DAILY NEWS: Abril (09/04 - 15/04) - 15 Semana de 2023

Dia a Dia da Segurança da Informação !!! Cyber Security and Information Security News --- Daily Updates !! Weekly Review

15/04

75% e-commerce phishing attacks exploit Apple and Amazon’s brand names

Android malware infiltrates 60 Google Play apps with 100M installs

Billions of Gmail and Outlook users issued ‘six step’ bank warning by FBI – avoid losing everything

Coles confirms its customers impacted by Latitude Financial data breach

Coles disappointed over Latitude credit card breach

Computer Security For Everyone

Cyber security pitfalls and how negligence can be expensive for MSMEs

Cybersecurity Firm Warns Of Uniswap Phishing Scam Spreading False Exploit Information

Domino Backdoor is Lead by FIN7 and Conti Actors

German defense maker Rheinmetall hit by a cyber attack

Global Data Breaches and the Need for Robust Cybersecurity

Google Releases Urgent Chrome Update to Fix Actively Exploited Zero-Day Vulnerability

Google warns users about six phrases that could empty your bank account in an instant

Hackers start abusing Action1 RMM in ransomware attacks

Identity theft, and what to do to avoid it

Impacted by cyber data breach: Coles statement

MetaMask’s 7000 Users Affected After Data Breach, Says ConsenSys

NCR suffers Aloha POS outage after BlackCat ransomware attack

Office 365 Protection: Protecting Your Business from Cyber Threats

Official Apple warning for all iPhone owners over ‘money’ theft – list of five alerts you must check today

Police have a list of hacker targets

Protecting yourself from scammers using ChatGPT

Silk Road hacker receives his court verdict

Staying safe in cyberspace

Supermarket giant's 'disappointment' after shoppers' credit card details were stolen in major data breach

Top 5 Email threats and how to Safeguard Your Inbox

US jeopardizes global cyber security: Foreign Ministry

We need stronger backup plans in case of cyber attacks, especially in health care

Websites for PMO's office, NCC among those crashed by hackers

Were you caught up in the latest data breach? Here's how to tell

What Are the Pros and Cons of Cloud-Based Security Solutions?

What Is a Crypto Phishing Scam and How Can You Spot One?

What Is Reverse Tabnabbing and How Can You Prevent It?

14/04

5 ways Indian medical administrations can boost hospital cyber-security

47% organizations experienced ransomware attack in the past year

7,000 MetaMask Users Targeted in Security Breach, ConsenSys Says

Accounting Firm, Harding, Shymanski & Company, Announces Data Breach Following Wave of Fraudulent Tax Returns

Alabama schools see increase in ransomware, phishing attacks

Amazon, Dyson, and Singtel — Top Phishing Scams This Week

Attackers Use QuickBooks to Launch ‘BEC 3.0’ Campaign

Australia weighs banning ransomware payments amid hike in attacks

Biden administration announces plan to protect patient privacy

Billions of Android and iPhone owners told to check texts, emails for ‘roleplayer’ – don’t risk your bank being emptied

Bitrue: hackers invadem exchange e roubam 22 milhões de dólares

Business email compromise, CEO fraud increasing and putting companies at risk

ChatGPT and Cybersecurity: What AI means for digital security

CISA Asks Manufacturers to Prioritize Cybersecurity in Product Design

Cyber attack knocks out service on NCC's website

Darktrace Denies Getting Hacked After Ransomware Group Names Company on Leak Site

For cybercriminal mischief, it’s dark web vs deep web

Google Chrome emergency update fixes first zero-day of 2023

Hacker group brings down Israeli postal, banking and telecoms websites

Hacker Robs Crypto Exchange Bitrue of $23M in Ethereum, SHIB, Other Assets

Hackers atacam plataforma e criam R$ 6 quadrilhões em criptomoeda

How to Protect Your Intellectual Property and Trade Secrets from Cyber Theft

How to stay safe online, file cyber crime complaint: Here is the complete guide

Hyundai Experiences Cybersecurity Issues: Breach and App Bugs

Independent Living Systems (ILS) Data Breach Affects Almost 21K Iowan Medicaid Recipients

