DAILY NEWS: Abril (14/04 - 20/04) - 16 Semana de 2024Cyber Security, Privacy and Information Security News --- Daily Updates !! Weekly Resume...20/04A French hospital was forced to reschedule procedures after cyberattackCarpetright is latest British business to be hit by cyber attack as hackers target company HQ to affect hundreds of customer ordersCritical Forminator plugin flaw impacts over 300k WordPress sitesCritical Update: CrushFTP Zero-Day Flaw Exploited in Targeted AttacksCyber attack surge is “Tip of Iceberg”, expert warnsGitHub comments abused to push malware via Microsoft repo URLsGoogle Ads Unwittingly Promotes Phishing Crypto Site, Leading to Significant User Losses Hackers stole seven million people’s DNA. What they’ll do with it is bafflingHong Kong private hospital given 4 weeks to submit report over US$10 million ransomware attackInternational investigation disrupts phishing-as-a-service platform LabHost – EUROPOLMITRE Hit in Massive Supply Chain Attack: State-Backed Hackers Exploit Zero-DaysNew Mexico institutions pay out thousands to recover from ransomwareOne Click Catastrophe: City Services Paralyzed by Major Cyber attackPalo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under AttackRenewal of surveillance law clears Congress minutes after deadlineSt. Helena warns of potential data breach after Solano County library cyberattackThreat Actor Allegedly Offers WhatsApp 0-Day Exploit for Android and iOS with RCE CapabilitiesTransparentTribe: The Elusive Threat Targeting India’s Defense SectorWarrantless spying powers extended to 2026 with Biden’s signature19/0451% of enterprises experienced a breach despite large security stacks66% of IT leaders doubt the government can defend against cyberwarfare22,500 Palo Alto firewalls "possibly vulnerable" to ongoing attacksAkira Ransomware Attacks Over 250 Organizations and Collects $42 MillionAkira Ransomware Gang Extorts $42 Million; Now Targets Linux ServersAkira Ransomware Group Rakes in $42m, 250 Organizations ImpactedAkira Ransomware rampage: $42 million looted from 250+ organizationsAlarming Decline in Cybersecurity Job Postings in the USAlert! Windows LPE Zero-day Exploit Advertised on Hacker ForumsAnonymous Collective Launches "# OpImmigration" Against Japanese Government for Discriminatory Immigration PoliciesAtlantic fisheries commission says cyber security incident disrupted email and phone communicationsAttacks with CryptoChameleon phishing kit target LastPass usersAustralians ‘exposed’ in smoke alarm service provider data breach: reportBlackTech Targets Tech, Research, and Gov Sectors New 'Deuterbear' ToolCheap ransomware poses a massive threat to small businessesChina’s Hidden Threat: Hackers in U.S. Systems Since 2011, FBI WarnsCity of Hope data breach leads to multiple class action lawsuitsCyber attack takes Frontier Communications systems offline, affecting millions of broadband customersCybersecurity agencies unite against Akira ransomware threatErnest Health faces lawsuit for failing to protect patients' data during January cyber attackEuropol teams up with state police to disrupt major phishing networkEye care provider Cherry Health says data breach impacted close to 185,000 patientsFBI chief says China is preparing to attack US critical infrastructureFBI, Europol Say Akira Ransomware Has Drained $42M from 250 Firms FBI says Chinese hackers preparing to attack US infrastructureFrance's Cannes Hospital in midst of major cyberattackFraud Alert: Beware of New Cheap Junk Gun RansomwareFrontier Communications Shuts Down Systems Following CyberattackFrontier Communications Suffers Cyber Breach by Unknown Cybercrime GroupGoogle Ads Used to Promote Phishing Scams in Crypto WebsitesHackers Posing as LastPass Employee to Steal Master Password & Hijack AccountsHackers Target Middle East Governments with Evasive "CR4T" BackdoorHelloKitty ransomware rebrands, releases CD Projekt and Cisco dataHow Attackers Can Own a Business Without Touching the EndpointHow to Navigate the Risks of Generative AIHow to Protect Water Systems Against Cyber AttackIntelBroker Allegedly Screaped Companies House Data, Exposing Data Related to CompaniesInternational police team cracks down on phishing service 'LabHost' and arrests 37 peopleIs the UK about to ban ransomware payments?IT and Cybersecurity Jobs in the Age of Emerging AI TechnologiesLabHost Phishing Platform is Latest Target of International Law Agencies LastPass users targeted by vishing attackersLatest Security Breach hits Arbitrum; Hedgey Finance Loses $1.9 Million in Hacker AttackLe Slip Français discloses data breach, customer information compromisedMan steals $110M in cryptocurrency schemeMassive Data Breach as Pandemonium Rocks Exposes Hundreds of Bank AccountsMillennials are key targets for phishingMITRE says state hackers breached its network via Ivanti zero-daysNew Zealand caught up in worldwide phishing stingOctopharma Plasma’s US operations shut down due to suspected ransomware attackPeople’s CyberArmy Groups Allegedly Launch DDoS Attacks on Spanish WebsitesPF suspende agendamento online de passaportes após ataque hackerPhishing Trends: Quishing and AI On the RiseProtobom: Open-source software supply chain toolRansomware feared in Octapharma Plasma’s US-wide shutdownRansomware in Q1 2024: Frequency, size of payments trending downwards, SMBs beware!Report finds a near 20% increase in ransomware victims year-over-yearScammers exploit Google platform to promote phishing site Senior citizens struck by data breachSmall Texas town foiled Russian hacker group that attacked its water systemsStudents searching for scholarships the latest phishing target Synlab victim of hacker attack: patient data compromisedThe key pillars of domain securityThreat Actor Claims Breach of Spanish Online Sneaker Shop Footdistrict DatabaseTop cybersecurity product news of the weekTP-Link routers are exposed to massive bot and malware attacksUkrainian soldiers’ apps increasingly targeted for spying, cyber agency warns United Nations Development Programme hit by cyberattackUnited Nations Development Programme (UNDP) investigates data breachUnitedHealth Group says Change Healthcare attack cost $872 