08 Jan Microsoft ends Windows 7 extended security updates on TuesdayWindows 7 Professional and Enterprise editions will no longer receive extended security updates for critical and important vulnerabilities starting Tuesday, January 10, 2023. […]
08 Jan Hackers push fake Pokemon NFT game to take over Windows devicesThreat actors are using a well-crafted Pokemon NFT card game website to distribute the NetSupport remote access tool and take control over victims’ devices. […]
07 Jan Malicious PyPi packages create CloudFlare Tunnels to bypass firewallsSix malicious packages on PyPI, the Python Package Index, were found installing information-stealing and RAT (remote access trojan) malware while using Cloudflare Tunnel to bypass firewall restrictions for remote access. […]
06 Jan The Week in Ransomware – January 6th 2023 – Targeting HealthcareThis week saw a lot of ransomware news, ranging from new extortion tactics, to a ransomware gang giving away a free decryptor after attacking a children’s hospital. […]
06 Jan Chick-fil-A investigates reports of hacked customer accountsAmerican fast-food restaurant chain Chick-fil-A is investigating what it described as “suspicious activity” linked to some of its customers’ accounts. […]
06 Jan Air France and KLM notify customers of account hacksAir France and KLM have informed Flying Blue customers that some of their personal information was exposed after their accounts were breached. […]
06 Jan VSCode Marketplace can be abused to host malicious extensionsThreat analysts at AquaSec have experimented with the security of VSCode Marketplace and found that it’s surprisingly easy to upload malicious extensions from accounts that appear verified on the platform. […]
06 Jan FCC wants telecom carriers to report data breaches fasterThe U.S. Federal Communications Commission wants to strengthen federal law enforcement and modernize breach notification requirements for telecommunications companies so that they notify customers of security breaches faster. […]
06 Jan Amazon S3 will now encrypt all new data with AES-256 by defaultAmazon Simple Storage Service (S3) will now automatically encrypt all new objects added on buckets on the server side, using AES-256 by default. […]
06 Jan Microsoft shares temporary fix for ODBC database connection issuesMicrosoft has released a temporary fix for a known issue impacting Windows apps using ODBC database connections after installing the November 2022 Patch Tuesday updates. […]