Skip to main content

BleepingComputer.com.

"Windows BitLocker bug triggers warnings on devices with TPMs.

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 15 January 2025, 1555 UTC. 

Content and Source:  https://www.bleepingcomputer.com/

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Latest Articles

Windows BitLocker bug triggers warnings on devices with TPMs

  • ​Microsoft is investigating a bug triggering security alerts on systems with a Trusted Platform Module (TPM) processor after enabling BitLocker.

  • Security Cybersecurity
     
    Deals

Stay on top of the latest career skills with lifetime access to InfoSec4TC

  • The InfoSec4TC Platinum Membership is a great deal. For $69.99 (regularly $280), you'll get lifetime access to over 90 cybersecurity courses, including training for GSEC, CISSP, ethical hacking, and a ton of other in-demand IT certifications.

    • BleepingComputer Deals
      •  
    • January 15, 2025
      •  
    • 07:09 AM
      •  
    • Comment Count 0
  • Windows
     
    Microsoft

January Windows updates may fail if Citrix SRA is installed

  • Microsoft is warning that the January 2025 Windows 11 and Windows 10 cumulative updates may fail if Citrix Session Recording Agent (SRA) version 2411 is installed on the device.

  • Cars
     
    Legal, Mobile

Allstate car insurer sued for tracking drivers without permission

  • Texas Attorney General Ken Paxton has filed a lawsuit against Allstate and its data subsidiary Arity for unlawfully collecting, using, and selling driving data from over 45 million Americans.

  • WordPress
     
    Security

WP3.XYZ malware attacks add rogue admins to 5,000+ WordPress sites

  • A new malware campaign has compromised more than 5,000 WordPress sites to create admin accounts, install a malicious plugin, and steal data.

  • Hackers cryptocurrency
     
    Security, CryptoCurrency

US govt says North Korea stole over $659 million in crypto last year

  • ​North Korean state-backed hacking groups have stolen over $659 million worth of cryptocurrency in multiple crypto-heists, according to a joint statement issued by the United States, South Korea, and Japan on Tuesday.

  • Windows 10
     
    Microsoft

Windows 10 KB5049981 update released with new BYOVD blocklist

  • Microsoft has released the KB5049981 cumulative update for Windows 10 22H2 and Windows 10 21H2, which contains an updated Kernel driver blocklist to prevent Bring Your Own Vulnerable Driver (BYOVD) attacks.

  • Microsoft Office
     
    Deals

Get a standalone license to Microsoft Office 2024 without a subscription

  • Now, you can get Microsoft Office Home for Mac or PC as a standalone license. Instead of paying monthly, you can pay $119.97 (reg. $149) once with no recurring costs.

    • BleepingComputer Deals
      •  
    • January 14, 2025
      •  
    • 02:06 PM
      •  
    • Comment Count 0
  • Patch Tuesday
     
    Microsoft, Security

Microsoft January 2025 Patch Tuesday fixes 8 zero-days, 159 flaws

  • Today is Microsoft's January 2025 Patch Tuesday, which includes security updates for 159 flaws, including eight zero-day vulnerabilities, with three actively exploited in attacks.

  • Windows 11
     
    Microsoft, Software

Windows 11 KB5050009 & KB5050021 cumulative updates released

  • Microsoft has released the Windows 11 KB5050009 and KB5050021 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues.

  • Google
     
    Security, Google

Google OAuth flaw lets attackers gain access to abandoned accounts

  • A weakness in Google's OAuth "Sign in with Google" feature could enable attackers that register domains of defunct startups to access sensitive data of former employee accounts linked to various software-as-a-service (SaaS) platforms.

  • FBI
     
    Security

FBI deletes Chinese PlugX malware from thousands of US computers

  • ​The U.S. Department of Justice announced today that the FBI has deleted Chinese PlugX malware from over 4,200 computers in networks across the United States.

  • Microsoft 365
     
    Security

Hackers use FastHTTP in new high-speed Microsoft 365 password attacks

  • Threat actors are utilizing the FastHTTP Go library to launch high-speed brute-force password attacks targeting Microsoft 365 accounts globally.

  • Fortinet
     
    Security

Fortinet warns of auth bypass zero-day exploited to hijack firewalls

  • ​Attackers are exploiting a new authentication bypass zero-day vulnerability in FortiOS and FortiProxy to hijack Fortinet firewalls and breach enterprise networks.