million to remediateUS slaps new tech sanctions on Iran in wake of Israel attackWashington DC city agency says LockBit claims tied to third-party attack18/0492% of enterprises unprepared for AI security challenges840-bed hospital in France postpones procedures after cyberattackAndroid could soon protect you from malicious apps by quarantining them Are you a toxic cybersecurity boss? How to be a better CISOAsantee Games Acknowledges Security Flaw in Magic Rampage, Assures it’s Been ContainedAuthorities Busted Cybercrime Platform That Steal Passwords & Card DetailsAuthorities take down LabHost, phishing-as-a-service platformBinance working closely with Nigeria authorities to resolve exec's detention, CEO saysBrave search engine adds privacy-focused AI - no Google or Bing needed Bots dominate internet activity, account for nearly half of all trafficCannes Hospital Back to Basics: Pen and Paper Power Healthcare After CyberattackCerber Linux Ransomware Exploits Atlassian Servers To Take Full ControlCheap ransomware for sale on dark web marketplaces is changing the way hackers operateChinese manufacturer exposes data from surveillance devicesChip giant Nexperia investigating a major data theft from its systemsChrome Security Update: 23 Vulnerabilities Fixed in Latest ReleaseCisco fixes vulnerabilities in Integrated Management ControllerCisco IMC Command Injection Vulnerability Under Active AttackCisco IOS SNMP Implementation Flaw Trigger Remote AttacksCisco Unveils Hypershield: AI-Powered Automated Vulnerability ShieldCisco warns of a command injection escalation flaw in its IMC. PoC publicly availableConfused robo-taxis block freeway in San FranciscoConsolidation blamed for Change Healthcare ransomware attackCyberattack Disables Ukrainian Broadcaster 1+1 Media, Affecting 39 Channels“Cybercrime Index” Ranks: Russia, Ukraine, and China at the TopCybercriminals pose as LastPass staff to hack password vaultsDevices Infected With Data-Stealing Malware Increased by 7 Times Since 2020 Enterprises face significant losses from mobile fraudEx-FSB officer sentenced to 9 years in prison for helping Russian hackersFaulty decade-old OfflRouter virus targets organizations in UkraineFBI: Akira ransomware raked in $42 million from 250+ victimsFBI diz que hackers chineses se preparam para “golpe devastador” contra os EUA FIN7 Cybercrime Group Targeting U.S. Auto Industry with Carbanak BackdoorFIN7 targeted a large U.S. carmaker phishing attacksFrench underwear seller Le Slip Français hackedGlobal Police Operation Disrupts 'LabHost' Phishing Service, Over 30 Arrested WorldwideGoogle ad impersonates Whales Market to push wallet drainer malwareGoogle fires 28 employees for protesting Israeli cloud contractHackers Exploit OpenMetadata Flaws to Mine Crypto on KubernetesHow to Conduct Advanced Static Analysis in a Malware SandboxIvanti patches critical Avalanche flaw exploitable via a simple message (CVE-2024-29204)Kubernetes Clusters Under Attack: Critical OpenMetadata Vulnerabilities ExploitedLabHost phishing service with 40,000 domains disrupted, 37 arrestedLabHost platform shut down by law enforcementLaw enforcement operation dismantled phishing-as-a-service platform LabHostMalicious Google Ads Pushing Fake IP Scanner Software with Hidden BackdoorMicrosoft pulls WizardLM-2 AI model due to missed toxicity testingNew Android Trojan 'SoumniBot' Evades Detection with Clever TricksNew Cyber-Threat MadMxShell Exploits Typosquatting and Google AdsNew Redline Stealer Variant Leverages Lua Bytecode For StealthinessOfflRouter Malware Evades Detection in Ukraine for Almost a DecadeOver 17 billion personal accounts leaked worldwide since 2004PF suspende emissão online de passaporte após tentativa de invasão hacker a sistema PF suspende passaporte pela internet após ataque hacker Poisoned Google Ads Targeting Infra Teams with Weaponized IP ScannersPreviously unknown Kapeka backdoor linked to Russian Sandworm APTQuishing Attacks Jump Tenfold, Attachment Payloads HalveRansomHouse Allegedly Strikes Lopesan Hotels: 650GB Data Breach UnfoldsRansomHub starts leaking Change Healthcare data following ransom non-paymentRecover from Ransomware in 5 Minutes—We will Teach You How!R00TK1T Claims that They have Acquired Confidential Data from NestleRussia's Sandworm Upgraded to APT44 by Google's Mandiant Social media platform X blocked in Pakistan over national security, ministry saysTargeted ads opt-out should be free, EU privacy watchdog saysTrust in Cyber Takes a Knock as CNI Budgets FlatlineUK law enforcement busts online phishing marketplaceUK Police Lead Disruption of £1m Phishing-as-a-Service Site LabHostUNDP confronts cybersecurity crisis following data breachUS Election Officials Told to Prepare for Nation-State Influence CampaignsVoid Interactive Data Breach: Developer of Popular SWAT Team Game Suffers Source Code LeakWho owns customer identity?17/0468% of Companies are More Vulnerable to DDoS Than They ThinkAWS and Google Cloud command-line tools can expose secrets in CI/CD logsBrute force attacks targeting VPNs on the rise, intel warningCherry Health hit by ransomware attackCisco discloses root escalation flaw with public exploit codeCisco Warns of Global Surge in Brute-Force Attacks Targeting VPN and SSH ServicesCisco warns of large-scale brute-force attacks against VPN and SSH servicesCriminals want to pay T-Mobile and Verizon staff for SIM swaps. Here's what you need to know Critical Atlassian Flaw Exploited to Deploy Linux Variant of Cerber RansomwareCyberNiggers hacker claims breach of US geospatial intelligence firm Space-EyesDamn Vulnerable RESTaurant: Open-source API service designed for learningDark Web Monitoring: What's the Value?EU iPhone users can now bypass the App StoreFIN7 targets American automaker’s IT staff in phishing attacksGenAI: A New Headache for SaaS Security TeamsGoogle Mandiant elevates Russian threat group Sandworm to APT44Hackers Exploit Fortinet Flaw, Deploy ScreenConnect, Metasploit in New CampaignInsider Threats Surge 14% Annually as Cost-of-Living Crisis BitesInvestigation finds 18 data centers secretly mining crypto in SwedenIT and security professionals demand more workplace flexibilityIvanti