Security News > 2020 > October

Facebook has announced a series of updates for its bug bounty program, including bonus rewards for engaged researchers, as well as a faster bug triage process. The social media platform announced that it streamlined the triage of security vulnerabilities reported through its bug bounty program, to increase efficiency and lower response timeframe.

The Windows Update client has just been added to the list of living-off-the-land binaries attackers can use to execute malicious code on Windows systems. The WSUS / Windows Update client is a utility located at %windir%system32 that provides users partial control over some of the Windows Update Agent's functionality from the command-line.

The Windows Update client has just been added to the list of living-off-the-land binaries attackers can use to execute malicious code on Windows systems. The WSUS / Windows Update client is a utility located at %windir%system32 that provides users partial control over some of the Windows Update Agent's functionality from the command-line.

This infographic details ransomware attack trends by industry, continent, and more. Overall, the Lumu flashcard essentially functions as an all-in-one infographic compiling 2020 ransomware trends from an amalgam of sources across the cybersecurity industry.

Ireland's efforts to keep residents informed about coronavirus has fallen foul of the same basic SMS vulnerability that one of their British neighbours experienced back in March. Lulzsec-bod-turned-security-consultant Jake Davis reckoned the Irish government is using an SMS sender name that is vulnerable to spoofing - a process that is simple and straightforward, not that we're going to explain how it's done.

The Qbot botnet uses a new template for the distribution of their malware that uses a fake Windows Defender Antivirus theme to trick you into enabling Excel macros. Qbot, otherwise known as QakBot or QuakBot, is Windows malware that steals bank credentials, Windows domain credentials, and provides remote access to threat actors who install ransomware.

The Qbot botnet uses a new template for the distribution of their malware that uses a fake Windows Defender Antivirus theme to trick you into enabling Excel macros. Qbot, otherwise known as QakBot or QuakBot, is Windows malware that steals bank credentials, Windows domain credentials, and provides remote access to threat actors who install ransomware.

Cloudflare on Monday announced the launch of a new zero trust platform that can help organizations address the networing and security challenges associated with an increasingly remote workforce. According to the company, the Cloudflare One platform provides a set of tools that allows users to safely and quickly connect to work applications, it enables remote workers to use the same app without the need to expose it to the public internet, and it makes personal devices more secure for business use.

Computer hackers who obtained information about a Virginia public school district's students and employees have posted stolen data online, school officials said Friday in an email to parents and staff. The Fairfax County Public Schools didn't specify the nature or volume of the data that was stolen in the ransomware attack last month.

Microsoft on Monday revealed that it worked together with industry partners to shut down the infrastructure used by TrickBot operators and block efforts to revive the botnet. The Washington Post reported last week that the U.S. Cyber Command too attempted to hack TrickBot's C&C servers, in an attempt to take the botnet down to prevent attacks seeking to disrupt the U.S. presidential elections.