DAILY NEWS: Dezembro (04/12 - 10/12) - 49 Semana de 2022
Cyber Security and Information Security News - Daily Updates !! Weekly Review

10/12
130,000 Telstra customers exposed in data breach
AirAsia ransomware attack: Probe ongoing to find source and impact of compromised data, says Fahmi
Awareness programme on "Cyber security & emerging technologies" held
Businesses worry about ransomware in OT environment
Capitec warns of December rise in banking scams – what to look out for
Cisco Warns of High-Severity Unpatched Flaw Affecting IP Phones Firmware
Even the Pros Get Compromised When They Forget These Security Basics
Medibank improves security systems following data breach
New Power Party (NPP) lawmakers urge registration data breach probe
Private data of 6 lakh Indians hacked, sold on bot markets for under Rs 500: Report
Researchers Detail New Attack Method to Bypass Popular Web Application Firewalls
There's a shortage of cyber security workers, and these girls aspire to fill the gap
09/12
3 major cybersecurity predictions for the new year
5 geopolitical risk factors affecting organizations in 2023
18 Bursa main board-listed companies had active malware infections in November
2023 Cybersecurity Predictions
600K Indian Users’ Data Being Sold For INR 490 On Bot Markets: NordVPN
Antivirus and EDR solutions tricked into acting as data wipers
At least 400,000 new malicious files detected daily in 2022: Report
Australia arrests 'Pig Butchering' suspects for stealing $100 million
Australia To Be The Most Cyber-Secure Country By 2030
BEC Attacks Expand Beyond Email and Toward Mobile Devices
Centralising secrets: How organizations can manage identity and credentials
Cisco discloses high-severity flaw impacting IP Phone 7800 and 8800 Series
Cloud Atlas targets entities in Russia and Belarus amid the ongoing war in Ukraine
Cobalt Mirage Affiliate Uses GitHub to Relay Drokbk Malware Instructions
CommonSpirit confirms data breach impacts 623K patients
CommonSpirit Health says patient data was stolen during ransomware attack
Conway Regional Medical Center Reaches $295K Settlement Over Healthcare Data Breach
Crikey! Not Another One! Lessons Learned From Australia’s Wave of Breaches
Crypto Hitting ‘Mother Of All Economic Crises’ Threatens North Korea
Cyber Security Firm CloudSEK Points Finger at Rival Over Breach
Cybersecurity firm ‘sniffed out’ hacked Tirupati hospital data on dark web. Now, it’s a ‘victim’ too
December 2022 Patch Tuesday forecast: Fine-tuning the connectivity
Developers ignoring ‘best practice’ on mobile app security – Digital Minister
Embattled Medibank faces 48-hour outage as cyber security upgrade begins
Experts devised a technique to bypass web application firewalls (WAF) of several vendors
Government Sets Out New Rules to Enhance App Security
Government to Fund Security Studies for Hundreds of Students
Healthcare Organizations Warned of Royal Ransomware Attacks
How Can SMEs Improve Their Cybersecurity Resilience?
How to Easily Recognize Scam Online Casinos
Inside NATO’s Cyber Range: How armies prepare against attack and why nations must work together
Insights into insider threats: Detecting and monitoring abnormal user activity
Key Risks and Challenges for Data Security in the Cloud
Knox College president addresses ransomware incident as notorious group claims credit
Leading cybersecurity companies in clinical trials
Leveraging the full potential of zero trust
MuddyWater Hackers Target Asian and Middle East Countries with Updated Tactics
New Truebot Malware Variant Leveraging Netwrix Auditor Bug and Raspberry Robin Worm
North Korean threat group exploiting Internet Explorer zero-day
NPP lawmakers urge registration data breach probe
One year on: Log4Shell’s Armageddon that never was
PCI Secure Software Standard 1.2 released
Personal data of 6 lakh Indian hacked and sold on bot markets for Rs 490 each: study reveals
Ransom gang stepping up attacks, analyst warns
Recognize the commonalities in ransomware attacks to avoid them
Research reveals where 95% of open source vulnerabilities lie
Researchers Uncover New Drokbk Malware that Uses GitHub as a Dead Drop Resolver
Retail giant Vevor leaked user location and payment data for almost five months
Security Concerns Scupper Deals for Two-Thirds of Firms
Software Supply Chain Attacks Leveraging Open-Sources Repos Growing
Top 10 Cloud Penetration Testing Companies in 2023
“Vertical Integration within the Domain of Cyber Security is Our USP” Says Kaushik Ray
Voyager Worldwide hit by cyber attack
Why automation is critical for scaling security and compliance
08/12
6 Ways Your Privacy and Security Were Threatened in 2022
Akamai Research Shows APJ Surpasses North America in Web Application and API Cyberattacks
Amnesty International Canada says it was targeted by Chinese cyberespionage threat groups
Antwerp City Services Down After Ransomware Attack
Apple Introduces New Data Protections to Increase Cloud Security
Apple unveils end-to-end encryption for iCloud backup, Photos, etc.