India under cyber attack by Indonesian group 'Hacktivist'

Institutions need infra to fight cybercrime

Kodi Confirms Data Breach: 400K User Records and Private Messages Stolen

Microsoft warns accountants of new phishing campaign amid tax period

NatWest customers warned of ‘dodgy email’ scam that could empty your bank account - how to avoid

Online Alcohol Counseling Service Provider Reports 109K-record Tracking Tool Data Breach

Organizations face an uphill battle to keep their sensitive data secure

Over 100 Android users in Singapore fall prey to phishing scams since March

Personal data of GE Money, Coles and Myer credit card customers stolen in Latitude Financial data breach

Police issue warning to Lancaster and Morecambe residents after rise in scams

Rising ransomware attacks posing major cybersecurity threat to travel and tourism industry

Rochester schools end week without internet; questions linger about cyber attack

Rorschach ransomware, with a rare encryption speed, makes it even harder for companies to respond

Royal Dutch Football Association claimed as LockBit victim

RTM Locker Gang Targets Corporate Environments with Ransomware

Setor de saúde tem epidemia de hackers – e Brasil é um dos mais expostos

Sky warns millions of customers over email that steals your credit card – search inbox right now

Tasmania: 150,000 individuals and businesses affected by Clop ransomware group

The Threat Intelligence Index and the state of cybersecurity in APAC

Three Cybercrime Predictions In The Age Of ChatGPT

UK Education Sector Suffered Most from Ransomware in 2022

Vladimir Putin’s cyber warfare chief sent sex toys after his email is hacked

Western Digital Data Breach: Hackers Demand Huge Ransom In Exchange Of Sensitive Data

Whaling Attack (Whale Phishing)

What Are Passkeys? A Cybersecurity Researcher Explains

What Business Needs to Know About the New U.S. Cybersecurity Strategy

What Is Ransomware? How It Works and How To Prevent It

WhatsApp announces features to prevent account takeover

Zelle users targeted with social engineering tricks

13/04

A Recent 45% Surge in Ransomware Attacks Has Cybersecurity Community on High Alert

AI chatbots give tax scammers a boost

CorrectCare data breach affects personal data of 1.5M individuals

Crafty PDF link is part of another tax-season malware campaign

Crypto-Ransomware Payments: Australia Considers Ban On Latitude Financial Hack

Cyber company Darktrace gets caught up in LockBit gang's apparent blunder

Data Breaches and Cyber Attacks Quarterly Review: Q1 2023

DDoS alert traffic reaches record-breaking level of 436 petabits in one day

Dozens of Oakland ransomware victims never notified SSN were leaked on dark web, I-Team finds

Dutch Police mails RaidForums members to warn they’re being watched

Five arrested after 33,000 victims lose $98M to online investment fraud

Google Play threats on the dark web are big business

Hacker cunha 1 quatrilhão de yUSDT após explorar o antigo contrato da Yearn.finance

Hacker explora brecha em protocolos, cunha stablecoins e rouba mais de US$ 11 milhões

Hacker mints 1 quadrillion yUSDT after exploiting old Yearn.finance contract

Hackers: setor financeiro é o segundo mais atingido por ataque de ransomwares

How can we Secure the Internet of Things (IoT)?

