Daily News - Dezembro (15/12 - 21/12) - 51 Semana de 2024Information Security, Cyber Security, Privacy and Hacking News --- Daily Updates !! Weekly Resume...!!! Security Is a Lifestyle Weekly News !!!21/12Authorities Arrested LockBit Ransomware Developer & Team Core MemberBitfinex Hacker Speaks Out After Sentencing, Urges Public Not to Blame His WifeCyber attack costing six-figure sum, council saysDouglas County Data BreachFraud or Fallacy? Is Meezan Bank Covering Up a Data Breach?Global Pursuit: Unraveling the Lockbit Ransomware NetworkIndia’s Rapido fixes data breach exposing user, driver infoJudge rules NSO Group is liable for spyware hacks targeting 1,400 WhatsApp user devicesLockBit Developer Rostislav Panev Charged for Billions in Global Ransomware DamagesRansomware gangs’ merciless attacks bleed small companies dryRomanian national was sentenced to 20 years in prison for his role in NetWalker ransomware attacksUnmasking the Lockbit Cyber Menace: International Crackdown on Ransomware ArchitectU.S. charges Russian-Israeli dual national tied to Lockbit ransomware groupUS hospital operator Ascension says 5.6 million affected in medical data breach in MayUS waits for extradition of Russian-Israeli national as part of LockBit Ransomware arrests20/125.6M people exposed in Ascension Health ransomware incident earlier this year46% of financial institutions had a data breach in the past 24 months120,000 Bitcoin Theft: Bitfinex Hacker Refutes Netflix Documentary’s StoryAI is becoming the weapon of choice for cybercriminalsAlleged Dark Engine Leak Exposes Sensitive Phone Data in the U.S.Alleged Data Breach at Codo.ma.gov Exposes Governmental DataAlleged Data Breach at Modia's Magento-Based Platform Exposes Sensitive InformationAlleged Data Breach at Xiaomi Exposes Sensitive User InformationAlleged Data Leak Exposes Information of Wealthy Businessmen in ChinaAlleged Data Leak Exposes WhatsApp Information of 11,346 Users in ChinaAlleged Personal Data Leak in Vietnam Exposes Sensitive InformationAlleged Personal Data Leak in Vietnam Raises Privacy ConcernsAmazon Data Breach Allegations: User Disputes Company’s ClaimsAnother NetWalker affiliate sentenced to 20 years in prisonAscension: Health data of 5.6 million stolen in ransomware attackAvoid holiday phishing traps: Fake invoices and shipping alerts flood inboxesBattling Cyber Warfare: Securing Indonesia’s Digital Future – OpEdBitfinex hacker addresses public from prison: “I hate myself”BitLyft Predicts Cybersecurity Trends for 2025: AI, Ransomware & MoreBuilder.ai Database Misconfiguration Exposes 1.29 TB of Unsecured RecordsCISA Adds Critical Flaw in BeyondTrust Software to Exploited Vulnerabilities ListCISA Urges Encrypted Messaging After Salt Typhoon HackCISA: Use Signal or other secure communications appCritical Sophos Firewall Vulnerabilities Let Attackers Execute Remote CodeCyber attack hits Valio, putting data of 5,000 at riskCyber attack on state registries: Security Service of Ukraine checks data leakageData Security Best Practices to Safeguard Data Against Cyber ThreatsDragos claims cyber threat actors targeting manufacturingExecutives targeted in mobile spearphishing attacksFake DocuSign docs used to secure corporate credentials in mishing campaignFBI Warns Gmail, Outlook, Apple Mail Users—Check 3 Things To Stop AttacksFirm fined for scraping data on LinkedInFive under-the-radar phishing scams you may not know ofFoxit PDF Editor Vulnerabilities Let Attackers Execute Remote CodeGoogle Calendar users, watch out for this phishing scamHackers Exploiting Critical Fortinet EMS Vulnerability to Deploy Remote Access ToolsHow a ransomware attack caused a British company to go bustIndonesia’s ransomware scare highlights need for proper implementation of privacy lawInterior Designer Arrested in HDFC Life Insurance Data BreachItaly’s Data Protection Watchdog Issues €15m Fine to OpenAI Over ChatGPT ProbeHackers Selling Cracked Version of Acunetix Tool as Araneida ScannerKrispy Kreme breach, data theft claimed by Play ransomware gangKrispy Kreme Hack Claimed by Play Ransomware – Threatens to Release DataLazarus Group