fixed two critical flaws in its Avalanche MDMIvanti Patches Two Critical Avalanche Flaws in Major UpdateLinux Cerber Ransomware Variant Exploits Atlassian ServersLinux variant of Cerber ransomware targets Atlassian serversMillions of Magic Rampage players at riskMicrosoft: Copilot ‘app’ on Windows Server mistakenly added by EdgeMoldovan charged for operating botnet used to push ransomwareMultiple botnets exploiting one-year-old TP-Link flaw to hack routersNational Guard will use Google's AI for faster disaster response and recoveryNorth Korean Group Kimsuky Exploits DMARC and Web BeaconsPalo Alto firewalls: Public exploits, rising attacks, ineffective mitigationPro-Russian Propaganda Exploits Meta's Failure to Moderate Political AdsResearchers released exploit code for actively exploited Palo Alto PAN-OS bug Russian APT Deploys New 'Kapeka' Backdoor in Eastern European AttacksRussian Sandworm Group Using Novel Backdoor to Target Ukraine and AlliesRussian Sandworm hackers pose as hacktivists in water utility breachesSAP users are at high risk as hackers exploit application vulnerabilitiesSite da Prefeitura de Araçatuba saiu do ar e hacker assume autoria de ataqueThinking outside the code: How the hacker mindset drives innovationUK e-visa rollout starts today for millions: no more physical immigration cardsUnderstanding CISA’s proposed cyber incident reporting rulesUnderstanding next-level cyber threatsUS Government and OpenSSF Partner on New SBOM Management ToolWhere in the world is your AI? Identify and secure AI across a hybrid environment16/045 free red teaming resources to get you started10 tips to keep IP safe31% of women in tech consider switching roles over the next yearA critical vulnerability in Delinea Secret Server allows auth bypass, admin accessAI Helps Security Teams, But Boosts ThreatsAI set to enhance cybersecurity roles, not replace themAudio deepfakes: What they are, and the risks they presentAWS, Google, and Azure CLI Tools Could Leak Credentials in Build LogsBad Bots Drive 10% Annual Surge in Account Takeover AttacksBreachForums Down, But Not Out: Hackers Claim Attack, Admins Remain UnfazedCanadian discount retailer Giant Tiger announces customer data breachChange Healthcare faces new ransomware threat following earlier breachCisco Duo Data Breach Exposes Customer MFA Data Through Telephony ProviderCisco Duo Data Breach: Hackers Stolen VoIP & SMS for MFACisco Duo says a third-party data breach stole MFA SMS logsCISOs are still more worried about ransomware than AI-powered cyberattacksCritical PuTTY Client Vulnerability Lets Attackers Recover Private KeysCritical RCE Vulnerability in 92,000 D-Link NAS DevicesCybersecurity Pros Urge US Congress to Help NIST Restore NVD OperationDaixin Team ransomware group claims major cyber attack on Omni HotelsErnie Bot attracted 200M users, Baidu boastsFTC Fines Mental Health Startup Cerebral $7 Million for Major Privacy ViolationsFuture proofing employee cyber-protectionsGeopolitical tensions escalate OT cyber attacksHacker Customize LockBit 3.0 Ransomware To Attack Orgs WorldwideHackers access personal, medical info in cyber attack of southern NM rehabilitation center Half of all internet traffic comes from bots, research showsHandala Hacker Group Warns Israel: 500K Texts Sent Amid Alleged Iron Dome Security BreachHive RAT Creators and $3.5M Cryptojacking Mastermind Arrested in Global CrackdownHunters International ransomware group demands a $10m ransom from Hoya CorporationIdentity in the Shadows: Shedding Light on Cybersecurity's Unseen ThreatsInfamous BreachForums down, black hats claiming responsibilityIntelBroker Claims Channel Logistics LLC Data Breach: Space-Eyes Division Allegedly ImpactedIntelBroker Claims Space-Eyes Breach, Targeting US National Security DataIran launched a Major Cyberattack Against Critical Infrastructure in IsraelLastPass Reports Voice Phishing Attempt on Employee Using Audio Deepfake of Company CEOLeakyCLI Flaw Exposes AWS and Google Cloud CredentialsLighttpd Bug Continues to Expose Vulnerabilities in End-of-Life Intel and Lenovo Hardware FirmwareMGM files suit against Federal Trade Commission (FTC) to block cyber attack investigationMicrosoft Most Impersonated Brand in Phishing ScamsMillions of student papers written with AI – studyNavigating Personal Liability: Post–Data Breach Recommendations for OfficersNexperia Confirms Data Breach, Launches Investigation with Cybersecurity ExpertsNew open-source project takeover attacks spotted, stymiedNSA Issues Cybersecurity Guidance for Secure AI DeploymentOmni Hotels Says Personal Information Stolen in Ransomware AttackOpen Source Leaders Warn of XZ Utils-Like Takeover AttemptsOpenSSF Warns of Fake Maintainers Targeting JavaScript ProjectsPopular VPN Software Flaw Let Attackers Crash the SystemsRansomware attacks surge worries cybersecurity experts: 'Scattered Spider' group in focusRansomware gang publishes part of stolen Change Healthcare recordsRansomware group Dark Angels claims the theft of 1TB of data from chipmaker NexperiaRoku suffers second data breach with more than half a million accounts hackedRussia is trying to sabotage European railways, Czech minister saidScammers target SunPass customers with phishing ploy Sean Connelly Departs CISA to Join Zscaler’s Global Zero Trust EffortsSensitive US government data exposed after Space-Eyes data breachSouth Africa’s trade regulator International Trade Administration Commission (ITAC) hit by cyber attackStrengthening Data Defense: Insights From Recent Ransomware AttacksTA558 Hackers Weaponize Images for Wide-Scale Malware AttacksThe best AirTag wallets to locate your cash and cardsThird-party breach hits MFA authenticator Cisco DuoTrust Wallet Urges Caution for Apple Users Amid Reports of Apple iMessage Zero-Day ExploitTrust Wallet warns iOS users of zero-day exploitUK royals fall victim to alleged data breachUS supreme court ruling suggests change in cybersecurity disclosure processWhat Were the Most Impersonated Brands For Phishing in Q1?Who Stole 3.6M Tax Records from South Carolina?Widely-Used PuTTY SSH Client Found Vulnerable to Key Recovery AttackYouTube hampers streaming for adblock users15/043 