Cyber Security and Information Security News - Daily Updates !! Weekly Review

10/12

130,000 Telstra customers exposed in data breach

AirAsia ransomware attack: Probe ongoing to find source and impact of compromised data, says Fahmi

Awareness programme on "Cyber security & emerging technologies" held

Businesses worry about ransomware in OT environment

Capitec warns of December rise in banking scams – what to look out for

Cisco Warns of High-Severity Unpatched Flaw Affecting IP Phones Firmware

Even the Pros Get Compromised When They Forget These Security Basics

Medibank improves security systems following data breach

New Power Party (NPP) lawmakers urge registration data breach probe

Private data of 6 lakh Indians hacked, sold on bot markets for under Rs 500: Report

Researchers Detail New Attack Method to Bypass Popular Web Application Firewalls

There's a shortage of cyber security workers, and these girls aspire to fill the gap

09/12

3 major cybersecurity predictions for the new year

5 geopolitical risk factors affecting organizations in 2023

12 Disruptive technologies, high on Innovation, Funding and Demand-Supply alignment will drive Tech markets in the Techade-NASSCOM-BCG study

18 Bursa main board-listed companies had active malware infections in November

2023 Cybersecurity Predictions

600K Indian Users’ Data Being Sold For INR 490 On Bot Markets: NordVPN

Antivirus and EDR solutions tricked into acting as data wipers

At least 400,000 new malicious files detected daily in 2022: Report

Australia arrests 'Pig Butchering' suspects for stealing $100 million

Australia To Be The Most Cyber-Secure Country By 2030

BEC Attacks Expand Beyond Email and Toward Mobile Devices

Centralising secrets: How organizations can manage identity and credentials

Cisco discloses high-severity flaw impacting IP Phone 7800 and 8800 Series

Cloud Atlas targets entities in Russia and Belarus amid the ongoing war in Ukraine

Cobalt Mirage Affiliate Uses GitHub to Relay Drokbk Malware Instructions

CommonSpirit confirms data breach impacts 623K patients

CommonSpirit Health says patient data was stolen during ransomware attack

Conway Regional Medical Center Reaches $295K Settlement Over Healthcare Data Breach

Crikey! Not Another One! Lessons Learned From Australia’s Wave of Breaches

Crypto Hitting ‘Mother Of All Economic Crises’ Threatens North Korea

Cyber Security Firm CloudSEK Points Finger at Rival Over Breach

Cybersecurity firm ‘sniffed out’ hacked Tirupati hospital data on dark web. Now, it’s a ‘victim’ too

December 2022 Patch Tuesday forecast: Fine-tuning the connectivity

Developers ignoring ‘best practice’ on mobile app security – Digital Minister

Embattled Medibank faces 48-hour outage as cyber security upgrade begins

Experts devised a technique to bypass web application firewalls (WAF) of several vendors

Fake Christmas Shops (Louis Vuitton), PayPal, USPS Shipping, & MORE – Top Scams & Phishing Schemes of the Week

Fears for Australia's rich and famous as real estate agency in nation's most exclusive beachside suburb is hacked and sensitive details published online

Feds Charge Nigerian National with Compromising Email Accounts of Pharmaceutical Employees, Money Laundering

Government Sets Out New Rules to Enhance App Security

Government to Fund Security Studies for Hundreds of Students

Healthcare Organizations Warned of Royal Ransomware Attacks

How Can SMEs Improve Their Cybersecurity Resilience?

How to Easily Recognize Scam Online Casinos

Inside NATO’s Cyber Range: How armies prepare against attack and why nations must work together

Insights into insider threats: Detecting and monitoring abnormal user activity

Key Risks and Challenges for Data Security in the Cloud

Knox College president addresses ransomware incident as notorious group claims credit

Leading cybersecurity companies in clinical trials

Leveraging the full potential of zero trust

MuddyWater Hackers Target Asian and Middle East Countries with Updated Tactics

New Truebot Malware Variant Leveraging Netwrix Auditor Bug and Raspberry Robin Worm

North Korean threat group exploiting Internet Explorer zero-day

NPP lawmakers urge registration data breach probe

One year on: Log4Shell’s Armageddon that never was

PCI Secure Software Standard 1.2 released

Personal data of 6 lakh Indian hacked and sold on bot markets for Rs 490 each: study reveals