Spotted Targeting Nuclear Engineers with CookiePlus MalwareLockBit 4.0: Ransomware Kingpins Plot February ComebackLockBit Admins Tease a New Ransomware VersionLockBit Developer Rostislav Panev, a Dual Russian-Israeli Citizen, ArrestedLuxottica settles data breach class action lawsuit over 2020 hacking incidentMachine Identity: An Important Defense Against Rising Phishing ThreatsMajor data breach at SRP Federal Credit Union exposes sensitive information of 240,000 individualsMalicious Rspack, Vant packages published using stolen NPM tokensMandatory ransomware reporting key to Australia's cyber resilienceMassive live sports piracy ring with 812 million yearly visits taken offlineMeezan Bank Compensates Victims of Alleged Third Party Data BreachNearly 6 million people were impacted by ransomware attack on Ascension HealthNetWalker Ransomware Operator Sentenced For Hacking Hundreds Of OrganizationsNew Gmail Security Warning For 2.5 Billion—Second Attack Wave IncomingNew infosec products of the week: December 20, 2024New “NotLockBit” Ransomware Attack Windows and macOSNorth Korean Hackers Stole $1.34 Billion in Crypto in 2024Online shoppers are at a higher risk of becoming data breach victimsOperational tech under attack, deepfake phishing and learning to use passkeys -- cybersecurity predictions for 2025Over 1,800 records exposed in Rapido data breachPhishing Statistics Small Businesses Should KnowRaccoon Infostealer operator sentenced to 60 months in prisonRansomware Attackers Target Industries with Low Downtime ToleranceRansomware Spotlight: RansomHubRansomware's 35th birthday: How a floppy disk evolved into a multi-billion dollar criminal businessRhode Island’s RIBridges system targeted in ransomware attackRIBridges data breach: Answering questions about credit freezes, getting benefits and moreRocky Mountain Gastroenterology Associates Data Breach Affects 366K PatientsRomanian Netwalker ransomware affiliate sentenced to 20 years in prisonRspack npm Packages Compromised with Crypto Mining Malware in Supply Chain AttackRussia launches major cyber attack on Ukraine amid missile strikesSession Smart Routers With Default Passwords Hacked By Mirai MalwareSiemens UMC Vulnerability Let Remote Attacker Execute Arbitrary CodeSophos discloses critical Firewall remote code execution flawSophos Issues Hotfixes for Critical Firewall Flaws: Update to Prevent ExploitationStudent information accessed in school division cyber attackThird member of LockBit ransomware gang has been arrestedThreat Actors Selling Nunu Stealer On Hacker ForumsUkraine struck by “largest cyberattack” affecting critical infrastructureUkraine's Security Service Probes GRU-Linked Cyber-Attack on State RegistersUS charges Russian-Israeli as suspected LockBit ransomware coderU.S. CISA adds BeyondTrust software flaw to its Known Exploited Vulnerabilities catalogWashington County implements cybersecurity policy to combat potential ransomware attacksWebcams and DVRs Vulnerable to HiatusRAT, FBI WarnsWhy cybersecurity is critical to energy modernization19/12$2.2 billion stolen from crypto platforms in 2024 cyberattacks5M unique credit and debit cards exposed in data breachAlleged Data Breach at BASC.edu.ph Exposes Sensitive InformationAlleged Data Breach at SENATI Exposes 880,000 RecordsAlleged Data Breach at University of Baghdad Exposes Sensitive InformationAlleged Data Breach Exposes WhatsApp User Database in RussiaAlleged Discord Database Leak Raises Significant Security ConcernsAlleged Leak of Lunar Scampage Raises Concerns About Phishing SchemesAre threat feeds masking your biggest security blind spot?Best endpoint protection software of 2024Best firewall software of 2024Best malware removal of 2024BeyondTrust Remote Access & Support Flaw Enables Command Injection AttacksBeyondTrust says hackers breached Remote Support SaaS instancesBillion-dollar airline faces $450M fine over alleged GDPR violationsCERT-UA: Russia-linked UAC-0125 abuses Cloudflare Workers to target Ukrainian armyCISA Mandates Cloud Security for Federal Agencies by 2025 Under Binding Directive 25-01CISA orders federal agencies to secure