How to create a K-12 cybersecurity strategy

Indonesian hacker group targets 12,000 Indian government websites, cybersecurity alert issued

Irrigation Systems in Israel Disrupted by Hacker Attacks on ICS

Kremlin-backed hackers blamed in spying campaign on EU and NATO diplomatic agencies

Lazarus Hacker Group Evolves Tactics, Tools, and Targets in DeathNote Campaign

Legion: Credential Harvesting & SMS Hijacking Malware Sold on Telegram

Legion: New hacktool steals credentials from misconfigured sites

Lehigh Valley Health Network (LVHN): Sensitive photos of almost 2,800 patients potentially stolen in data breach

Malicious ChatGPT & Google Bard Installers Distribute RedLine Stealer

Massive ILS leak included data of more than 20,000 Iowa Medicaid recipients

Microsoft patches vulnerability used in Nokoyawa ransomware attacks

MSI attackers leak over 500GB of stolen data

NatWest customers warned over new email scam that could drain your bank account

New penalties create ‘perfect storm’ for data breach secrecy

New Python-Based "Legion" Hacking Tool Emerges on Telegram

No indication of identity theft or fraud in Beacon Health data breach by employee

Over 20,000 Iowa Medicaid Members Affected By Data Breach

“Over-excited” firms risk ChatGPT data breaches

Pakistan-based Transparent Tribe Hackers Targeting Indian Educational Institutions

Payroll giant SD Worx hit by cyberattack

Personal data leaked after cyber attack at OUC

Push to ban ransomware payments admirable, but success lies in the details

Ransomware attack that forced a New York county back to pen and paper began in 2021, official says

Rapid7 Has Good News for UK Security Posture

Rebuilding Digital Trust

Reining in the Fraudsters: Policing Scam Websites

RTM Locker: Emerging Cybercrime Group Targeting Businesses with Ransomware

Russian hackers linked to widespread attacks targeting NATO and EU

Senate Committee Passes Securing Open Source Software Act

Stolen Card Volumes Plummet 94% Globally

Superyacht-Maker Hit by Easter Ransomware Attack

The Anatomy of an Insider Threat

The new weakest link in the cybersecurity chain

Three Canadian ports under cyber attack

WhatsApp boosts defense against account takeover via malware

WhatsApp Introduces New Device Verification Feature to Prevent Account Takeover Attacks

Why Shadow APIs are More Dangerous than You Think

12/04

3CX compromise: More details about the breach, new PWA app released

400,000 Users Hit by Data Breach at Media Player Maker Kodi

April Patch Tuesday fixes zero-day used to deliver ransomware

Bill for cyber attack against Town of St. Marys sits at $1.3 million

Central Bureau of Investigation (CBI) launches probe into cyber attack on Nagpur’s Solar Industries Limited

ChatGPT at Work: What’s at Stake for Employers?

CISA Publishes Advisory on Improving Network Monitoring and Hardening

CISA Updates Zero Trust Maturity Model With Public Feedback

Culbertson Memorial critical systems fully restored after cyber attack

Cybersecurity training – raising awareness of business threats

Dark web tem oferta de serviços para hackear apps da Play Store

Defending against backdoor attacks with zero trust

Defending Your Digital Fort | The Importance of Strong Authentication in Preventing Cyber Attacks

Digital credit provider fined Sh5m for personal data breach

Do you Check the Security of Your Macbook for Viruses and Malware?

Emails from Samaritan accounts could be phishing attack

Emotet Climbs March 2023's Most Wanted Malware List With OneNote Campaign

Euler Finance opens redemptions after hacker returns funds

ExtraHop Report Finds 83% of Organizations Paid up in Ransomware Attacks

German builder of yachts and military vessels hit by ransomware attack

German drug development company says cyberattack causing production delays

German Superyacht Maker Lürssen Hit by Ransomware Cyber Attack

GlobalData warns rising ransomware attacks posing major cybersecurity threat to travel and tourism industry

Hacker Group Selling Stolen Databases From Public Authorities

HashiCorp Vault vulnerability could lead to RCE, patch today! (CVE-2023-0620)

How Trustworthy Is the Software You Use to Protect Your Organization?

