Microsoft patches bypass for recently fixed Outlook zero-click bug
Microsoft fixed a security vulnerability this week that could be used by remote attackers to bypass recent patches for a critical Outlook zero-day security flaw…
Category: Bleeping Computer
Stealthier version of Linux BPFDoor malware spotted in the wild
A new, stealthier variant of the Linux malware ‘BPFDoor’ has been discovered, featuring more robust encryption and reverse shell communications. BPFDoor is a stealthy backdoor…
Multinational tech firm ABB hit by Black Basta ransomware attack
Swiss multinational company ABB, a leading electrification and automation technology provider, has suffered a Black Basta ransomware attack, reportedly impacting business operations. Headquartered in Zurich,…
Brightly warns of SchoolDude data breach exposing credentials
U.S. tech company and Siemens subsidiary Brightly Software is notifying customers that their personal information and credentials were stolen by attackers who gained access to…
Babuk code used by 9 ransomware gangs to encrypt VMWare ESXi servers
An increasing number of ransomware operations are adopting the leaked Babuk ransomware source code to create Linux encryptors targeting VMware ESXi servers. SentinelLabs security researchers…
WordPress Elementor plugin bug let attackers hijack accounts on 1M sites
One of WordPress’s most popular Elementor plugins, “Essential Addons for Elementor,” was found to be vulnerable to an unauthenticated privilege escalation that could allow remote…
Kingston’s SSD firmware has Coldplay lyrics hidden within it
What has firmware got to do with pop rock, you ask? That’s the question that crossed a security researcher’s mind as he analyzed Kingston’s firmware and…
Former Ubiquiti dev who extorted the firm gets six years in prison
Nickolas Sharp, a former senior developer of Ubiquiti, was sentenced to six years in prison for stealing company data, attempting to extort his employer, and…
Twitter rolls out encrypted DMs, but only for paying accounts
Twitter has launched its ‘Encrypted Direct Messages’ feature allowing paid Twitter Blue subscribers to send end-to-end encrypted messages to other users on the platform. End-to-end…
RapperBot DDoS malware adds cryptojacking as new revenue stream
New samples of the RapperBot botnet malware have added cryptojacking capabilites to mine for cryptocurrency on compromised Intel x64 machines. The change occurred gradually, with…
Google brings dark web monitoring to all U.S. Gmail users
Google announced today that all Gmail users in the United States will soon be able to use the dark web report security feature to discover…
North Korean hackers breached major hospital in Seoul to steal data
The Korean National Police Agency (KNPA) warned that North Korean hackers had breached the network of one of the country’s largest hospitals, Seoul National University…