Australia witnessed 16 major cyber-attacks as hackers attempt to steal ‘sensitive data’
BlackByte Ransomware Takes an Extra Bite Using Double Extortion Methods
Business email compromise attacks going mobile via SMS and social media apps
Christmas shopping scams: How to stay safe online
Cisco discloses high-severity IP phone bug with exploit code
Cloud Security: Maintaining Least Privilege
Cyber-criminals Scammed Each Other Out of Millions in 2022
Cybersecurity Best Practices for Banking Institutions in the Digital Age
Consumers prioritize mobile app security over features
Cybercriminals are scamming each other, tipping off law enforcement
Data breach of Ontario's vaccine booking system affects hundreds of thousands, province says
Data protection and security in 2023
Deception Technology: How to Trick Cybercriminals Into Focusing on a Decoy
Fingerprinting: Is It Really a Privacy Threat?
FTX hires forensics team to find customers’ missing billions
Gloucestershire is one of the least cyber secure counties in the south west
Google Warns of Internet Explorer Zero-Day Vulnerability Exploited by ScarCruft Hackers
Hacked corporate email accounts used to send MSP remote access tool
Hackers are still finding - and using - flaws in Internet Explorer
Hacking as a Service: The dark side of corporate sabotage
How compliance leaders can encourage employees to report misconduct
How IoT is changing the threat landscape for businesses
How To Build A More Resilient IT Department While Cutting Costs
How to Mitigate the Cyber Risks of Energy Blackouts
How to Protect Your Organization From Account Takeovers
India is dangerously unprepared for Chinese cyber-war. AIIMS ransomware attack shows why
Investment Fraud Gang May Have Made $500m
Iranian APT Agrius Targets Diamond Industry Worldwide With Fantasy Wiper
Iranian Hackers Strike Diamond Industry with Data-Wiping Malware in Supply-Chain Attack
Is VoIP Telephony 100% Cybersecure? Tips to Avoid Deceptive Actions
Medibank set for system-wide weekend shutdown
Medibank to shut down IT systems to bolster security following huge data breach
Metallica encourages fans to seek and destroy crypto scams
Metropolitan Opera dealing with cyberattack that shut down website, box office
Microsoft has discovered a new scam targeting crypto firms on Telegram
N. Korea Launched Cyber Attack Using Itaewon Tragedy
New Gov.uk scam email: stay alert to the latest scam tactic
New 'Zombinder' platform binds Android malware with legitimate apps
Online Retailer Giant Exposed User Data and Over 1B Records
Over 31,000 Patients Impacted by Drive Compromised in Cyber Attack
PayPal email scams are back: how to spot a dodgy message
Pennsylvania Amends Data Breach Notification Law
Phishing in the Cloud: We're Gonna Need a Bigger Boat
Popular HR and Payroll Company Sequoia Discloses a Data Breach
Protecting the modern cloud environment with cloud email security
Ransomware attack on AIIMS Delhi servers deliberate, targeted; NIA probe on: MoS IT
Real estate agency LJ Hooker hit with data breach
Researchers Uncover Darknet Service Allowing Hackers to Trojanize Legit Android Apps
Russia’s VTB bank hit by largest DDoS attack
Securing the operational technology network
Stolen data of 600,000 Indians sold on bot markets so far - study