their Microsoft cloud environmentsCISA Released National Cyber Incident Response Plan (NCIRP) – 2024CISA releases mobile best practices guide for high-value persons after China telecos attacksCISA Urges Use of End-to-End Encrypted Messaging Services like Signal, Following U.S. Telecoms HackCISA Warns of 4 New Vulnerabilities Exploited in the WildCRIL Investigates: LNK Files, SSH Commands, and the Evolution of Cyberattack TechniquesCriminals Abuse Microsoft Dynamics 365 to Steal User CredentialsCritical Chrome Vulnerabilities Let Attackers Execute Remote Code – Update NowCrypto-Hackers Steal $2.2bn as North Koreans DominateCryptocurrency hackers stole $2.2 billion from platforms in 2024Cybersec firm gets a ‘rare compliment’ as Moscow declares it ‘undesirable’Developers targeted by malicious Microsoft VSCode extensionsDutch DPA Fines Netflix €4.75 Million for GDPR Violations Over Data TransparencyEU Opens Door for AI Training Using Personal DataEuropol Reveals How Cyber Criminals Boost Economy By Hacking Legal BusinessesEuropol seizes €27M in cryptocurrencies from drug traffickersFacing TP-Link allegations, China blames the US for attacking its critical tech companiesFortinet Vulnerabilities Let Attackers Execute Arbitrary Code RemotelyFortinet warns about Critical flaw in Wireless LAN Manager FortiWLMFortinet Warns of Critical FortiWLM Flaw That Could Lead to Admin Access ExploitsFortinet warns of FortiWLM bug giving hackers admin privilegesGitHub Launches “Copilot Free” Access to 150 Million DevelopersGoogle Calendar Phishing Scam Targets Users with Malicious InvitesGoogle warns of holiday scam surge: how to protect yourself from fraudGovernment employees are still using Kaspersky despite the banHacker behind Racoon Infostealer sentenced to 5 years in federal prisonHacker group leaked Telecom Namibia's data after it refused to pay a ransomHackers Exploiting Azure Key Vault Access Policies To Read Sensitive DataHackers Exploiting FortiClient EMS Vulnerability (CVE-2023-48788) in the WildHackers leak Telecom Namibia data following ransom refusalHackers stole the data of 1.4m individuals from Texas Tech University Health Sciences CentresHikvision Camera Driver Vulnerability Records Login details in Log filesInternet-exposed HMIs are a risk to water facilities, CISA warnsInterpol Calls for an End to “Pig Butchering” TerminologyJuniper Warns of Mirai Botnet Targeting SSR Devices with Default PasswordsLeadership skills for managing cybersecurity during digital transformationLockBit Ransomware Group Plots Comeback With 4.0 ReleaseMicrosoft really wants users to ditch passwords and switch to passkeysMicrosoft says Auto HDR causes game freezes on Windows 11 24H2Midnight Blizzard hacking group hijacks RDP proxies to launch malware attacksMirai botnet targets SSR devices, Juniper Networks warnsNetflix fined $5 million by Dutch regulator for privacy violationsNew Malware Can Kill Engineering Processes in ICS EnvironmentsNew Mobile Phishing Targets Executives with Fake DocuSign LinksNew Phishing Attack Exploiting HubSpot Tools To Steal Microsoft Azure LoginsNorth Korean hackers steal $1.34B in crypto in 2024Políticos americanos não devem mandar SMS ou fazer ligações, orienta governoRaccoon Infostealer Admin Arrested for Hacking ComputersRansomware in 2024: New players, bigger payouts, and smarter tacticsRecorded Future CEO Calls Russia’s “Undesirable” Listing a “Compliment”They (don't) want you to know this: how hackers get "colossal" bountiesThousands Download Malicious npm Libraries Impersonating Legitimate ToolsThousands of GPS tracking customers have info leaked following data breachTop security solutions being piloted today — and how to do it rightUAC-0125 Abuses Cloudflare Workers to Distribute Malware Disguised as Army+ AppUkrainian hacker gets prison for infostealer operationsUS considers banning TP-Link routers over cybersecurity concernsUS government mulls entire TP-Link product ban - routers, switches and more all set to be blockedUS may ban Chinese TP-Link routers next year due to security risksUS Organizations Still Using Kaspersky Products Despite BanUS to Ban