Ways Financial Services Startups Can Strengthen Their Cybersecurity6 bad cybersecurity habits that put SMBs at riskA critical vulnerability in Delinea Secret Server allows auth bypass, admin accessAI Copilot: Launching Innovation Rockets, But Beware of the Darkness AheadAlleged Telecom Argentina Data Access Offered for $100 on Dark WebApache Kafka Flaw Let Attackers Gain Access To Sensitive DataApple denies violating US court order in Epic Games lawsuitBHF Couriers denies credit card data breachBitcoin security question resurfaces as halving loomsBuilding trust: Why Africa needs inclusive cybersecurity solutionsChinese Chipmaker Nexperia: Gigabytes of Data StolenChinese-Linked LightSpy iOS Spyware Targets South Asian iPhone UsersChinese-owned chipmaker Nexperia hackedChipmaker Giant Nexperia Confirms Cyber-Attack Amid Ransomware Group ClaimsChipmaker Nexperia confirms breach after ransomware gang leaks dataCISA adds Palo Alto Networks PAN-OS Command Injection flaw to its Known Exploited Vulnerabilities catalogCisco Duo warns third-party data breach exposed SMS MFA logs Crypto miner arrested for skipping on $3.5 million in cloud server billsCyber attack exposes Covid-19 vaccination records in Dominican RepublicCyber Security Bill is a threat to freedom of expression onlineDaixin ransomware gang claims attack on Omni HotelsDAIXIN Ransomware Group Claims Data Breach at Omni Hotels, Threatens LeaksData leaked as Pak Suzuki comes under cyber attack Developer Of Hive RAT Arrested By Authorities for Stealing Login CredentialsEarth Hundun’s Hackers Employ Waterbear And Deuterbear Tools For Advanced Cyber AttackseBook: Why CISSP?Expand your library with these cybersecurity booksExposing the top cloud security threatsFBI and AFP Arrest Alleged Developer, Marketer of Firebird/Hive RATFBI Warns of Massive Toll Services Smishing ScamFive areas that can make your business more attractive to cyber insurance providersGeopolitical tensions escalate OT cyber attacksHacker claims Giant Tiger breachHacker dumps data of 2.8 million Giant Tiger customersHackers Actively Using Pupy RAT to Attack Linux SystemsHackers Launch Business Email Compromise attacks on The Automotive IndustryHackers russos utilizaram acesso à Microsoft para roubar dados de emails nos EUAHope Revived for UN Cybercrime Treaty as Negotiations Set to Resume How to freeze your credit (and why you might want to) How to protect IP surveillance cameras from Wi-Fi jammingIdentity Theft Resource Center (ITRC) 2023 Data Breach Report Is a Mixed BagIntel and Lenovo BMCs Contain Unpatched Lighttpd Server FlawIran’s missile strikes against Israel bolstered by cyberattacks, multiple gangs involvedLas Vegas Casino Hacks Were Result of Cooperation Between Young, Western Hackers and RussiansLayerSlider Plugin Flaw Exposes 1M Sites To SQL Injections‘Leak of corporate data’: Cyber-attack hits Pak Suzuki Motor CompanyMicrosoft and Google Top the List in Q1 2024 Phishing Attacks: Check Point Research Highlights a Surge in Cyber ThreatsMicrosoft lifts Windows 11 block on some Intel systems after 2 yearsMicrosoft will limit Exchange Online bulk emails to fight spamMuddled Libra Shifts Focus to SaaS and Cloud for Extortion and Data Theft AttacksNew LockBit Variant Exploits Self-Spreading FeaturesNew SteganoAmor attacks use steganography to target 320 orgs globallyOngoing plans for cyber security within Neath Port Talbot Council discussedOpen-source scanner can identify risky Microsoft SCCM configurationsOpenAI bids for Japan business as it opens Tokyo officeOpenTable moves to doxx all users, then immediately backtracksOver 50% global ransomware incidents in 2023 were detected in Southeast Asia (SEA)Over 100 hotels in Japan fall victim to Booking.com phishing scamsPalo Alto Networks fixes zero-day exploited to backdoor firewallsPalo Alto Networks Releases Urgent Fixes for Exploited PAN-OS VulnerabilityPalo Alto Networks Zero-Day Flaw Exploited in Targeted AttacksPalo Alto Patches 0-Day (CVE-2024-3400) Exploited by Python BackdoorPoC Released For Critical Zero-Click Windows VulnerabilityPolice Swoop on €645m Cannabis Investment Fraud GangRansomware gang starts leaking alleged stolen Change Healthcare dataRoku cyberattack impacts 576,000 accountsRoku reports second data breach; over 500,000 accounts compromisedRussia and Ukraine Top Inaugural World Cybercrime IndexSamsung retakes Apple’s spot as top phone manufacturerSecuring educational system by addressing cyber security challengesSecurity engineer guilty of hacking cryptocurrency exchangesSoftware Support: 7 Essential Reasons You Can’t OverlookStrelaStealer’s Malware Resurgence: What Security Leaders Need to Know in 2024Suzuki Pakistan Faces Cyber Attack on Corporate DatabaseTechnology use slowly coming back in Scranton School District amidst ransomware attackTexting Secrets: How Messenger Apps Guard Your ChatsThreat actors exploited Palo Alto Pan-OS issue to deploy a Python BackdoorTiming is Everything: The Role of Just-in-Time Privileged Access in Security EvolutionUkrainian Blackjack group used ICS malware Fuxnet against Russian targetsUnitedHealth confronta aumento de custos após ataque cibernético comprometer sistemasU.S. and Australian police arrested Firebird RAT author and operatorU.S. surveillance reauthorization, Roku breach update, Microsoft breach exposed agenciesUS Treasury Targets Hamas Cyber Operations Leader with SanctionsZarf: Open-source continuous software delivery on disconnected networksZero-day exploit hits Palo Alto NetworksWells Fargo discloses data breach affecting two customers, employee firedWhen Facebook blocks news, studies show political risks followWhy Is Hub Cyber Security (HUBC) Stock Up 35% Today? 14/04An Iranian cyber group claims: 'We breached the radars in Israel'Cyber attack targets IECGroup takes responsibility for cyber attack on IsraelHacker de DeFi condenado a 3 anos de prisão Impact of the Data Breach on Users Of RokuIranian Cyber Attack Shuts Down Israel's Electric GridPalo Alto: Manufacturing sector top target for ransomware attacks last year South Dakota’s prison tablet provider dinged for data breach by Federal Trade CommissionDAILY NEWS: Abril (07/04 - 13/04) - 15 Semana de 2024
