE) flaw the vendor addressed earlier this week.

  • Windows
     
    MICROSOFT

Microsoft fixes Windows Sysprep issue behind 0x80073cf2 errors

Fake Facebook MidJourney AI page promoted malware to 1.2 million people

  • Hackers are using Facebook advertisements and hijacked pages to promote fake Artificial Intelligence services, such as MidJourney, OpenAI's SORA and ChatGPT-5, and DALL-E, to infect unsuspecting users with password-stealing malware.

  • Data theft data breach hacker cyberattack
     
    SECURITY

Acuity confirms hackers stole non-sensitive govt data from GitHub repos

  • Acuity, a federal contractor that works with U.S. government agencies, has confirmed that hackers breached its GitHub repositories and stole documents containing old and non-sensitive data.

  • Panera
     
    SECURITY

Panera Bread week-long IT outage caused by ransomware attack

  • Panera Bread's recent week-long outage was caused by a ransomware attack, according to people familiar with the matter and emails seen by BleepingComputer.

  • Hackers airplane
     
    DEALS

Get ready for the CISSP exam with an extra 20% off this course bundle

  • The CISSP certification is a boost to any cybersecurity worker's resume. This set of eight CISSP courses helps you prepare for it for $31.99, $382 off the $424 MSRP with code SECURE20 at checkout now through 11:59pm PST on April 7th.

    • BLEEPINGCOMPUTER DEALS
      •  
    • APRIL 05, 2024
      •  
    • 07:16 AM
      •  
    • Comment Count 0
  • Malware
     
    SECURITY

New Latrodectus malware replaces IcedID in network breaches

  • A relatively new malware called Latrodectus is believed to be an evolution of the IcedID loader, seen in malicious email campaigns since November 2023.

  • Malware Phishing
     
    SECURITY

Visa warns of new JSOutProx malware variant targeting financial orgs

  • Visa is warning about a spike in detections for a new version of the JsOutProx malware targeting financial institutions and their customers.

  • Outlook
     
    SECURITY, MICROSOFT

Microsoft fixes Outlook security alerts bug caused by December updates

  • Microsoft has fixed an issue that triggers erroneous Outlook security alerts when opening .ICS calendar files after installing the December 2023 Outlook Desktop security updates

VIEW MORE

Comments

Post a Comment

Please leave a comment about our recent post.

Popular posts from this blog

The Cyberwire Daily Briefing

Image
"Fortinet confirms breach of customer data." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 15 September 2024, 1339 UTC. Content and Source:   https://thecyberwire.com/newsletters/daily-briefing/13/176 Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). V13 | Issue 176 | 9.13.24 Daily Briefing for 09.13.24 Announcement Cloud Security in the Age of Generative AI. Artificial Intelligence is revolutionizing business, but it also introduces new risks. Join us on Wednesday, September 18th at 2pm EDT for a compelling live webinar on "Good vs. Evil: Cloud Security in the Age of Generative AI" with N2K CyberWire’s Dave Bittner and Sysdig’s Loris Degioanni.  Learn more and register now . Summary By the CyberWire staff At a glance. Fortinet confirms breach of customer data. Iran's Scarred Manticore deploys ne
Read more

BleepingComputer.com

Image
"Progress LoadMaster vulnerable to 10/10 severity RCE flaw." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 08 September 2024, 1458 UTC. Content and Source:   https://www.bleepingcomputer.com/ Please check link or scroll down to read your selections. Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). Latest Articles   Security Progress LoadMaster vulnerable to 10/10 severity RCE flaw Progress Software has issued an emergency fix for a maximum (10/10) severity vulnerability impacting its LoadMaster and LoadMaster Multi-Tenant (MT) Hypervisor products that allows attackers to remotely execute commands on the device. Bill Toulas   September 08, 2024   10:11 AM     0   Deals Get started learning about cybersecurity with this course bundle deal Take a real step towards a job in information security with this intro to cybersecurity. Get the 2024 Cybersecurity Essentials Bundl
Read more

SecurityWeek Briefing

Image
"New RAMBO attack allows air-gapped data theft." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 10 September 2024, 0035 UTC. Content and Source:  https://www.securityweek.com Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net).   Monday, September 9 , 2024 Are you worried about unmanaged devices and apps? LATEST CYBERSECURITY HEADLINES New RAMBO Attack Allows Air-Gapped Data Theft Predator Spyware Resurfaces With Fresh Infrastructure Google Pushes Rust in Legacy Firmware to Tackle Memory Safety Flaws 300,000 Impacted by Data Breach at Car Rental Firm Avis One Million US Kaspersky Customers Transferred to Pango’s UltraAV Two Indicted in US for Running Dark Web Marketplaces Offering Stolen Information Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks CISA Breaks Silence on Controversial ‘Airp
Read more