TP-Link Routers, as They Fuel Chinese Cyber Attacks"Vamos atingir a NATO e Portugal": site do Estado português atacadoVulnerability Exploit Assessment Tool EPSS Exposed to Adversarial AttackWiFi hacking for the everyday spyWindows 11 24H2 upgrades blocked on some PCs due to audio issues18/12Androxgh0st Botnet Targets IoT Devices, Exploiting 27 VulnerabilitiesAPT29 Hackers Target High-Value Victims Using Rogue RDP Servers and PyRDPAttacker Distributes DarkGate Using MS Teams Vishing TechniqueAuto parts maker LKQ Corporation says cyber attack impacted its Canadian operationsBADBOX Botnet Hacked 74,000 Android Devices With Customizable Remote CodesBeware Of Malicious SharePoint Notifications Delivering Xloader MalwareBeyondTrust fixes critical vulnerability in remote access, support solutions (CVE-2024-12356)BeyondTrust Issues Urgent Patch for Critical Vulnerability in PRA and RS ProductsCellebrite shatters smartphone security illusion: everything can be unlocked, researchers warnCISA and ONCD Push Cybersecurity for Federal Grants with New PlaybookCISA Issues Best Practices to Secure Microsoft 365 Cloud EnvironmentsCISA urges switch to Signal-like encrypted messaging apps after telecom hacksCisco Data Breach – IntelBroker Group Leaked 2.9GB of Data OnlineCISO accountability: Navigating a landscape of responsibilityCISOs should stop freaking out about attackers getting a boost from LLMsConsumers wrongly attribute all data breaches to cybercriminalsCredential phishing attacks rose by 703% in H2 of 2024Data breach comes back to haunt Meta as tech giant fined $260MEarth Koshchei Hackers Using Red Team Tools To Attack RDP ServersEuropean Commission Opens TikTok Election Integrity ProbeEuropean companies hit with effective DocuSign-themed phishing emailsGoogle’s New XRefer Tool to Analyze More Complex Malware SamplesGuernsey Revenue Service reprimanded for mishandling sensitive dataHacker rouba US$ 5,36 mi em criptomoedas aproveitando vazamento do LastPassHackers Exploit Google Calendar & Drawings to Bypass Email SecurityHackers Exploiting Linux eBPF to Spread Malware in Ongoing CampaignHealthcare software provider ConnectOnCall says cyber incident impacted over 900,000 individualsHubPhish Exploits HubSpot Tools to Target 20,000 European Users for Credential TheftHubSpot phishing targets 20,000 Microsoft Azure accountsInstant loan app leaks nearly 30 million files with user dataIntelBroker publishes partial data allegedly stolen from CiscoINTERPOL Pushes for "Romance Baiting" to Replace "Pig Butchering" in Scam DiscourseInterpol replaces dehumanizing "Pig Butchering" term with "Romance Baiting"INTERPOL To Replace ‘Pig Butchering’ Term With “Romance Baiting”Irish Data Protection Commission (DPC) fined Meta €251 million for a 2018 data breachKey steps to scaling automated compliance while maintaining securityKey strategies to enhance cyber resilienceLosses from LastPass breach continue to grow with another $12M stolenMalicious Microsoft VSCode extensions target devs, crypto communityMaximizing Productivity with Online Document SolutionsMeta Fined €251 Million for 2018 Data Breach Impacting 29 Million AccountsMeta Hit with Massive $263m GDPR FineMicrosoft Sentinel Launched Agentless Integration for SAP SecurityMultiple GStreamer Vulnerabilities Impact Linux Distributions Using GNOMENearly 400,000 WordPress credentials stolenNebraska sues Change Healthcare over massive data breach impacting 575,000 residentsNew Apache Tomcat Vulnerabilities Let Attackers Execute Remote CodeNew Attacks Exploit VSCode Extensions and npm PackagesNigeria Cracks Down on Cryptocurrency Investment Fraud and Romance ScamsNo Pornhub in Florida? Here's what's happeningNot Your Old ActiveState: Introducing our End-to-End OS PlatformOkta Warns of Phishing Attacks Mimic “Okta Support” to Steal MFA TokensONLY Cynet Delivers 100% Protection and 100% Detection Visibility in the 2024 MITRE ATT&CK EvaluationPatch Alert: Critical Apache Struts Flaw Found, Exploitation Attempts DetectedPhishing Attacks Double in 2024Polícia identifica hacker que invadiu sistema e apagou dados da Defensoria Pública do AmapáRecorded