Cyber Security, Privacy and Information Security News --- Daily Updates !! Weekly Resume...20/04A French hospital was forced to reschedule procedures after cyberattackCarpetright is latest British business to be hit by cyber attack as hackers target company HQ to affect hundreds of customer ordersCritical Forminator plugin flaw impacts over 300k WordPress sitesCritical Update: CrushFTP Zero-Day Flaw Exploited in Targeted AttacksCyber attack surge is “Tip of Iceberg”, expert warnsGitHub comments abused to push malware via Microsoft repo URLsGoogle Ads Unwittingly Promotes Phishing Crypto Site, Leading to Significant User Losses Hackers stole seven million people’s DNA. What they’ll do with it is bafflingHong Kong private hospital given 4 weeks to submit report over US$10 million ransomware attackInternational investigation disrupts phishing-as-a-service platform LabHost – EUROPOLMITRE Hit in Massive Supply Chain Attack: State-Backed Hackers Exploit Zero-DaysNew Mexico institutions pay out thousands to recover from ransomwareOne Click Catastrophe: City Services Paralyzed by Major Cyber attackPalo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under AttackRenewal of surveillance law clears Congress minutes after deadlineSt. Helena warns of potential data breach after Solano County library cyberattackThreat Actor Allegedly Offers WhatsApp 0-Day Exploit for Android and iOS with RCE CapabilitiesTransparentTribe: The Elusive Threat Targeting India’s Defense SectorWarrantless spying powers extended to 2026 with Biden’s signature19/0451% of enterprises experienced a breach despite large security stacks66% of IT leaders doubt the government can defend against cyberwarfare22,500 Palo Alto firewalls "possibly vulnerable" to ongoing attacksAkira Ransomware Attacks Over 250 Organizations and Collects $42 MillionAkira Ransomware Gang Extorts $42 Million; Now Targets Linux ServersAkira Ransomware Group Rakes in $42m, 250 Organizations ImpactedAkira Ransomware rampage: $42 million looted from 250+ organizationsAlarming Decline in Cybersecurity Job Postings in the USAlert! Windows LPE Zero-day Exploit Advertised on Hacker ForumsAnonymous Collective Launches "# OpImmigration" Against Japanese Government for Discriminatory Immigration PoliciesAtlantic fisheries commission says cyber security incident disrupted email and phone communicationsAttacks with CryptoChameleon phishing kit target LastPass usersAustralians ‘exposed’ in smoke alarm service provider data breach: reportBlackTech Targets Tech, Research, and Gov Sectors New 'Deuterbear' ToolCheap ransomware poses a massive threat to small businessesChina’s Hidden Threat: Hackers in U.S. Systems Since 2011, FBI WarnsCity of Hope data breach leads to multiple class action lawsuitsCyber attack takes Frontier Communications systems offline, affecting millions of broadband customersCybersecurity agencies unite against Akira ransomware threatErnest Health faces lawsuit for failing to protect patients' data during January cyber attackEuropol teams up with state police to disrupt major phishing networkEye care provider Cherry Health says data breach impacted close to 185,000 patientsFBI chief says China is preparing to attack US critical infrastructureFBI, Europol Say Akira Ransomware Has Drained $42M from 250 Firms FBI says Chinese hackers preparing to attack US infrastructureFrance's Cannes Hospital in midst of major cyberattackFraud Alert: Beware of New Cheap Junk Gun RansomwareFrontier Communications Shuts Down Systems Following CyberattackFrontier Communications Suffers Cyber Breach by Unknown Cybercrime GroupGoogle Ads Used to Promote Phishing Scams in Crypto WebsitesHackers Posing as LastPass Employee to Steal Master Password & Hijack AccountsHackers Target Middle East Governments with Evasive "CR4T" BackdoorHelloKitty ransomware rebrands, releases CD Projekt and Cisco dataHow Attackers Can Own a Business Without Touching the EndpointHow to Navigate the Risks of Generative AIHow to Protect Water Systems Against Cyber AttackIntelBroker Allegedly Screaped Companies House Data, Exposing Data Related to CompaniesInternational police team cracks down on phishing service 'LabHost' and arrests 37 peopleIs the UK about to ban ransomware payments?IT and Cybersecurity Jobs in the Age of Emerging AI TechnologiesLabHost Phishing Platform is Latest Target of International Law Agencies LastPass users targeted by vishing attackersLatest Security Breach hits Arbitrum; Hedgey Finance Loses $1.9 Million in Hacker AttackLe Slip Français discloses data breach, customer information compromisedMan steals $110M in cryptocurrency schemeMassive Data Breach as Pandemonium Rocks Exposes Hundreds of Bank AccountsMillennials are key targets for phishingMITRE says state hackers breached its network via Ivanti zero-daysNew Zealand caught up in worldwide phishing stingOctopharma Plasma’s US operations shut down due to suspected ransomware attackPeople’s CyberArmy Groups Allegedly Launch DDoS Attacks on Spanish WebsitesPF suspende agendamento online de passaportes após ataque hackerPhishing Trends: Quishing and AI On the RiseProtobom: Open-source software supply chain toolRansomware feared in Octapharma Plasma’s US-wide shutdownRansomware in Q1 2024: Frequency, size of payments trending downwards, SMBs beware!Report finds a near 20% increase in ransomware victims year-over-yearScammers exploit Google platform to promote phishing site Senior citizens struck by data breachSmall Texas town foiled Russian hacker group that attacked its water systemsStudents searching for scholarships the latest phishing target Synlab victim of hacker attack: patient data compromisedThe key pillars of domain securityThreat Actor Claims Breach of Spanish Online Sneaker Shop Footdistrict DatabaseTop cybersecurity product news of the weekTP-Link routers are exposed to massive bot and malware attacksUkrainian soldiers’ apps increasingly targeted for spying, cyber agency warns United Nations Development Programme hit by cyberattackUnited Nations Development Programme (UNDP) investigates data breachUnitedHealth Group says Change Healthcare attack cost $872 million to remediateUS slaps