Ransom gang stepping up attacks, analyst warns

Recognize the commonalities in ransomware attacks to avoid them

Research reveals where 95% of open source vulnerabilities lie

Researchers Uncover New Drokbk Malware that Uses GitHub as a Dead Drop Resolver

Retail giant Vevor leaked user location and payment data for almost five months

Security Concerns Scupper Deals for Two-Thirds of Firms

Software Supply Chain Attacks Leveraging Open-Sources Repos Growing

Teleperformance USA Notifies Consumers of Leaked Social Security Numbers Following Recent Data Breach

Top 10 Cloud Penetration Testing Companies in 2023

“Vertical Integration within the Domain of Cyber Security is Our USP” Says Kaushik Ray

Voyager Worldwide hit by cyber attack

Why automation is critical for scaling security and compliance

08/12

6 Ways Your Privacy and Security Were Threatened in 2022

Akamai Research Shows APJ Surpasses North America in Web Application and API Cyberattacks

Amnesty International Canada says it was targeted by Chinese cyberespionage threat groups

Antwerp City Services Down After Ransomware Attack

Apple Introduces New Data Protections to Increase Cloud Security

Apple unveils end-to-end encryption for iCloud backup, Photos, etc.

Australia witnessed 16 major cyber-attacks as hackers attempt to steal ‘sensitive data’

BlackByte Ransomware Takes an Extra Bite Using Double Extortion Methods

Business email compromise attacks going mobile via SMS and social media apps

Cambridge Water says customers' names, addresses, and banking details were stolen in the South Staffs Water hack

Christmas shopping scams: How to stay safe online

Cisco discloses high-severity IP phone bug with exploit code

Cloud Security: Maintaining Least Privilege

Cyber-criminals Scammed Each Other Out of Millions in 2022

Cybersecurity Best Practices for Banking Institutions in the Digital Age

Consumers prioritize mobile app security over features

Cybercriminals are scamming each other, tipping off law enforcement

Data breach of Ontario's vaccine booking system affects hundreds of thousands, province says

Data protection and security in 2023

Deception Technology: How to Trick Cybercriminals Into Focusing on a Decoy

Department of Health and Human Services Cybersecurity Coordination Center (HHS) warns Royal ransomware threat targeting healthcare providers

Fingerprinting: Is It Really a Privacy Threat?

FTX hires forensics team to find customers’ missing billions

Gloucestershire is one of the least cyber secure counties in the south west

Google Warns of Internet Explorer Zero-Day Vulnerability Exploited by ScarCruft Hackers

Hacked corporate email accounts used to send MSP remote access tool

Hackers are still finding - and using - flaws in Internet Explorer

Hacking as a Service: The dark side of corporate sabotage

How compliance leaders can encourage employees to report misconduct

How IoT is changing the threat landscape for businesses

How To Build A More Resilient IT Department While Cutting Costs

How to Mitigate the Cyber Risks of Energy Blackouts

How to Protect Your Organization From Account Takeovers

India is dangerously unprepared for Chinese cyber-war. AIIMS ransomware attack shows why

Investment Fraud Gang May Have Made $500m

Iranian APT Agrius Targets Diamond Industry Worldwide With Fantasy Wiper

Iranian Hackers Strike Diamond Industry with Data-Wiping Malware in Supply-Chain Attack

Is VoIP Telephony 100% Cybersecure? Tips to Avoid Deceptive Actions

Medibank set for system-wide weekend shutdown

Medibank to shut down IT systems to bolster security following huge data breach

Metallica encourages fans to seek and destroy crypto scams

Metropolitan Opera dealing with cyberattack that shut down website, box office

Microsoft has discovered a new scam targeting crypto firms on Telegram

N. Korea Launched Cyber Attack Using Itaewon Tragedy

New Gov.uk scam email: stay alert to the latest scam tactic

New 'Zombinder' platform binds Android malware with legitimate apps

Online Retailer Giant Exposed User Data and Over 1B Records

Over 31,000 Patients Impacted by Drive Compromised in Cyber Attack

PayPal email scams are back: how to spot a dodgy message

Pennsylvania Amends Data Breach Notification Law

Phishing in the Cloud: We're Gonna Need a Bigger Boat

Popular HR and Payroll Company Sequoia Discloses a Data Breach

Protecting the modern cloud environment with cloud email security

Ransomware attack on AIIMS Delhi servers deliberate, targeted; NIA probe on: MoS IT

Ransomware attack on New Zealand's IT provider impacts multiple government ministries and authorities