Future CEO applauds "undesirable" designation by RussiaThe Mask APT is back after 10 years of silenceThe Need for Specialized AI Models in Today’s Transforming Industry ChallengesThe open-source tools that could disrupt the entire IT incident management marketThousands of users in Europe getting malicious emails with DocuSign-enabled PDFsThreat Actors Abusing Cloudflare Workers Service To Deliver Weaponized ApplicationTop 10 Cyberattacks in 2024 that Stole the SpotlightUS Government Issues Cloud Security Requirements for Federal AgenciesUSAA settles $3.25 million data breach case, faces fresh allegations of negligenceVanir: Open-source security patch validation for Android17/121-Click RCE Attack in Kerio Control UTM Let Attackers Gain Root Access To the Firewall1.4M Affected in Texas Tech Data Breach, Ransomware Hits Hard5 Practical Techniques for Effective Cyber Threat Hunting10 Major Ransomware Attacks And Data Breaches In 202427 DDoS-for-hire operations shut down by law enforcement2024 cyber threat landscape highlights key attack trendsAll Major European Financial Firms Suffer Supplier Breaches‘All student records accessed’ in Granite School District data breachAlleged Cisco Source Code Leak Raises Security and IP ConcernsAlleged Data Breach at Platinum-Celebs.com Exposes 72,000 User RecordsAlleged Data Breach at RM Group of Education Exposes Sensitive User InformationAlleged Data Breach at Talentely.com Exposes TMS-LMS Platform DataAlleged Data Breach at Warid Telecom Exposes Sensitive User InformationAlleged Data Breach Exposes Information of 261,000 Insurance Agents in the U.S.Alleged Leak of 1.3 Billion Fresh URL Login Credentials Raises Serious Security ConcernsAttackers Exploit Microsoft Teams and AnyDesk to Deploy DarkGate MalwareAustralian Facebook users score $50 million settlement with Meta over Cambridge Analytica data harvesting scandalAzure Data Factory And Apache Airflow Integration Flaws Let Attackers Gain Write AccessBalancing security and user experience to improve fraud prevention strategiesBitter APT Targets Turkish Defense Sector with WmRAT and MiyaRAT MalwareCISA and FBI Raise Alerts on Exploited Flaws and Expanding HiatusRAT CampaignCISA releases first draft of updated National Cyber Incident Response PlanCISA Warns of Adobe & Windows Kernel Driver Exploited in AttacksCISA’s pre-ransomware alerts nearly doubled in 2024Cisco to Acquire Threat Detection Company SnapAttack to Power SplunkCleo data theft incident claimed by the Clop ransomware groupCritical Infrastructure Under Siege: 42% Spike in Ransomware Attacks on UtilitiesCybercriminals Exploit Google Calendar to Spread Malicious LinksCybersecurity Incident at Deloitte May Be Responsible for RIBridges Data BreachDarkGate Malware Distributed Via Microsoft Teams Voice PhishingDump user 'horrified' by Cornwall Council data breachEU Sanctions Russian Cyber Actors for “Destabilizing Actions”EU Watchdog Fines Meta $263 Million for Data BreachEven Great Companies Get Breached — Find Out Why and How to Stop ItExclusive-Major cloud providers could get key role in AI chip access outside the US, sources sayFake Hacking: What It Is & How to Protect Yourself?FBI biometrics division website outage claimed by Mr HamzaFBI Warns Of HiatusRAT Attacking Web Cameras & DVRs To Gain Full AccessGenAI is already here, but how is it affecting the labor market?GenAI: Security Teams Demand Expertise-Driven SolutionsHackers actively exploiting Windows flaw to gain system privileges, CISA warnsHackers Demand Ransom in Rhode Island Health System Data BreachHackers Exploit Microsoft Management Console to Drop Backdoor Payloads on WindowsHackers Exploit Webview2 to Deploy CoinLurker Malware and Evade Security DetectionHackers Leverage Red Team Tools in RDP Attacks Via TOR & VPN for Data ExfiltrationHackers Use Fake PoCs on GitHub to Steal WordPress Credentials, AWS KeysHackers Use Microsoft MSC Files to Deploy Obfuscated Backdoor in Pakistan AttacksHealthcare Cybersecurity: 2024 Was Tough, 2025 May Be BetterHealthcare hacking spree continues as another 225K exposedHelsinki City Board receives status update on Education Division data breachIntelBroker publishes partial Cisco dataIreland fines Meta $264 million over 2018 Facebook data breachKali Linux 2024.4 released! 