Hybrid work environments are stressing CISOs

Hyundai data breach exposes owner details in France and Italy

‘If your business hasn't already faced a cyber security attack, it will do soon'

Israel-based Spyware Firm QuaDream Targets High-Risk iPhones with Zero-Click Exploit

KFC, Pizza Hut parent discloses data breach

Kodi forum breach: User data, encrypted passwords grabbed

Kyocera Android app with 1M installs can be abused to drop malware

LastPass Breach Reveals Important Lessons

Latitude Financial refuses to bow to ransomware demands

Lazarus Assault Via 3CX Exposes Need to Rethink Security

Lazarus Group's DeathNote Campaign Reveals Shift in Targets

Microsoft Fixes Zero-Day Bug This Patch Tuesday

Microsoft shares guidance to detect BlackLotus UEFI bootkit attacks

More DDoS, More Leaks: Where Ransomware is Headed in 2023

More Than One-in-Three Canadian Organizations Experienced a Security Breach in the Past Year

NatWest phishing scam: how to spot a dodgy bank email

Network Assured Report Reveals ChatGPT Already Involved in Data Leaks, Phishing Scams & Malware Infections

New Zero-Click iOS Exploit Deploys Israeli Spyware

North Korean Hackers Uncovered as Mastermind in 3CX Supply Chain Attack

Personal data leaked in Open University hack, unleashing host of GDPR issues (Updated)

Probe begins into cyber attack on CIAL website

Researchers Uncover 7000 Malicious Open Source Packages

Rochester public school system temporarily shuts 42 schools following a cyber attack

Tasmanian Education Department hit by data breach

The need for robust supply chain defenses to protect sensitive data

The Practical Side Of ZTNA: How It Helps Harden Defenses

The Service Accounts Challenge: Can't See or Secure Them Until It's Too Late

Threat hunting programs can save organizations from costly security breaches

Uber, Internal Data Stolen in Another Cyber Attack

Urgent: Microsoft Issues Patches for 97 Flaws, Including Active Ransomware Exploit

US, India and China Most Targeted in DDoS Attacks, StormWall Q1 2023 Report

Volvo retailer leaks sensitive files

What Percentage of E-shop Phishing Scams Exploit Apple’s Name?

What do you do if a hacker takes over your ship?

Windows admins warned to patch critical MSMQ QueueJumper bug

11/04

A Zero-trust Approach is Essential for Achieving Effective AD Security

Apple rushes fixes for exploited zero-days in iPhones and Macs (CVE-2023-28205, CVE-2023-28206)

April Identified as Most Dangerous Month for Ransomware Attacks

Armorblox Report Surfaces Spike in BEC Attacks

Ataque hacker na Coreia do Sul e financiamento de IA nas notícias da manhã – Bom dia, cripto!

Australia Post customers warned over ‘hard to distinguish’ delivery scam email

Battle could be brewing over new FCC data breach reporting rules

Belgian municipality shuts multiple online services following a cyber attack

Building a cybersecurity foundation to protect construction firms from ransomware attacks

Central Bureau of Investigation (CBI) starts probe into cyber attack on Solar Industries

China Cybersecurity Industry Alliance (CCIA) report exposes malicious behavior and threat of US cyber hegemony

Consumers take data control into their own hands amid rising privacy concerns

Criminal businesses adopt corporate behavior as they grow

Cryptocurrency Stealer Malware Distributed via 13 NuGet Packages

Cybercriminals Turn to Android Loaders on Dark Web to Evade Google Play Security

Cybersecurity in Space: Exploring Extra-Terrestrial Vulnerabilities

Defending Your Data: Ransomware Vs. Wiper Malware

Documentos do Pentágono revelam que hackers pró-Rússia invadiram operadora de gasodutos do Canadá

Four critical steps to protecting hybrid workplace environments

Hacker Exploit South Korean Exchange GDAC, Drains Over $14 Million

Hacker invade site e redes sociais de prefeitura e anuncia a “morte” do prefeito

Hyderabad: Big data breach traced to three outsourced services

Jefferson County schools still offline after ransomware attack

KFC Owner Discloses Data Breach

KFC, Pizza Hut data stolen in January ransomware attack

Latitude confirms hackers’ ransom demand but says it won’t pay up

Latitude Financial Refuses to Pay Ransom

Menlo Security Illustrates Importance of Browser Security as 4 in 5 Ransomware Attacks Include Threats Beyond Data Encryption