Real estate agency LJ Hooker hit with data breach

Reporting a Data Breach

Researchers Uncover Darknet Service Allowing Hackers to Trojanize Legit Android Apps

Russia’s VTB bank hit by largest DDoS attack

Securing the operational technology network

Stolen data of 600,000 Indians sold on bot markets so far - study

Telecom financial frauds up as more upgrade to 5G

The biggest data breaches and leaks of 2022

The cloud is a growing target for cyberattacks

The importance of cybersecurity in sports

The Internet-Based Threats Putting Your Organization at Risk

The new workplace imperative: Authenticate anywhere, access everywhere

Three cloud security lessons learned in 2022 – and the path forward

Truebot Malware Activity Increases With Possible Evil Corp Connections

Turkey charges journalist who disclosed government data breach

UK Government Calls for Industry Input on its Cybersecurity Strategy

Upper Peninsula Power Company Reports Recent Data Breach Compromising SSNs of More than 39k Customers

Vanuatu Government Struggling Back Online After Cyberattack

Veros Credit Files Notice of Data Breach Affecting Consumers’ Social Security Numbers

Vienna’s Musikverein is taken down

Web Application And API Cyberattacks Grow by 449%

Weep for the cybercriminals who fell for online scams and lost $2.5m last year

What HR Departments Need to Know About Data Security

What Stricter Data Privacy Laws Mean for Your Cybersecurity Policies

Why Early Threat Detection Is Important In K-12 Cloud Security

Why is Robust API Security Crucial in eCommerce?

Wing Financial Files Notice of Data Breach Affecting Over 240k Clients

07/12

3 xIoT Attacks Companies Aren't Prepared For

7 reasons why you must embed trust into the core of your business

10 Cybersecurity Predictions for 2023

2023 Predictions: API Security the new Battle Ground in Cybersecurity

Adams-Friendship Area School District hit by ransomware

Amnesty International Canada claims attack by China-backed forces

Android security update fixes more than 80 security vulnerabilities - including four critical

Anna Johnston: ‘Not every cyber attack will result in a data breach’

Antler backs Amsterdam’s Insiber with €100K to help SMEs address cybersecurity risks

Beware the ‘phishermen’ – and don’t take the bait

Chinese Hackers Using Russo-Ukrainian War Decoys to Target APAC and European Entities

Cloud is growing target for cyberattacks –Sophos Survey

CloudSEK claims it was hacked by another cybersecurity firm

Colombian healthcare giant Keralty targeted by RansomHouse gang; forced to suspend operations

CommonSpirit Health says some patient information accessed in ransomware attack

Cuban Foreign Ministry denounces cyber-attack

Cyber Security Consulting Market - The Global Market is Growing at a CAGR of 8.4% by 2031 | Douglas Insights

Cyber Security for Medical Devices Training Course (January 20, 2023) - ResearchAndMarkets.com

Cyber will be the biggest risk code for Lloyd’s in 2023

Cybersecurity adoption hampered by shortage of skills and poor product integration

Don’t get phished over the holidays 

e-Crime Bureau awarded for a decade of impact in cyber security

EE UK Launches New Norton Powered Cyber Security Packages

Fear of cyberattacks drives SMBs to spend more on software

Financial Services IT Teams Relying on Legacy Cybersecurity Plagued By False Positives and Negatives

Five tips to keep yourself safe on social media

Fraudulent Funds Transfer (FFT) and Ransomware Represent Over Half of Cyber Insurance Claims in 2022

Google: North Korean gov’t hackers used Internet Explorer zero-day to target South Korea users

Google: State hackers still exploiting Internet Explorer zero-days

Hackers use new Fantasy data wiper in coordinated supply chain attack

How Does Cyber Technology Affect Security?