new tech sanctions on Iran in wake of Israel attackWashington DC city agency says LockBit claims tied to third-party attack18/0492% of enterprises unprepared for AI security challenges840-bed hospital in France postpones procedures after cyberattackAndroid could soon protect you from malicious apps by quarantining them Are you a toxic cybersecurity boss? How to be a better CISOAsantee Games Acknowledges Security Flaw in Magic Rampage, Assures it’s Been ContainedAuthorities Busted Cybercrime Platform That Steal Passwords & Card DetailsAuthorities take down LabHost, phishing-as-a-service platformBinance working closely with Nigeria authorities to resolve exec's detention, CEO saysBrave search engine adds privacy-focused AI - no Google or Bing needed Bots dominate internet activity, account for nearly half of all trafficCannes Hospital Back to Basics: Pen and Paper Power Healthcare After CyberattackCerber Linux Ransomware Exploits Atlassian Servers To Take Full ControlCheap ransomware for sale on dark web marketplaces is changing the way hackers operateChinese manufacturer exposes data from surveillance devicesChip giant Nexperia investigating a major data theft from its systemsChrome Security Update: 23 Vulnerabilities Fixed in Latest ReleaseCisco fixes vulnerabilities in Integrated Management ControllerCisco IMC Command Injection Vulnerability Under Active AttackCisco IOS SNMP Implementation Flaw Trigger Remote AttacksCisco Unveils Hypershield: AI-Powered Automated Vulnerability ShieldCisco warns of a command injection escalation flaw in its IMC. PoC publicly availableConfused robo-taxis block freeway in San FranciscoConsolidation blamed for Change Healthcare ransomware attackCyberattack Disables Ukrainian Broadcaster 1+1 Media, Affecting 39 Channels“Cybercrime Index” Ranks: Russia, Ukraine, and China at the TopCybercriminals pose as LastPass staff to hack password vaultsDevices Infected With Data-Stealing Malware Increased by 7 Times Since 2020 Enterprises face significant losses from mobile fraudEx-FSB officer sentenced to 9 years in prison for helping Russian hackersFaulty decade-old OfflRouter virus targets organizations in UkraineFBI: Akira ransomware raked in $42 million from 250+ victimsFBI diz que hackers chineses se preparam para “golpe devastador” contra os EUA FIN7 Cybercrime Group Targeting U.S. Auto Industry with Carbanak BackdoorFIN7 targeted a large U.S. carmaker phishing attacksFrench underwear seller Le Slip Français hackedGlobal Police Operation Disrupts 'LabHost' Phishing Service, Over 30 Arrested WorldwideGoogle ad impersonates Whales Market to push wallet drainer malwareGoogle fires 28 employees for protesting Israeli cloud contractHackers Exploit OpenMetadata Flaws to Mine Crypto on KubernetesHow to Conduct Advanced Static Analysis in a Malware SandboxIvanti patches critical Avalanche flaw exploitable via a simple message (CVE-2024-29204)Kubernetes Clusters Under Attack: Critical OpenMetadata Vulnerabilities ExploitedLabHost phishing service with 40,000 domains disrupted, 37 arrestedLabHost platform shut down by law enforcementLaw enforcement operation dismantled phishing-as-a-service platform LabHostMalicious Google Ads Pushing Fake IP Scanner Software with Hidden BackdoorMicrosoft pulls WizardLM-2 AI model due to missed toxicity testingNew Android Trojan 'SoumniBot' Evades Detection with Clever TricksNew Cyber-Threat MadMxShell Exploits Typosquatting and Google AdsNew Redline Stealer Variant Leverages Lua Bytecode For StealthinessOfflRouter Malware Evades Detection in Ukraine for Almost a DecadeOver 17 billion personal accounts leaked worldwide since 2004PF suspende emissão online de passaporte após tentativa de invasão hacker a sistema PF suspende passaporte pela internet após ataque hacker Poisoned Google Ads Targeting Infra Teams with Weaponized IP ScannersPreviously unknown Kapeka backdoor linked to Russian Sandworm APTQuishing Attacks Jump Tenfold, Attachment Payloads HalveRansomHouse Allegedly Strikes Lopesan Hotels: 650GB Data Breach UnfoldsRansomHub starts leaking Change Healthcare data following ransom non-paymentRecover from Ransomware in 5 Minutes—We will Teach You How!R00TK1T Claims that They have Acquired Confidential Data from NestleRussia's Sandworm Upgraded to APT44 by Google's Mandiant Social media platform X blocked in Pakistan over national security, ministry saysTargeted ads opt-out should be free, EU privacy watchdog saysTrust in Cyber Takes a Knock as CNI Budgets FlatlineUK law enforcement busts online phishing marketplaceUK Police Lead Disruption of £1m Phishing-as-a-Service Site LabHostUNDP confronts cybersecurity crisis following data breachUS Election Officials Told to Prepare for Nation-State Influence CampaignsVoid Interactive Data Breach: Developer of Popular SWAT Team Game Suffers Source Code LeakWho owns customer identity?17/0468% of Companies are More Vulnerable to DDoS Than They ThinkAWS and Google Cloud command-line tools can expose secrets in CI/CD logsBrute force attacks targeting VPNs on the rise, intel warningCherry Health hit by ransomware attackCisco discloses root escalation flaw with public exploit codeCisco Warns of Global Surge in Brute-Force Attacks Targeting VPN and SSH ServicesCisco warns of large-scale brute-force attacks against VPN and SSH servicesCriminals want to pay T-Mobile and Verizon staff for SIM swaps. Here's what you need to know Critical Atlassian Flaw Exploited to Deploy Linux Variant of Cerber RansomwareCyberNiggers hacker claims breach of US geospatial intelligence firm Space-EyesDamn Vulnerable RESTaurant: Open-source API service designed for learningDark Web Monitoring: What's the Value?EU iPhone users can now bypass the App StoreFIN7 targets American automaker’s IT staff in phishing attacksGenAI: A New Headache for SaaS Security TeamsGoogle Mandiant elevates Russian threat group Sandworm to APT44Hackers Exploit Fortinet Flaw, Deploy ScreenConnect, Metasploit in New CampaignInsider Threats Surge 14% Annually as Cost-of-Living Crisis BitesInvestigation finds 18 data centers secretly mining crypto in SwedenIT and security professionals demand more workplace flexibilityIvanti fixed two critical flaws