14 new shiny tools addedKitsap Mental Health Services Notifies Individuals of Recent Data BreachLaunceston dump user ‘horrified’ by council data breachMalvertising on steroids serves Lumma infostealerMeta fined $263M over 2018 security breach that affected ~3M EU Facebook usersMight need a mass password reset one day? Read this first.Nebraska AG Sues Change Healthcare Over Data BreachNebraska Sues Change Healthcare Over ‘Historic’ Data BreachNew APIs Discovered by Attackers in Just 29 SecondsNew critical Apache Struts flaw exploited to find vulnerable serversNigerian Crypto-Romance Scam Leads to Nearly 800 ArrestsOrganizations Warned of Rise in Okta Support Phishing AttacksOver 25,000 SonicWall VPN Firewalls exposed to critical flawsPersonal data shared in new online booking systemPrefeitura de Itapema sofre ataque hacker e site fica fora do arRansomware Defender Risk: 'Overconfidence' in Security ToolsRansomware, deepfakes, and scams: the digital landscape in 2024RATs can sniff out your Chinese-made web cameras: here’s how to defend yourselfRCE Vulnerability in 1,000,000 WordPress Sites Lets Attackers Gain Control Over BackendResearchers reveal OT-specific malware in use and in developmentRevenue Service email data breach was one of severalRising scams involving phishing links swindled $36mn out of Carousell sellersRussia FSB relies on Ukrainian minors for criminal activities disguised as “quest games”Securities and Exchange Commission Settles Charges Against Flagstar for Misleading Investors About Citrix Data BreachSensitive data leaked after Namibia ransomware hackSophisticated TA397 Malware Targets Turkish Defense SectorStarbucks restores systems after Blue Yonder ransomware attackTexas medical school says hackers stole sensitive health data of 1.4 million individualsTexas Tech University Data Breach Impacts 1.4 MillionThe FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRsThe Mask APT Resurfaces with Sophisticated Multi-Platform Malware ArsenalThe shifting security landscape: 2025 predictions and challengesThirty-Five Years of Ransomware-CISCO Official Reveals Lessons LearntTop 10 cybersecurity misconfigurations: Nail the setup to avoid attacksUnlock and load: officials caught using Israeli spyware to snoop on Android usersU.S. CISA adds Microsoft Windows Kernel-Mode Driver and Adobe ColdFusion flaws to its Known Exploited Vulnerabilities catalogUS needs to do more make cyber attackers pay, Trump adviser saysUS Unveils New National Cyber Incident Response PlanVirtavo security camera users beware: app data spilled onlineVulnerabilidades no Windows e Adobe ColdFusionWindows Malware Phishing Attacks Target YouTubersWindows to block PornHub? German state leaders hope so16/12390,000 WordPress credentials compromised via phishing, GitHub reposAI deepfakes are targeting women in politics at alarming ratesAlleged Data Breach at ApolloGames.com Exposes Sensitive CRM DataAlleged Data Breach at CREFSP Exposes Full Database in São PauloAlleged Data Breach at Delhi Public Primary School Itarsi Exposes Sensitive RecordsAlleged Data Breach at HemenBahis Exposes Sensitive User InformationAlleged Data Breach at Rozavam.ru Exposes Sensitive Customer InformationAlleged Data Breach at SAIC in Brazil Exposes Sensitive InformationAlleged Data Breach at World Leadership Academy Exposes Sensitive InformationAlleged Data Breach Exposes Sensitive Legal Proceedings Data in ColombiaAlleged Leak of 1.5 Billion URL Login Credentials Raises Online Security ConcernsAlleged Leak of 200 Million URL Login Credentials Raises Privacy ConcernsAmnesty Accuses Serbia of Tracking Journalists and Activists with SpywareArctic Wolf Acquires BlackBerry’s Cylance Assents For $160 Million in CashAuthorities arrest 800 crypto romance scammers in Nigeria targeting Americans, EuropeansBADBOX malware hits 30,000 Android devices - make sure you update nowByte Federal Data Breach Exposes 58,000 Customer RecordsCicada3301 Ransomware Claims Attack on