Security News > 2021 > May

Microsoft has resolved a known issue preventing managed devices from receiving the May 2021 Patch Tuesday Windows security updates. "When checking for updates within Windows Server Update Services or Microsoft Endpoint Configuration Manager and managed devices that connect to these servers," this month's security updates "Might not be available or offered," as Microsoft explained on the Windows Health Dashboard.

Fintech startup Argyle, a financial-services platform aimed at gig workers, is working to replace credit scores assigned by bureaus like Equifax. Argyle is marketed as a way for the growing numbers of gig workers to consolidate income data across several employers so they can more easily apply for credit.

Microsoft warns of an ongoing spear-phishing campaign targeting aerospace and travel organizations with multiple remote access trojans deployed using a new and stealthy malware loader. "In the past few months, Microsoft has been tracking a dynamic campaign targeting the aerospace and travel sectors with spear-phishing emails that distribute an actively developed loader, which then delivers RevengeRAT or AsyncRAT," Microsoft said.

Trust Wallet and MetaMask wallet users are being targeted in ongoing and aggressive Twitter phishing attacks to steal cryptocurrency funds. MetaMask and Trust Wallet are mobile apps that let you create wallets to store, buy, send, and receive cryptocurrency and NFTs. When users launch MetaMask or Trust Wallet apps for the first time, the app prompts them to create a new wallet.

Almost as shocking is how many organisations feel they have no option but to simply pay up if they want to get back to work. The FBI estimates that the amount ponied up to ransomware attackers increased ten fold between 2018 and 2020.

Some bugs date back to 1997, meaning that computers, smartphones or other smart devices as old as 24 years may be vulnerable to attackers in Wi-Fi range. The video below demonstrates three ways attackers can exploit the latest vulnerabilities: By intercepting victims' authentication credentials; abusing insecure internet-of-things devices by remotely flipping a smart power socket on and off; and by serving as a foothold to launch advanced attacks, particularly by hijacking an outdated Windows 7 machine inside a local network.

UK's National Cyber Security Centre highlights the success of its Active Cyber Defence program. The UK's National Cyber Security Center Active Cyber Defense program is an ambitious project designed to improve the security posture of an entire nation.

Microsoft has launched a new open-source project that aims to add to Windows the benefits of eBPF, a technology first implemented in Linux that allows attaching programs in both kernel and user applications. Microsoft's effort builds on the work of the eBPF community by adding a compatibility layer that turns existing eBPF open-source projects into submodules that can work on top of Windows 10 and Windows Server 2016 and later.

The ransomware attack against Colonial Pipeline represents a relatively new and destructive type of threat against critical infrastructure. The attack against Colonial Pipeline is hardly the first one against critical infrastructure.

In 2020, Apple removed or rejected hundreds of thousands of applications from the App Store for engaging in various forms of fraudulent behavior, including spam, mischief, and privacy violations. An additional 95,000 apps were removed for violating the App Store policies, mainly for performing bait-and-switch maneuvers, where the app functionality is fundamentally changed - usually to commit nefarious actions - after approval in the App Store.