in its Avalanche MDMIvanti Patches Two Critical Avalanche Flaws in Major UpdateLinux Cerber Ransomware Variant Exploits Atlassian ServersLinux variant of Cerber ransomware targets Atlassian serversMillions of Magic Rampage players at riskMicrosoft: Copilot ‘app’ on Windows Server mistakenly added by EdgeMoldovan charged for operating botnet used to push ransomwareMultiple botnets exploiting one-year-old TP-Link flaw to hack routersNational Guard will use Google's AI for faster disaster response and recoveryNorth Korean Group Kimsuky Exploits DMARC and Web BeaconsPalo Alto firewalls: Public exploits, rising attacks, ineffective mitigationPro-Russian Propaganda Exploits Meta's Failure to Moderate Political AdsResearchers released exploit code for actively exploited Palo Alto PAN-OS bug Russian APT Deploys New 'Kapeka' Backdoor in Eastern European AttacksRussian Sandworm Group Using Novel Backdoor to Target Ukraine and AlliesRussian Sandworm hackers pose as hacktivists in water utility breachesSAP users are at high risk as hackers exploit application vulnerabilitiesSite da Prefeitura de Araçatuba saiu do ar e hacker assume autoria de ataqueThinking outside the code: How the hacker mindset drives innovationUK e-visa rollout starts today for millions: no more physical immigration cardsUnderstanding CISA’s proposed cyber incident reporting rulesUnderstanding next-level cyber threatsUS Government and OpenSSF Partner on New SBOM Management ToolWhere in the world is your AI? Identify and secure AI across a hybrid environment16/045 free red teaming resources to get you started10 tips to keep IP safe31% of women in tech consider switching roles over the next yearA critical vulnerability in Delinea Secret Server allows auth bypass, admin accessAI Helps Security Teams, But Boosts ThreatsAI set to enhance cybersecurity roles, not replace themAudio deepfakes: What they are, and the risks they presentAWS, Google, and Azure CLI Tools Could Leak Credentials in Build LogsBad Bots Drive 10% Annual Surge in Account Takeover AttacksBreachForums Down, But Not Out: Hackers Claim Attack, Admins Remain UnfazedCanadian discount retailer Giant Tiger announces customer data breachChange Healthcare faces new ransomware threat following earlier breachCisco Duo Data Breach Exposes Customer MFA Data Through Telephony ProviderCisco Duo Data Breach: Hackers Stolen VoIP & SMS for MFACisco Duo says a third-party data breach stole MFA SMS logsCISOs are still more worried about ransomware than AI-powered cyberattacksCritical PuTTY Client Vulnerability Lets Attackers Recover Private KeysCritical RCE Vulnerability in 92,000 D-Link NAS DevicesCybersecurity Pros Urge US Congress to Help NIST Restore NVD OperationDaixin Team ransomware group claims major cyber attack on Omni HotelsErnie Bot attracted 200M users, Baidu boastsFTC Fines Mental Health Startup Cerebral $7 Million for Major Privacy ViolationsFuture proofing employee cyber-protectionsGeopolitical tensions escalate OT cyber attacksHacker Customize LockBit 3.0 Ransomware To Attack Orgs WorldwideHackers access personal, medical info in cyber attack of southern NM rehabilitation center Half of all internet traffic comes from bots, research showsHandala Hacker Group Warns Israel: 500K Texts Sent Amid Alleged Iron Dome Security BreachHive RAT Creators and $3.5M Cryptojacking Mastermind Arrested in Global CrackdownHunters International ransomware group demands a $10m ransom from Hoya CorporationIdentity in the Shadows: Shedding Light on Cybersecurity's Unseen ThreatsInfamous BreachForums down, black hats claiming responsibilityIntelBroker Claims Channel Logistics LLC Data Breach: Space-Eyes Division Allegedly ImpactedIntelBroker Claims Space-Eyes Breach, Targeting US National Security DataIran launched a Major Cyberattack Against Critical Infrastructure in IsraelLastPass Reports Voice Phishing Attempt on Employee Using Audio Deepfake of Company CEOLeakyCLI Flaw Exposes AWS and Google Cloud CredentialsLighttpd Bug Continues to Expose Vulnerabilities in End-of-Life Intel and Lenovo Hardware FirmwareMGM files suit against Federal Trade Commission (FTC) to block cyber attack investigationMicrosoft Most Impersonated Brand in Phishing ScamsMillions of student papers written with AI – studyNavigating Personal Liability: Post–Data Breach Recommendations for OfficersNexperia Confirms Data Breach, Launches Investigation with Cybersecurity ExpertsNew open-source project takeover attacks spotted, stymiedNSA Issues Cybersecurity Guidance for Secure AI DeploymentOmni Hotels Says Personal Information Stolen in Ransomware AttackOpen Source Leaders Warn of XZ Utils-Like Takeover AttemptsOpenSSF Warns of Fake Maintainers Targeting JavaScript ProjectsPopular VPN Software Flaw Let Attackers Crash the SystemsRansomware attacks surge worries cybersecurity experts: 'Scattered Spider' group in focusRansomware gang publishes part of stolen Change Healthcare recordsRansomware group Dark Angels claims the theft of 1TB of data from chipmaker NexperiaRoku suffers second data breach with more than half a million accounts hackedRussia is trying to sabotage European railways, Czech minister saidScammers target SunPass customers with phishing ploy Sean Connelly Departs CISA to Join Zscaler’s Global Zero Trust EffortsSensitive US government data exposed after Space-Eyes data breachSouth Africa’s trade regulator International Trade Administration Commission (ITAC) hit by cyber attackStrengthening Data Defense: Insights From Recent Ransomware AttacksTA558 Hackers Weaponize Images for Wide-Scale Malware AttacksThe best AirTag wallets to locate your cash and cardsThird-party breach hits MFA authenticator Cisco DuoTrust Wallet Urges Caution for Apple Users Amid Reports of Apple iMessage Zero-Day ExploitTrust Wallet warns iOS users of zero-day exploitUK royals fall victim to alleged data breachUS supreme court ruling suggests change in cybersecurity disclosure processWhat Were the Most Impersonated Brands For Phishing in Q1?Who Stole 3.6M Tax Records from South Carolina?Widely-Used PuTTY SSH Client Found Vulnerable to Key Recovery AttackYouTube hampers streaming for adblock users15/043 Ways Financial Services