Telecom financial frauds up as more upgrade to 5G
The biggest data breaches and leaks of 2022
The cloud is a growing target for cyberattacks
The importance of cybersecurity in sports
The Internet-Based Threats Putting Your Organization at Risk
The new workplace imperative: Authenticate anywhere, access everywhere
Three cloud security lessons learned in 2022 – and the path forward
Truebot Malware Activity Increases With Possible Evil Corp Connections
Turkey charges journalist who disclosed government data breach
UK Government Calls for Industry Input on its Cybersecurity Strategy
Vanuatu Government Struggling Back Online After Cyberattack
Veros Credit Files Notice of Data Breach Affecting Consumers’ Social Security Numbers
Vienna’s Musikverein is taken down
Web Application And API Cyberattacks Grow by 449%
Weep for the cybercriminals who fell for online scams and lost $2.5m last year
What HR Departments Need to Know About Data Security
What Stricter Data Privacy Laws Mean for Your Cybersecurity Policies
Why Early Threat Detection Is Important In K-12 Cloud Security
Why is Robust API Security Crucial in eCommerce?
Wing Financial Files Notice of Data Breach Affecting Over 240k Clients
07/12
3 xIoT Attacks Companies Aren't Prepared For
7 reasons why you must embed trust into the core of your business
10 Cybersecurity Predictions for 2023
2023 Predictions: API Security the new Battle Ground in Cybersecurity
Adams-Friendship Area School District hit by ransomware
Amnesty International Canada claims attack by China-backed forces
Android security update fixes more than 80 security vulnerabilities - including four critical
Anna Johnston: ‘Not every cyber attack will result in a data breach’
Antler backs Amsterdam’s Insiber with €100K to help SMEs address cybersecurity risks
Beware the ‘phishermen’ – and don’t take the bait
Chinese Hackers Using Russo-Ukrainian War Decoys to Target APAC and European Entities
Cloud is growing target for cyberattacks –Sophos Survey
CloudSEK claims it was hacked by another cybersecurity firm
Colombian healthcare giant Keralty targeted by RansomHouse gang; forced to suspend operations
CommonSpirit Health says some patient information accessed in ransomware attack
Cuban Foreign Ministry denounces cyber-attack
Cyber Security for Medical Devices Training Course (January 20, 2023) - ResearchAndMarkets.com
Cyber will be the biggest risk code for Lloyd’s in 2023
Cybersecurity adoption hampered by shortage of skills and poor product integration
Don’t get phished over the holidays
e-Crime Bureau awarded for a decade of impact in cyber security
EE UK Launches New Norton Powered Cyber Security Packages
Fear of cyberattacks drives SMBs to spend more on software
Financial Services IT Teams Relying on Legacy Cybersecurity Plagued By False Positives and Negatives
Five tips to keep yourself safe on social media
Fraudulent Funds Transfer (FFT) and Ransomware Represent Over Half of Cyber Insurance Claims in 2022
Google: North Korean gov’t hackers used Internet Explorer zero-day to target South Korea users
Google: State hackers still exploiting Internet Explorer zero-days
Hackers use new Fantasy data wiper in coordinated supply chain attack
How Does Cyber Technology Affect Security?
