Friday, January 10, 2025

Bleeping Computer.com

"Microsoft to force install of new Outlook on Windows 10 PCs in February."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 10 January 2025, 1452 UTC.

Content and Source:   https://www.bleepingcomputer.com/

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Latest Articles

Microsoft to force install new Outlook on Windows 10 PCs in February

  • Microsoft will force install the new Outlook email client on Windows 10 systems starting with next month's security update.

  • ChatGPT
     
    Deals

This $30 course teaches you to use ChatGPT to automate your work

  • Rather than taking an intro course on AI and automation, you can learn it on your own for $30 (reg. $790) in the ChatGPT and Automation E-Degree. 

    • BleepingComputer Deals
      •  
    • January 10, 2025
      •  
    • 07:07 AM
      •  
    • Comment Count 0
  • Crowdstrike
     
    Security

Fake CrowdStrike job offer emails target devs with crypto miners

  • CrowdStrike is warning that a phishing campaign is impersonating the cybersecurity company in fake job offer emails to trick targets into infecting themselves with a Monero cryptocurrency miner (XMRig).

  • Medicine Pills
     
    Security, Healthcare

Largest US addiction treatment provider notifies patients of data breach

  • ​BayMark Health Services, North America's largest provider of substance use disorder (SUD) treatment and recovery services, is notifying an undisclosed number of patients that attackers stole their personal and health information in a September 2024 breach.

  • iScanner
     
    Deals

Turn your phone into a portable office with this iScanner deal

  • Whatever it is, iScanner has your back. This number-one scanning app turns your phone into a portable document wizard, and right now, you can grab a lifetime subscription for just $27.99 when you use the code FESTIVE30 at checkout.

    • BleepingComputer Deals
      •  
    • January 09, 2025
      •  
    • 02:07 PM
      •  
    • Comment Count 0
  • Hand
     
    Security

Banshee stealer evades detection using Apple XProtect encryption algo

  • A new version of the Banshee info-stealing malware for macOS has been evading detection over the past two months by adopting string encryption from Apple's XProtect.

  • OneDrive
     
    Microsoft

Microsoft fixes OneDrive bug causing macOS app freezes

  • ​Microsoft has fixed a known issue causing macOS applications to freeze when opening or saving files in OneDrive.

  • ProtonMail Proton Mail
     
    Technology

Proton Mail still down as Proton recovers from worldwide outage

  • Privacy firm Proton suffered a massive worldwide outage today, taking down most services, with Proton Mail and Calendar users still unable to connect to their accounts.

  • Hacker
     
    Security

MirrorFace hackers targeting Japanese govt, politicians since 2019

  • The National Police Agency (NPA) and the Cabinet Cyber Security Center in Japan have linked a cyber-espionage campaign targeting the country to the Chinese state-backed "MirrorFace" hacking group.

  • US Treasury
     
    Security

US Treasury hack linked to Silk Typhoon Chinese state hackers

  • ​Chinese state-backed hackers, tracked as Silk Typhoon, have been linked to the U.S. Office of Foreign Assets Control (OFAC) hack in early December.

  • Ivanti
     
    Security

Ivanti zero-day attacks infected devices with custom malware

  • Hackers exploiting the critical Ivanti Connect Secure zero-day vulnerability disclosed yesterday installed on compromised VPN appliances new malware called 'Dryhook' and 'Phasejam' that is not currently associated with any threat group.

  • Criminal IP: Bringing Real-Time Phishing Detection to Microsoft Outlook
     
    Security· Sponsored Content

Criminal IP: Bringing Real-Time Phishing Detection to Microsoft Outlook

  • AI SPERA announced today that it launched its Criminal IP Malicious Link Detector add-in on the Microsoft Marketplace. Learn more about how this tool provides real-time phishing email detection and URL blocking for Microsoft Outlook.

  • Outlook
     
    Microsoft

Microsoft fixes bug causing Outlook to freeze when copying text

  • Microsoft has fixed a known issue causing the classic Outlook email client to stop responding when copying text with the CTRL+C keyboard shortcut.

  • Deeper Connect Air
     
    Deals

Trade in your VPN subscription for a DPN you only pay for once

  • The Deeper Connect Air portable travel router and VPN is available for a one-time payment of $149.97 (reg. $219).

    • BleepingComputer Deals
      •  
    • January 09, 2025
      •  
    • 07:11 AM
      •  
    • Comment Count 0
  • Fancy Product Designer
     
    Security

Unpatched critical flaws impact Fancy Product Designer WordPress plugin

  • Premium WordPress plugin Fancy Product Designer from Radykal is vulnerable to two critical severity flaws that remain unfixed in the current latest version.

  • Ivanti
     
    Security

Ivanti warns of new Connect Secure flaw used in zero-day attacks

  • Ivanti is warning that a new Connect Secure remote code execution vulnerability tracked as CVE-2025-0282 was exploited in zero-day attacks to install malware on appliances.

  • Hacker Ukraine
     
    Security

Russian ISP confirms Ukrainian hackers "destroyed" its network

  • Russian internet service provider Nodex confirmed on Tuesday that its network was "destroyed" in a cyberattack claimed by Ukrainian hacktivists part of the Ukrainian Cyber Alliance

  • SonicWall
     
    Security

SonicWall urges admins to patch exploitable SSLVPN bug immediately

  • SonicWall is emailing customers urging them to upgrade their firewall's SonicOS firmware to patch an authentication bypass vulnerability in SSL VPN and SSH management that is "susceptible to actual exploitation."

  • Hacker
     
    Security

Hackers exploit KerioControl firewall flaw to steal admin CSRF tokens

  • Hackers are trying to exploit CVE-2024-52875, a critical CRLF injection vulnerability that leads to 1-click remote code execution (RCE) attacks in GFI KerioControl firewall product.

  • Backdoor Webshell
     
    Security, Government

Over 4,000 backdoors hijacked by registering expired domains

  • Over 4,000 abandoned but still active web backdoors were hijacked and their communication infrastructure sinkholed after researchers registered expired domains used for commanding them.

at
Labels:

No comments:

Post a Comment

Please leave a comment about our recent post.

Subscribe to: Post Comments (Atom)

ZDNet | Security.

"It's official:  All your Office apps are getting AI and a price increase." Views expressed in this cybersecurity, cyber crime...

  • The Cyberwire Daily Briefing
    "Fortinet confirms breach of customer data." Views expressed in this cybersecurity, cyber crime update are those of the reporters ...
  • Cyber War News Today.
    "International Defence Cooperation:  A key to regional stability." Views expressed in this cybersecurity, cyber espionage, and cyb...
  • SecurityWeek Briefing
    "New RAMBO attack allows air-gapped data theft." Views expressed in this cybersecurity, cyber crime update are those of the report...