How Railroads Mitigate Cyberthreats Against Their Networks

How to protect your school from cyber attacks

How to Use a Phishing Simulation to Train Employees

Human Rights Watch details Iran-backed phishing campaign against activists

ICO Fines Rogue Nuisance Callers £500,000

Insider Risks Hamper the Digital Transformation Process

Insight Global COVID-19 tracing data breach class action settlement

IT Army of Ukraine Hit Russian Banking Giant with Crippling DDoS Attack

Jim Koons Automotive Co. data breach class action settlement

Leading cyber security companies focusing on emerging threats in 2023

Major cloud, email hosting provider blames ransomware attack for outage

Many SMBs still just aren't equipped to deal with cyberattacks

Microsoft Alerts Cryptocurrency Industry of Targeted Cyber Attacks

Microsoft Warns Cryptocurrency Firms Against Complex Cyber-Attacks

Microsoft Warns of Scammers Targeting Crypto Startups With ‘Weaponized’ Excel Files

Millions of people have had their data sold on bot markets

NatWest warns of new phishing email which aims to scam you out of your bank details

New Babuk Ransomware Found in Major Attack

New Go-based Zerobot Botnet Exploiting Dozen of IoT Vulnerabilities to Expand its Network

New Zealand government compromised in third-party cyber attack

New Zerobot malware has 21 exploits for BIG-IP, Zyxel, D-Link devices

Nine cybersecurity predictions for 2023 that’ll keep business owners up at night

NZ Privacy Commissioner Investigates Mercury IT Ransomware Attack

Optus, Medibank – and supply chains flying under the radar

Over Half of Businesses in Nigeria Planning to Expand Locally Despite Supply Chain, Cyber-Security, and Recruitment Challenges

Police Dismantle SIM Swapping Gang in Spain

Rackspace email outage confirmed as ransomware attack

Researchers Weaponize Machine Learning Models With Ransomware

Russian Espionage APT Callisto Focuses on Ukraine War Support Organizations

Russian Hackers Spotted Targeting U.S. Military Weapons and Hardware Supplier

Russia's VTB Bank Suffers its Biggest Ever DDoS

Security Practitioners Lack Dark Web Threat Intelligence Training

Security Risks Found in Millions of XIoT Devices

South Staffs Water customers criticismo 'scary gobbledy-gook' messages after cyber attack

Spyware Vendor’s Heliconia Framework Exploits Browser Vulnerabilities

Stc Bahrain highlights its latest cybersecurity services at the Arab International Cybersecurity Summit

Suffolk University Reports Data Breach Impacting Thousands of Current and Former Students

Supply Chain Web Skimming Attacks Hit Dozens of Sites

Tarentum investigating after falling victim to online scam for nearly $140,000

Texas appraisal districts hit by ransomware attacks

These Are the 50 Most Popular Passwords in America—and That’s Not a Good Thing

Thousands of children’s medical records leaked

Top 7 factors boosting enterprise cybersecurity resilience

UK Government Department Using Unsupported Applications, Reveals Watchdog

Unpatched Exchange servers could be behind Rackspace's ransomware attack, according to one researcher

Vice Society Ransomware Attackers Targeted Dozens of Schools in 2022

Vodafone in Oman claims Cyber Security Award at Big Data & Analytics Meet 2022

WA data breaches are at a ‘record-breaking severity.’ How to keep your personal data safe

Why Building a Digital Twin Graph Will Shore up Your Cybersecurity Defence

Why Indian MSMEs Must Rethink Cybersecurity

Why the Holidays are the Most Wonderful Time of the Year for Fraudsters

Why You Must Think Like Your Adversary After a Data Breach

Will the 2.5M Records Breach Impact Student Loan Relief?

06/12

3 Strategies for Healthcare Merger, Acquisition Cybersecurity Due Diligence

68% of IT leaders are worried about API sprawl

14,000 coronial files blocked: Ministry of Justice confirms cyber attack

A Decade of Discussion and We’re Still Not Thinking Laterally

After AIIMS, top medical body ICMR's servers under cyber attack: Report

Amnesty International Canada says it was hacked by Beijing

Amnesty International Canada says it was targeted by China-sponsored cyber attack

Attackers take over expired domain to deliver web skimming scripts

Australian insurer Medibank says hackers leaked all of the data they stole in October

Beyond Google: The Real Problem with Data Privacy

CBN, Stakeholders Collaborate To Check Rising Cyber Attacks

Chinese Hackers Target Middle East Telecoms in Latest Cyber Attacks

Companhias precisam amadurecer práticas de segurança cibernética

Cyber Attack insights Heli Tiirmaa-Klaar, Director of the Digital Society Institute at ESMT Berlin

Cyber attack widens, via third party, affecting government agencies

Cyber security: Getting basic hygiene right

Cyber security improvements held up by budget and skills shortages

Dark web recruiting techniques: Malware, phishing, and carding

Darknet's Largest Mobile Malware Marketplace Threatens Users Worldwide

Decentralized Cyber security – An Advanced Approach