Startups Can Strengthen Their Cybersecurity6 bad cybersecurity habits that put SMBs at riskA critical vulnerability in Delinea Secret Server allows auth bypass, admin accessAI Copilot: Launching Innovation Rockets, But Beware of the Darkness AheadAlleged Telecom Argentina Data Access Offered for $100 on Dark WebApache Kafka Flaw Let Attackers Gain Access To Sensitive DataApple denies violating US court order in Epic Games lawsuitBHF Couriers denies credit card data breachBitcoin security question resurfaces as halving loomsBuilding trust: Why Africa needs inclusive cybersecurity solutionsChinese Chipmaker Nexperia: Gigabytes of Data StolenChinese-Linked LightSpy iOS Spyware Targets South Asian iPhone UsersChinese-owned chipmaker Nexperia hackedChipmaker Giant Nexperia Confirms Cyber-Attack Amid Ransomware Group ClaimsChipmaker Nexperia confirms breach after ransomware gang leaks dataCISA adds Palo Alto Networks PAN-OS Command Injection flaw to its Known Exploited Vulnerabilities catalogCisco Duo warns third-party data breach exposed SMS MFA logs Crypto miner arrested for skipping on $3.5 million in cloud server billsCyber attack exposes Covid-19 vaccination records in Dominican RepublicCyber Security Bill is a threat to freedom of expression onlineDaixin ransomware gang claims attack on Omni HotelsDAIXIN Ransomware Group Claims Data Breach at Omni Hotels, Threatens LeaksData leaked as Pak Suzuki comes under cyber attack Developer Of Hive RAT Arrested By Authorities for Stealing Login CredentialsEarth Hundun’s Hackers Employ Waterbear And Deuterbear Tools For Advanced Cyber AttackseBook: Why CISSP?Expand your library with these cybersecurity booksExposing the top cloud security threatsFBI and AFP Arrest Alleged Developer, Marketer of Firebird/Hive RATFBI Warns of Massive Toll Services Smishing ScamFive areas that can make your business more attractive to cyber insurance providersGeopolitical tensions escalate OT cyber attacksHacker claims Giant Tiger breachHacker dumps data of 2.8 million Giant Tiger customersHackers Actively Using Pupy RAT to Attack Linux SystemsHackers Launch Business Email Compromise attacks on The Automotive IndustryHackers russos utilizaram acesso à Microsoft para roubar dados de emails nos EUAHope Revived for UN Cybercrime Treaty as Negotiations Set to Resume How to freeze your credit (and why you might want to) How to protect IP surveillance cameras from Wi-Fi jammingIdentity Theft Resource Center (ITRC) 2023 Data Breach Report Is a Mixed BagIntel and Lenovo BMCs Contain Unpatched Lighttpd Server FlawIran’s missile strikes against Israel bolstered by cyberattacks, multiple gangs involvedLas Vegas Casino Hacks Were Result of Cooperation Between Young, Western Hackers and RussiansLayerSlider Plugin Flaw Exposes 1M Sites To SQL Injections‘Leak of corporate data’: Cyber-attack hits Pak Suzuki Motor CompanyMicrosoft and Google Top the List in Q1 2024 Phishing Attacks: Check Point Research Highlights a Surge in Cyber ThreatsMicrosoft lifts Windows 11 block on some Intel systems after 2 yearsMicrosoft will limit Exchange Online bulk emails to fight spamMuddled Libra Shifts Focus to SaaS and Cloud for Extortion and Data Theft AttacksNew LockBit Variant Exploits Self-Spreading FeaturesNew SteganoAmor attacks use steganography to target 320 orgs globallyOngoing plans for cyber security within Neath Port Talbot Council discussedOpen-source scanner can identify risky Microsoft SCCM configurationsOpenAI bids for Japan business as it opens Tokyo officeOpenTable moves to doxx all users, then immediately backtracksOver 50% global ransomware incidents in 2023 were detected in Southeast Asia (SEA)Over 100 hotels in Japan fall victim to Booking.com phishing scamsPalo Alto Networks fixes zero-day exploited to backdoor firewallsPalo Alto Networks Releases Urgent Fixes for Exploited PAN-OS VulnerabilityPalo Alto Networks Zero-Day Flaw Exploited in Targeted AttacksPalo Alto Patches 0-Day (CVE-2024-3400) Exploited by Python BackdoorPoC Released For Critical Zero-Click Windows VulnerabilityPolice Swoop on €645m Cannabis Investment Fraud GangRansomware gang starts leaking alleged stolen Change Healthcare dataRoku cyberattack impacts 576,000 accountsRoku reports second data breach; over 500,000 accounts compromisedRussia and Ukraine Top Inaugural World Cybercrime IndexSamsung retakes Apple’s spot as top phone manufacturerSecuring educational system by addressing cyber security challengesSecurity engineer guilty of hacking cryptocurrency exchangesSoftware Support: 7 Essential Reasons You Can’t OverlookStrelaStealer’s Malware Resurgence: What Security Leaders Need to Know in 2024Suzuki Pakistan Faces Cyber Attack on Corporate DatabaseTechnology use slowly coming back in Scranton School District amidst ransomware attackTexting Secrets: How Messenger Apps Guard Your ChatsThreat actors exploited Palo Alto Pan-OS issue to deploy a Python BackdoorTiming is Everything: The Role of Just-in-Time Privileged Access in Security EvolutionUkrainian Blackjack group used ICS malware Fuxnet against Russian targetsUnitedHealth confronta aumento de custos após ataque cibernético comprometer sistemasU.S. and Australian police arrested Firebird RAT author and operatorU.S. surveillance reauthorization, Roku breach update, Microsoft breach exposed agenciesUS Treasury Targets Hamas Cyber Operations Leader with SanctionsZarf: Open-source continuous software delivery on disconnected networksZero-day exploit hits Palo Alto NetworksWells Fargo discloses data breach affecting two customers, employee firedWhen Facebook blocks news, studies show political risks followWhy Is Hub Cyber Security (HUBC) Stock Up 35% Today? 14/04An Iranian cyber group claims: 'We breached the radars in Israel'Cyber attack targets IECGroup takes responsibility for cyber attack on IsraelHacker de DeFi condenado a 3 anos de prisão Impact of the Data Breach on Users Of RokuIranian Cyber Attack Shuts Down Israel's Electric GridPalo Alto: Manufacturing sector top target for ransomware attacks last year South Dakota’s prison tablet provider dinged for data breach by Federal Trade CommissionDAILY NEWS: Abril (07/04 - 13/04) - 15 Semana de 2024
Comments