Minnesota school district cyber attack prompts call for spring data cleaning

MSI confirms breach by new ransomware group

Never charge your smartphone in an airport or hotel due to hacker threat, FBI warns

New Workplace Developments Demand Attention as Data Breach Costs Rise

Newly Discovered "By-Design" Flaw in Microsoft Azure Could Expose Storage Accounts to Hackers

Nordic spa near Toronto suffers data breach and customers are angry

Over 40% of cybersecurity teams told to keep breaches confidential

Over 8,000 cyber-attacks thwarted in Iran last year

Pizza Hut, Taco Bell owner confirms data breach

Prefeito em MT é alvo de fake news após hacker invadir site da prefeitura e anunciar a sua ‘morte’

Ransomware Attack Could Cost Modesto, Calif., $1M

Replacing GDPR in the UK: Assessing AI and Research Provisions

Russia’s top hacker exposed by Ukrainian activists

SD Worx halts UK payroll, HR services after cyberattack

Senadora alega ataque hacker a sistema da Justiça Eleitoral sobre informações partidárias

Socially Engineered Into Stealing $500,000 From a Casino

Tasmanian government says cyber attack compromised over 16,000 personal data records

Tesla hit with class action suit, accused of privacy violations

Twitter Circle data breach: Think twice before tweeting

US Scrambles to Investigate Military Intel Leak

What you Missed in the White House National Cybersecurity Strategy

Why it’s time to move towards a passwordless future

10/04

5G connections set to rise past 5.9 billion by 2027

8 tips to stay safe online and spot fake websites: Your ultimate guide

A Myth or Reality? Debunking (Mis)Conceptions Surrounding Cloud Ransomware

A Strategic Approach to Cybersecurity Resilience

Advice for dealing with data breaches

Alcasec Hacker, aka “Robin Hood of Spanish Hackers,” Arrested

Another Day, Another Phishing Attack

Apple fixes recently disclosed zero-days on older iPhones and iPads

Are health care records still a target for computer hackers? Absolutely, feds say

Billions of Gmail and Outlook users warned over ‘octopus attack’ email lurking in inboxes and it aims to grab money

Blizzard sofre ataque hacker e vários jogos são afetados

Chinese Website Selling Stolen Accounts Suffers Data Breach

CISA orders govt agencies to update iPhones, Macs by May 1st

CISA Warns of 5 Actively Exploited Security Flaws: Urgent Action Required

Cyber attack on the UK's criminal records office compromises criminal conviction data

Cybercriminals use simple trick to obtain personal data

Data breach at Elmbrook School District exposes personal information about former and current employees

DOST council’s Facebook hacked

Energy sector routinely target of cyberattackers, experts say

Estonian National Charged in U.S. for Acquiring Electronics and Metasploit Pro for Russian Military

Evotec SE provides update on cyber attack

FBI warns of public 'juice jacking' charging stations that steal your data. How to stay protected

Hackers Flood NPM with Bogus Packages Causing a DoS Attack

HawaiiUSA Federal Credit Union Confirms Recent Data Breach Affected Over 20k Customers

How an AI tool could crack your passwords in seconds

How LockBit Changed Cybersecurity Forever

How to manage a cat-and-mouse game

Illinois Gastroenterology Group settles class-action lawsuit over the breach of 227,943 patients' data

Investigations continue into HSE cyber-attack

Israel Faces Fresh Wave of Cyberattacks Targeting Critical Infrastructure

Israel's cyber infrastructure vulnerabilities exposed in recent wave of attacks

IT/Security Pros Want to Engage with MSSPs, MDRs for Monitoring, Proactive Threat Hunting