French Peugeot DealershipCISA and EPA Warn: Internet-Exposed HMIs Pose Serious Cybersecurity Risks to Water SystemsCl0p Ransomware Exploits Cleo Vulnerability, Threatens Data LeaksClop ransomware gang confirms it is actively exploiting Cleo MFT vulnerabilitiesClop ransomware gang confirms responsibility for Cleo data theft attackCl0p ransomware group says it was behind Cleo attacksCoinLurker, Next-Gen Tool Used by Threat Actors in Modern CyberattacksCombating the rising threat of AI-powered phishing attacksConnectOnCall breach exposes health data of over 910,000 patientsCritical Mullvad VPN Vulnerabilities Let Attackers Execute Malicious CodeCVE Assigned to Cleo Vulnerability as Cl0p Ransomware Group Takes Credit for ExploitationCyber attack forced Watsonville Community Hospital staff to rely on pen and paper to attend to patientsCyber attack on SRP Federal Credit Union compromised the data of 240,000 individualsCyber Daily announces return of the Australian Cyber Summit for 2025Cyberattack Targets Rhode Island’s RIBridges System, Compromising Sensitive Resident InformationData Governance in DevOps: Ensuring Compliance in the AI EraDecember 2024 Cyble Report: Malware, Phishing, and IoT Vulnerabilities on the RiseDeceptionAds Delivers 1M+ Daily Impressions via 3,000 Sites, Fake CAPTCHA PagesDeepfakes and AI attacks are worker's biggest security worriesDeloitte Alerts Rhode Island to Significant Data Breach in RIBridges SystemESET: RansomHub most active ransomware group in H2 2024Evasive Node.js loader masquerading as game hackFake Captcha Campaign Highlights Risks of Malvertising NetworksFake CAPTCHAs reaching millions: who’s responsible for malvertising mayhem?Fake job tasks are costing victims millions, FTC warnsFBI spots HiatusRAT malware attacks targeting web cameras, DVRsFBI subdivision firewall access listed by potential Schneider Electric hackerFBI Targets 764 Network: Man Faces 30 Years for Cyberstalking, CSAMFirmware Security: Identifying Risks to Implement Best Cybersecurity PracticesFirst man in the US sent to prison for hiding bitcoin profitHacker bounty fever: dopamine spikes and millions of dollarsHackers Attacking YouTube Creators with Weponized Collaboration RequestsHackers Claim to Have Stolen 17 Million Patient Records from PIH HealthHackers Exploiting Google Search Ads to Launch Malvertising CampaignsHackers Exploiting Microsoft Teams to Gain Remote Access to User’s SystemHackers targeting thousands of YouTubers with fake collaboration offers and infostealersHere’s what human collaboration with AI looks likeHow companies can address bias and privacy challenges in AI modelsHuge cybercrime attack sees 390,000 WordPress websites hit, details stolenKadokawa reportedly gives in to ransomware demandKaiser Permanente Employees Targeted via Malicious Google Search Ads to Deploy SocGholishMalicious ads push Lumma infostealer via fake CAPTCHA pagesMalware Hidden in Fake Business Proposals Hits YouTube CreatorsMassive Data Breach at Texas Tech University Health Sciences Centers: What You Need to KnowMedical Payment Company Facing Lawsuit in Nebraska Over Data BreachMultiple flaws in Volkswagen Group’s infotainment unit allow for vehicle compromiseMUT-1244 targeting security researchers, red teamers, and threat actorsNamibia’s state telecom provider says hackers leaked data after it refused to pay ransomNebraska AG files lawsuit against Change Healthcare following data breachNew Android NoviSpy spyware linked to Qualcomm zero-day bugsNew Glutton Malware Exploits Popular PHP Frameworks Like Laravel and ThinkPHPNew HDMI standard to be announced at CES 2025New Investment Scam Leverages AI, Social Media Ads to Target Victims WorldwideNoviSpy Spyware Installed on Journalist's Phone After Unlocking It With Cellebrite ToolOfcom Issues Guidance for Tech Firms to Tackle Online HarmsOverlooking platform security weakens long-term cybersecurity posturePhishing campaign targets Kaiser Permanente employees using Google AdsRansomware attack investigation continuing in Wood CountyRansomware attack targets Rhode Island public benefits systemRhode Island confirms data