The Week in Ransomware – November 27th 2020 – Attacks continue
With the USA holidays, this has been a relatively slow week in new research being released. We did, though, see some organizations get attacked or report historical attacks. […] …
Bleeping Computer
Canon publicly confirms August ransomware attack, data theft
Canon has finally confirmed publicly that the cyberattack suffered in early August was caused by ransomware and that the hackers stole data from company servers. […] …
Sopra Steria expects €50 million loss after Ryuk ransomware attack
French IT services giant Sopra Steria said today in an official statement that the October Ryuk ransomware attack will lead to a loss of between €40 million and €50 million. […] …
Zoom lifts 40-minute time limit for Thanksgiving meetings
Zoom is lifting the 40-minute time limit on Thanksgiving Zoom meetings so family members and friends can virtually spend the holiday together. […] …
VMware discloses critical zero-day vulnerability in Workspace One
VMware has released a workaround to address a critical zero-day in multiple VMware Workspace One components that allows attackers to execute commands on the host Linux and Windows operating systems using escalated privileges. […] …
Hands on with Windows Terminal 1.5’s upcoming features
Microsoft released Windows Terminal Preview v1.5 this week, and it comes with some useful improvements, including full support for clickable hyperlinks, command palette improvements, emoji icon support, and more. […] …
Windows 10 Defrag TRIM bug still not fixed after six months
After the release of two Windows 10 feature updates and numerous cumulative updates, Microsoft has still not fixed a bug causing Windows Defrag to TRIM non-SSD drives. […] …
VMWare releases fix for critical ESXi, Workstation vulnerability
VMware has released security updates to fix critical and high severity vulnerabilities in VMware ESXi, Workstation, Fusion, and Cloud Foundation, allowing for code execution and privilege escalation. […] …
Microsoft rolls out protection for critical accounts in Office 365
Microsoft has launched Office 365 priority protection for accounts of high-profile employees such as executive-level managers who are most often targeted by threat actors. […] …
Chinese APT10 hackers use Zerologon exploits against Japanese orgs
A Chinese state-sponsored hacking group has been observed while attempting to exploit the Windows Zerologon vulnerability in attacks against Japanese companies and subsidiaries from multiple industry sectors in 17 regions around the globe. […] …
Office 365 phishing campaign detects sandboxes to evade detection
Microsoft is tracking an ongoing Office 365 phishing campaign that makes use of several methods to evade automated analysis in attacks against enterprise targets. […] …
Windows Kerberos authentication breaks due to security updates
Microsoft is investigating a new known issue causing enterprise domain controllers to experience Kerberos authentication problems after installing security updates released during this month’s Patch Tuesday, on November 10. […] …
Retail giant Cencosud hit by Egregor Ransomware attack, stores impacted
Chilean-based multinational retail company Cencosud has suffered a cyberattack by the Egregor ransomware operation that impacts services at stores. […] …
Hacker shares 3.2 million Pluto TV accounts for free on forum
A hacker is sharing what they state are 3.2 million Pluto TV user records that were stolen during a data breach. […] …
New Jupyter malware steals browser data, opens backdoor
Russian-speaking hackers have been using a new malware to steal information from their victims. Named Jupyter, the threat has kept a low profile and benefited from a fast development cycle. […] …
Rakuten sends cashback emails to customers in error
Japanese e-commerce giant Rakuten had sent email notifications yesterday to many of its customers congratulating them on newly earned cashback. Today, they took their words (and the cash) back. […] …