Microsoft Adds DNS-Over-HTTPS Support for Windows 10 Insiders
Microsoft is letting Windows Insiders test-drive DNS-over-HTTPS protocol in a pre-release build of Windows 10.
Utah Says No to Apple/Google COVID-19 Tracing; Debuts Startup App
“Healthy Together” app uses a raft of location data, including GPS, cell tower triangulation and Bluetooth, to pinpoint users and ID coronavirus hotspots.
BEC Gang Exploits G Suite, Long Domain Names in Cyberattacks
BEC gangs like “Exaggerated Lion” are using tricky tactics – like exploiting G Suite – to scam companies out of millions.
Login with Facebook Bug Earns $20K Bounty
The cross-site scripting vulnerability could have allowed trivial account takeover.
Cyberthreats on lockdown
Every year, our anti-malware research team releases a series of reports on various cyberthreats: financial malware, web attacks, exploits, etc. As we monitor the increase, or decrease, in the number of certain threats, we do not usually associate these changes with concurrent world events – unless these events have a direct relation to the cyberthreats,…
COMpfun authors spoof visa application with HTTP status-based Trojan
You may remember that in autumn 2019 we published a story about how a COMpfun successor known as Reductor infected files on the fly to compromise TLS traffic. If you’re wondering whether the actor behind the malware is still developing new features, the answer is yes. Later in November 2019 our Attribution Engine revealed a…
Texas Courts Won’t Pay Up in Ransomware Attack
Texas appellate courts and judicial agencies’ websites and computer servers were shut down after a ransomware attack.
Leaked NHS Docs Reveal Roadmap, Concerns Around Contact-Tracing App
Future features include plenty of self-reporting options, and officials’ fears the data could be misused.
Ramsay Malware Targets Air-Gapped Networks
The cyber-espionage toolkit is under active development.
Healthcare Giant Magellan Struck with Ransomware, Data Breach
Logins, personal information and tax info were all exfiltrated ahead of the ransomware attack, thanks to a phishing email.