Security News > 2020 > October

Google has stepped up its effort against websites that have a history of sending abusive notification content, by blocking notification permission requests in Chrome 86. This is the latest step Google has taken in this direction, after the introduction of the quiet notification permission UI in Chrome 80 and the automatic enrollment in the quiet notification UI for websites that display abusive notification permission requests starting with Chrome 84.

Microsoft has resolved a known issue that was blocking customers from upgrading some devices running Windows 10 1903 and 1909 to newer OS versions. The issue was first acknowledged one month after the release of the KB4577062 Windows 10 optional update for versions 1903 and 1909 on September 16.

According to recent reports from ClearSky and Symantec, MuddyWater recently added to its arsenal a downloader called PowGoop, which earlier this year was used in attacks employing the Thanos ransomware against an organization in the Middle East. "While we cannot confirm the connection, we believe the actors deploying the Thanos ransomware at the Middle Eastern state-run organization also used a downloader that we call PowGoop. The actors would use the PowGoop downloader to reach out to a remote server to download and execute additional PowerShell scripts," Palo Alto Networks noted in a September 4 report.

The United States says Russian state-sponsored hacking group Energetic Bear has successfully compromised state, local, territorial, and tribal government networks and stole data from at least two servers. The attacks, conducted since at least September 2020, "Targeted dozens of SLTT government and aviation networks, attempted intrusions at several SLTT organizations, successfully compromised network infrastructure, and as of October 1, 2020, exfiltrated data from at least two victim servers," the alert reads.

Mozilla has slowed the rollout of Firefox 82 just two days after its release due to printing bugs and crashes in the new version. Mozilla Firefox 82 was released on October 20th, with only a few improvements in performance and its Picture-in-Picture feature.

Mozilla has slowed the rollout of Firefox 82 just two days after its release due to printing bugs and crashes in the new version. Mozilla Firefox 82 was released on October 20th, with only a few improvements in performance and its Picture-in-Picture feature.

The European Union on Thursday imposed sanctions on two Russian officials and part of Russia's GRU military intelligence agency over a cyberattack against the German parliament in 2015. EU headquarters said in a statement that travel bans and asset freezes have been imposed on the two men: Igor Kostyukov, head of the Main Directorate of the General Staff of the Russian Armed Forces, and Dmitry Badin, a military intelligence officer.

In 1965, Gordon Moore published a short informal paper, Cramming more components onto integrated circuits. Based on not much more but these few data points and his knowledge of silicon chip development - he was head of R&D at Fairchild Semiconductors, the company that was to seed Silicon Valley - he said that for the next decade, component counts by area could double every year.

Donald Trump's Twitter password was easily guessed, and he still isn't using multi-factor authentication, claims a Dutch hacker who on Thursday bragged he broke into the President's account last week. Twitter was having none of it, though: the password guessing nor the link posting.

In this article, I will focus on email impersonation attacks, outline why they are dangerous, and provide some tips to help individuals and organizations reduce their risk exposure to impersonation attacks. We can all follow some security hygiene best practices to reduce the risk of email impersonation attacks.