KFC, Pizza Hut owner discloses data breach after ransomware attack

Korean Crypto Exchange Gdac Suffers $13M Hacker Attack

March 2023's Most Wanted Malware: New Emotet Campaign Bypasses Microsoft Blocks to Distribute Malicious OneNote Files

Medusa group claims ransomware attack on the Open University of Cyprus, demands a ransom

Microsoft and Fortra Partner to Thwart Cobalt Strike Ransomware Attacks

Minnesota school district cancels classes for 42 schools after alleged cyberattack

MSI confirms cyber attack

MSPs urged to refine security solutions in response to growing SMB needs

NuLife Med Settles Class Action Data Breach Lawsuit

Over 1 Million WordPress Sites Infected by Balada Injector Malware Campaign

Pentagon documents leak a risk to US national security, officials say

Pentagon Leaks Show Russian Hacktivists Claim to Have Targeted a Canadian Pipeline

Police clamp down on big phishing racket in Bharatpur

Protocolo de queima de LUNC sofre ataque hacker e perde R$ 10 milhões

Queensland University of Technology has 'no way to verify' if hacked data from thousands of staff and students was sold

Ransomware gang demands $500,000 from GMDC

RaaS: Wait for the BOOM!

Reports of Data Breach at PharMerica Corporation Leave Customers Worried About Their Personal Information

Rochester Public Schools (RPS) cancels school Monday after cyber attack

Scope of CommonSpirit data breach larger than initially disclosed

SD Worx shuts down UK payroll, HR services after cyberattack

Sushi DEX Recovers 100 Ether After Millions Lost on Weekend Exploit

Terra DeFi project Terraport suffers $2M hack days after launch

The double-edged sword of secure remote work: Balancing productivity and cybersecurity

The Human Factor In Cybersecurity: Understanding Social Engineering

The Importance of Cybersecurity in Today’s World

Top 10 Cybersecurity Trends for 2023: From Zero Trust to Cyber Insurance

Utah Amends Data Breach Notice Provisions, Establishes Cyber Center

Veritas Vulnerabilities Exploited in Ransomware Attacks Added to CISA ‘Must Patch’ List

What is address poisoning and what can crypto investors do to avoid such attacks

Worried About Cyber Security? Look for AI and ML Based Solutions

You might want to avoid using free public charging stations. Here's why

09/04

5 steps to ransomware protection and recovery

Amazon issues warning to customers

Beware of Juice Jacking, public phone charging stations

Cochin International Airport Ltd (CIAL) website hit by hacker attack

Corretora é roubada por hacker e faz alerta: “Revoguem imediatamente o acesso”

Cyber attack leaves irrigation systems in Upper Galilee dysfunctional

Experts Issue Alarm Against Telegram While Calling It The Number One Place For Purchasing Phishing Kits

FBI Seizes Notorious Hacker Marketplace, Genesis Market, For Selling Stolen Cord Cutting Logins & More

Hazards of a connected world – Should you forgo the Internet of Things?

How machine learning can help crack the IT security problem

Inside the international sting operation to catch North Korean crypto hackers

Notorious Medusa ransomware: Gang seeks $500,000 from GMDC

Neue Zürcher Zeitung (NZZ) has to shut down the newspaper production system after a cyber attack

One Of Syrian Defense Ministry's Telegram Accounts Hacked - Statement

Operação rastreia US$ 100 milhões em criptomoedas roubadas por hackers da Coreia do Norte; entenda

Rochester Public Schools to close Monday after possible cyber attack

Taiwan PC company MSI targeted in cyberattack

Thai banks cease SMS links to prevent scams and phishing

The impact of remote work on cybersecurity: Tips for staying safe

The worst cyber attacks in the world

These Popular Smart Garage Doors Are Vulnerable to Hackers

Threat analysis: how the rapid evolution of reporting can change security

VPN vs. RDP: Which One is Safer?

What Are Dos Attacks & How To Take Precautionary Measures

What Is Network Security?

DAILY NEWS: Abril (02/04 - 08/04) - 14 Semana de 2023