Cyber Bits · · 2 min read

Cyber Bits: June 10, 2024

In this week's Cyber Bits: Microsoft revises the controversial Recall feature, the FBI distributes 7,000 decryption keys to LockBit ransomware victims, a critical PHP flaw impacts Windows Servers, and Brave Browser experiences its biggest growth month ever.

Cyber Bits: June 10, 2024

In this week's Cyber Bits: Microsoft revises the controversial Recall feature, the FBI distributes 7,000 decryption keys to LockBit ransomware victims, a critical PHP flaw impacts Windows Servers, and Brave Browser experiences its biggest growth month ever.

Microsoft rethinks Recall amid backlash

Link: The Hacker News

Microsoft has revamped its controversial AI-powered Recall feature after facing privacy concerns. The feature, initially capturing screenshots every five seconds, has been modified to be opt-in, with enhanced security measures such as requiring Windows Hello biometric verification for access. Recall data is now encrypted and stored locally. These changes come amid backlash from security researchers, having discovered numerous privacy and security concerns with the feature.

FBI has distributed 7,000 decryption keys

Link: The Hacker News Arstechnica

The FBI has distributed 7,000 decryption keys obtained from a seizure of servers used by the LockBit ransomware group, encouraging victims to come forward. This move aims to aid businesses and organizations affected by the ransomware, providing a means to decrypt their files without paying ransoms. The FBI's action is part of broader efforts to combat ransomware attacks and disrupt cybercriminal operations.

Critical PHP Flaw found on Windows Servers

Link: Arstechnica

A critical vulnerability in PHP allows attackers to execute malicious code on Windows servers. The flaw, found in the handling of path translations, can be exploited to bypass security restrictions and run arbitrary code. This poses a significant risk to web servers using PHP on Windows, potentially leading to full system compromise. Administrators are urged to apply patches promptly to mitigate the threat.

Brave Browser sees growth in LATAM

Link: Bleeping Computer

In May 2024, Brave browser experienced its largest growth month ever, reaching 78.95 million monthly active users, a 7.3% increase from April. Daily active users also rose by 4.3%, hitting 28.64 million. This growth was particularly strong in Latin America. Brave Search, the default search engine, saw queries per month reach 843.02 million, marking a 2.97% increase. The surge in user numbers is partly attributed to compliance with EU's Digital Markets Act, making it easier for users to choose their default browser.

Read next

Cyber Bits: November 25
Cyber Bits ·

Cyber Bits: November 25

Welcome to this week's edition of Cyber Bits, where we cover the latest in malware campaigns, advanced persistent threats, data breaches, vulnerabilities in enterprise systems from Fortinet and Palo Alto, and the economic impact of cyberattacks. Here's what you need to know this week:

Cyber Bits: October 21
Cyber Bits ·

Cyber Bits: October 21

In this week's Cyber Bits, Internet Archive faces another breach, Microsoft sets up Azure tenant honeypots, ransomware attacks are using ESET's name, Microsoft may have lost some security logs, and North Korea is targeting companies looking for temporary IT workers.

Cyber Bits: October 14
Cyber Bits ·

Cyber Bits: October 14

In this weeks Cyber Bits, Microsoft deprecates VPN protocols, OpenAI confirms what everyone already knew about bad guys using ChatGPT for malware, SOC teams lament alert fatigue, qualified personnel gaps in cloud and cyber, and how to build cyber resilience for SMB's.