How Railroads Mitigate Cyberthreats Against Their Networks
How to protect your school from cyber attacks
How to Use a Phishing Simulation to Train Employees
Human Rights Watch details Iran-backed phishing campaign against activists
ICO Fines Rogue Nuisance Callers £500,000
Insider Risks Hamper the Digital Transformation Process
Insight Global COVID-19 tracing data breach class action settlement
IT Army of Ukraine Hit Russian Banking Giant with Crippling DDoS Attack
Jim Koons Automotive Co. data breach class action settlement
Leading cyber security companies focusing on emerging threats in 2023
Major cloud, email hosting provider blames ransomware attack for outage
Many SMBs still just aren't equipped to deal with cyberattacks
Microsoft Alerts Cryptocurrency Industry of Targeted Cyber Attacks
Microsoft Warns Cryptocurrency Firms Against Complex Cyber-Attacks
Microsoft Warns of Scammers Targeting Crypto Startups With ‘Weaponized’ Excel Files
Millions of people have had their data sold on bot markets
NatWest warns of new phishing email which aims to scam you out of your bank details
New Babuk Ransomware Found in Major Attack
New Go-based Zerobot Botnet Exploiting Dozen of IoT Vulnerabilities to Expand its Network
New Zealand government compromised in third-party cyber attack
New Zerobot malware has 21 exploits for BIG-IP, Zyxel, D-Link devices
Nine cybersecurity predictions for 2023 that’ll keep business owners up at night
NZ Privacy Commissioner Investigates Mercury IT Ransomware Attack
Optus, Medibank – and supply chains flying under the radar
Police Dismantle SIM Swapping Gang in Spain
Rackspace email outage confirmed as ransomware attack
Researchers Weaponize Machine Learning Models With Ransomware
Russian Espionage APT Callisto Focuses on Ukraine War Support Organizations
Russian Hackers Spotted Targeting U.S. Military Weapons and Hardware Supplier
Russia's VTB Bank Suffers its Biggest Ever DDoS
Security Practitioners Lack Dark Web Threat Intelligence Training
Security Risks Found in Millions of XIoT Devices
South Staffs Water customers criticismo 'scary gobbledy-gook' messages after cyber attack
Spyware Vendor’s Heliconia Framework Exploits Browser Vulnerabilities
Suffolk University Reports Data Breach Impacting Thousands of Current and Former Students
Supply Chain Web Skimming Attacks Hit Dozens of Sites
Tarentum investigating after falling victim to online scam for nearly $140,000
Texas appraisal districts hit by ransomware attacks
These Are the 50 Most Popular Passwords in America—and That’s Not a Good Thing
Thousands of children’s medical records leaked
Top 7 factors boosting enterprise cybersecurity resilience
UK Government Department Using Unsupported Applications, Reveals Watchdog
Vice Society Ransomware Attackers Targeted Dozens of Schools in 2022
Vodafone in Oman claims Cyber Security Award at Big Data & Analytics Meet 2022
WA data breaches are at a ‘record-breaking severity.’ How to keep your personal data safe
Why Building a Digital Twin Graph Will Shore up Your Cybersecurity Defence
Why Indian MSMEs Must Rethink Cybersecurity
Why the Holidays are the Most Wonderful Time of the Year for Fraudsters
Why You Must Think Like Your Adversary After a Data Breach
Will the 2.5M Records Breach Impact Student Loan Relief?
06/12
3 Strategies for Healthcare Merger, Acquisition Cybersecurity Due Diligence
68% of IT leaders are worried about API sprawl
14,000 coronial files blocked: Ministry of Justice confirms cyber attack
A Decade of Discussion and We’re Still Not Thinking Laterally
After AIIMS, top medical body ICMR's servers under cyber attack: Report
Amnesty International Canada says it was hacked by Beijing
Amnesty International Canada says it was targeted by China-sponsored cyber attack
Attackers take over expired domain to deliver web skimming scripts
Australian insurer Medibank says hackers leaked all of the data they stole in October
Beyond Google: The Real Problem with Data Privacy
CBN, Stakeholders Collaborate To Check Rising Cyber Attacks
Chinese Hackers Target Middle East Telecoms in Latest Cyber Attacks
Companhias precisam amadurecer práticas de segurança cibernética
Cyber Attack insights Heli Tiirmaa-Klaar, Director of the Digital Society Institute at ESMT Berlin
Cyber attack widens, via third party, affecting government agencies
Cyber security: Getting basic hygiene right
Cyber security improvements held up by budget and skills shortages
Dark web recruiting techniques: Malware, phishing, and carding
Darknet's Largest Mobile Malware Marketplace Threatens Users Worldwide
Decentralized Cyber security – An Advanced Approach