  • Windows Server
     
    Microsoft

Microsoft 365 apps crash on Windows Server after Office update

  • ​Microsoft says a known issue is causing Classic Outlook and Microsoft 365 applications to crash on Windows Server 2016 or Windows Server 2019 systems.

  • Pay once and never again for this FileJump 2TB cloud storage
     
    Deals

Pay once and never again for this FileJump 2TB cloud storage

  • FileJump gives you 2TB of cloud storage, but you only have to pay for it once, and it's even on sale. Instead of paying $467 for your 2TB lifetime subscription, now it's only $69.97.

    • BleepingComputer Deals
      •  
    • January 14, 2025
      •  
    • 07:11 AM
      •  
    • Comment Count 0
  • OneBlood
     
    Security, Healthcare

OneBlood confirms personal data stolen in July ransomware attack

  • Blood-donation not-for-profit OneBlood confirms that donors' personal information was stolen in a ransomware attack last summer.

  • CISA
     
    Security

CISA orders agencies to patch BeyondTrust bug exploited in attacks

  • ​CISA tagged a vulnerability in BeyondTrust's Privileged Remote Access (PRA) and Remote Support (RS) as actively exploited in attacks, ordering agencies to secure their systems within three weeks.

  • Path of Exile 2
     
    Security, Gaming

Stolen Path of Exile 2 admin account used to hack player accounts

  • Path of Exile 2 developers confirmed that a hacked admin account allowed a threat actor to change the password and access at least 66 accounts, finally explaining how PoE 2 accounts have been breached since November.

  • Apple
     
    Security, Apple, Microsoft

Microsoft: macOS bug lets hackers install malicious kernel drivers

  • Apple recently addressed a macOS vulnerability that allows attackers to bypass System Integrity Protection (SIP) and install malicious kernel drivers by loading third-party kernel extensions.

Labels:

Comments

Post a Comment

Please leave a comment about our recent post.

Popular posts from this blog

Cyber War News Today.

"International Defence Cooperation:  A key to regional stability." Views expressed in this cybersecurity, cyber espionage, and cyber crime update are those of the reporters and correspondents.  Accessed on 15 December 2024, 0134 UTC. Content and Source:   https://cyberwar.einnews.com/news/cyber-war-news?n=2&code=FA9GNesSTpp2rjO1&utm_source=NewsletterNews&utm_medium=email&utm_campaign=Cyber+War+News&utm_content=navig Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). Cyber War News Monitoring Get by    Email    •     RSS Published on  Dec 13, 2024 The Cyber Warfare Market Size Reach USD 127.1 Billion by 2032 Exhibiting CAGR at 13.3% WILMINGTON, DE, UNITED STATES, December 13, 2024 /⁨EINPresswire.com⁩/ -- According to the report, The Cyber Warfare Market Size Reach USD 127.1 Billion by 2032 Exhibiting CAGR at 1...
Post a Comment
Read more

The Cyberwire Daily Briefing

"Fortinet confirms breach of customer data." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 15 September 2024, 1339 UTC. Content and Source:   https://thecyberwire.com/newsletters/daily-briefing/13/176 Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). V13 | Issue 176 | 9.13.24 Daily Briefing for 09.13.24 Announcement Cloud Security in the Age of Generative AI. Artificial Intelligence is revolutionizing business, but it also introduces new risks. Join us on Wednesday, September 18th at 2pm EDT for a compelling live webinar on "Good vs. Evil: Cloud Security in the Age of Generative AI" with N2K CyberWire’s Dave Bittner and Sysdig’s Loris Degioanni.  Learn more and register now . Summary By the CyberWire staff At a glance. Fortinet confirms breach of customer data. Iran's Scarred Manticore deplo...
Post a Comment
Read more

SecurityWeek Briefing

"New RAMBO attack allows air-gapped data theft." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 10 September 2024, 0035 UTC. Content and Source:  https://www.securityweek.com Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net).   Monday, September 9 , 2024 Are you worried about unmanaged devices and apps? LATEST CYBERSECURITY HEADLINES New RAMBO Attack Allows Air-Gapped Data Theft Predator Spyware Resurfaces With Fresh Infrastructure Google Pushes Rust in Legacy Firmware to Tackle Memory Safety Flaws 300,000 Impacted by Data Breach at Car Rental Firm Avis One Million US Kaspersky Customers Transferred to Pango’s UltraAV Two Indicted in US for Running Dark Web Marketplaces Offering Stolen Information Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks CISA Breaks Silence on Controvers...
Post a Comment
Read more