BleepingComputer.com

"New Mad Liberator gang uses fake Windows update screen to hide data theft."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents. Accessed on 17 August 2024, 1545 UTC.

Content and Source:   https://www.bleepingcomputer.com/

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

New Mad Liberator gang uses fake Windows update screen to hide data theft

  • A new data extortion group tracked as Mad Liberator is targeting AnyDesk users and runs a fake Microsoft Windows update screen to distract while exfiltrating data from the target device.

  • Microsoft Azure
     

Azure domains and Google abused to spread disinformation and malware

  • A clever disinformation campaign engages several Microsoft Azure and OVH cloud subdomains as well as Google search to promote malware and spam sites.

  • Microsoft Project
     

Turn complex projects into solutions with this Microsoft Project deal

  • If you're a professional who needs a robust toolset to help keep your projects on track, on budget, and on task, try Microsoft Project Professional 2021. Get Microsoft Project 2021 Pro for PC for $19.97

    • BleepingComputer Deals
    •  
    • August 17, 2024
    •  
    • 08:12 AM
    •  
    • Comment Count 0
  • Outlook
     

Microsoft shares workaround for Outlook crashing after opening

  • ​​​​Microsoft has shared a workaround for a known issue affecting Microsoft 365 customers and causing classic Outlook to crash after opening or when starting up in Safe mode.

  • Microsoft passwordless
     

Microsoft: Enable MFA or lose access to admin portals in October

  • Microsoft warned Entra global admins on Thursday to enable multi-factor authentication (MFA) for their tenants until October 15 to ensure users don't lose access to admin portals.

  • Data Leak
     

National Public Data confirms breach exposing Social Security numbers

  • Background check service National Public Data confirms that hackers breached its systems after threat actors leaked a stolen database with millions of social security numbers and other sensitive personal information.

  • SolarWinds
     

CISA warns critical SolarWinds RCE bug is exploited in attacks

  • CISA warned on Thursday that attackers are exploiting a recently patched critical vulnerability in SolarWinds' Web Help Desk solution for customer support.

  • Are you blocking
     
    Security· Sponsored Content

Are you blocking "keyboard walk" passwords in your Active Directory?

  • A common yet overlooked type of weak password are keyboard walk patterns. Learn more from Specops Software on finding and blocking keyboard walk passwords in your organization.

  • Microsoft Edge
     

Microsoft Edge PDF reader is getting more Copilot AI features

  • Microsoft is improving Copilot integration in the Edge browser with AI-powered smart keywords. This will allow the AI to generate important keywords from the PDF and then help you analyze each topic. 

  • Windows 11
     

Windows 11 will finally give you greater control over HDR features

  • Microsoft has released Windows 11 Build 27686 with some hidden HDR-related changes.

  • CompTIA
     

Aspiring IT pros can learn real defense skills in this $40 bundle

  • Prepare for your CompTIA cybersecurity certification exams. Get the CompTIA Secure Infrastructure Expert CSIE Certification Training Bundle on sale for $39.99.

    • BleepingComputer Deals
    •  
    • August 16, 2024
    •  
    • 07:16 AM
    •  
    • Comment Count 0
  • Windows 11
     

Microsoft removes FAT32 partition size limit in Windows 11

  • Microsoft removed today an arbitrary 32GB size limit for FAT32 partitions in the latest Windows 11 Canary build, now allowing for a maximum size of 2TB.

  • Norton
     

Norton 360 brings you antivirus, VPN, and data monitoring for $18

  • Whether you're working from home, shopping, or just browsing, you can elevate your cybersecurity with one subscription that adds a full suite of cybersecurity tools. Get a 15-month Subscription to Norton 360 Standard for one device for $17.99 (reg. $29).

    • BleepingComputer Deals
    •  
    • August 15, 2024
    •  
    • 02:06 PM
    •  
    • Comment Count 0
  • Hacker card
     

Ransomware gang deploys new malware to kill security software

  • RansomHub ransomware operators have been spotted deploying new malware to disable Endpoint Detection and Response (EDR) security software in Bring Your Own Vulnerable Driver (BYOVD) attacks

  • Windows Bitlocker
     

Microsoft disables BitLocker security fix, advises manual mitigation

  • Microsoft has disabled a fix for a BitLocker security feature bypass vulnerability due to firmware incompatibility issues that were causing patched Windows devices to go into BitLocker recovery mode.

  • Microsoft 365 (Office)
     

Microsoft shares temp fix for Outlook, Word crashes when typing

  • ​Microsoft has shared a temporary fix for a known issue that causes Microsoft 365 apps like Outlook, Word, and OneNote to unexpectedly crash while typing or spell-checking a text.

  • Elevate your video with this open-box 4K Dell conferencing monitor
     

Elevate your video with this open-box 4K Dell conferencing monitor

  • For those who take their video conferencing seriously, this monitor is a game-changer, providing all the tools needed for a flawless remote working experience. Check out this new, open-box Dell UltraSharp 32" 4K Video Conferencing Monitor on sale for $699.99.

    • BleepingComputer Deals
    •  
    • August 15, 2024
    •  
    • 07:19 AM
    •  
    • Comment Count 0
  • Hacker prison
     

Russian who sold 300,000 stolen credentials gets 40 months in prison

  • ​Georgy Kavzharadze, a 27-year-old Russian national, has been sentenced to 40 months in prison for selling login credentials for over 300,000 accounts on Slilpp, the largest online marketplace of stolen logins, until its seizure in June 2021.

  • Windows
     

Zero-click Windows TCP/IP RCE impacts all systems with IPv6 enabled, patch now

  • Microsoft warned customers this Tuesday to patch a critical TCP/IP remote code execution (RCE) vulnerability with an increased likelihood of exploitation that impacts all Windows systems with IPv6 enabled.

  • GitHub
     

GitHub Actions artifacts found leaking auth tokens in popular projects

  • Multiple high-profile open-source projects, including those from Google, Microsoft, AWS, and Red Hat, were found to leak GitHub authentication tokens through GitHub Actions artifacts in CI/CD workflows.

View More

Comments

Popular posts from this blog

SecurityWeek Briefing.

SecurityWeek Briefing.

Cyber War Newswire