breach after Brain Cipher ransomware attackRhode Island hit by data breach as hackers demand ransomRhode Island left scrambling as Deloitte confirms breach likely impacting thousandsRussia Recruits Ukrainian Kids for Sabotage and ReconnaissanceSchools are facing greater cybersecurity threats than ever beforeSecurity experts respond to Krispy Kreme cyber attackSecurity leaders top 10 takeaways for 2024Serbian Authorities Use Novispy Spyware & Cellebrite Forensic Tools to Hack JournalistsSerbian government cracked phones with Cellebrite to install spyware, report saysSerbian government used Cellebrite to unlock phones, install spywareTelecom Namibia Hit by Massive Cyberattack: Over 400,000 Files LeakedTexas Tech University Health Sciences Center and Texas Tech Health El Paso Announce Massive Data BreachTexas Tech University System data breach impacts 1.4 million patientsThousands of Rhode Island citizens have data stolen after social services hit by cyberattackTic TAC Alert: A Remote Code Execution Vulnerability in Medical ImagingTop healthcare company exposes data on millions of patients - find out if you're affectedTrapster Community: Open-source, low-interaction honeypotTwo men arrested for 'hazardous drone' ops in Boston adding to UAP hysteriaUkrainian Minors Recruited for Cyber Ops and Reconnaissance in Russian AirstrikesUS government warns water firms to secure infrastructure at risk onlineUS sanctions Chinese firm over potentially deadly ransomware attackUS set to allow tech giants to control access to AI chipsWhy You Need Cyber Resilience and Defence in DepthWindows kernel bug now exploited in attacks to gain SYSTEM privilegesWith DORA approaching, financial institutions must strengthen their cyber resilienceYouTube Creators Targeted in Global Phishing Campaign15/122024 in retrospect: Lessons learned and cyber strategies shaping future of critical infrastructureAlleged Data Breach at Fédération Française de Football (FFF) Exposes Sensitive InformationAlleged Data Breach at Meat Expert Forum Exposes User InformationAlleged Data Breach at NivteIndia.in Exposes Sensitive User InformationAlleged Data Breach at University of Georgia Exposes Sensitive InformationAlleged Data Breach in Shandong Exposes Courier and Engineering Personnel DatabaseAlleged Leak of 5 Billion URL Login Credentials Raises Serious Security ConcernsClop ransomware claims responsibility for Cleo data theft attacksCurl Vulnerability Let Attackers Access Sensitive InformationCyberattack in Rhode Island: Sensitive data breach, hackers demand ransomCyberattack reported against Israeli banking servicesExploring Cyber-Darkness: How Moscow Undermines The West Via The Dark Web – AnalysisH2HC reuniu top hackers do Brasil e do mundoNotLockBit ransomware targets Apple users with advanced file-locking and data exfiltrationOrganizations should improve employee-wide cybersecurity awarenessPUMAKIT, a sophisticated rootkit that uses advanced stealth mechanismsResecurity introduces Government Security Operations Center (GSOC) at NATO Edge 2024Rhode Island cyberattack underscores security issues with digital public assistance programsRhode Island hit by data breach as hackers demand ransomWinnti hackers target other threat actors with new Glutton PHP backdoorYates County approves cyber security upgrades and contract renewalsDaily News - Dezembro (08/12 - 14/12) - 50 Semana de 2024
Information Security, Cyber Security, Privacy and Hacking News --- Daily Updates !! Weekly Resume...!!! Security Is a Lifestyle Weekly News !!!21/12Authorities Arrested LockBit Ransomware Developer & Team Core MemberBitfinex Hacker Speaks Out After Sentencing, Urges Public Not to Blame His WifeCyber attack costing six-figure sum, council saysDouglas County Data BreachFraud or Fallacy? Is Meezan Bank Covering Up a Data Breach?Global Pursuit: Unraveling the Lockbit Ransomware NetworkIndia’s Rapido fixes data breach exposing user, driver infoJudge rules NSO Group is liable for spyware hacks targeting 1,400 WhatsApp user devicesLockBit Developer Rostislav Panev Charged for Billions in Global Ransomware DamagesRansomware gangs’ merciless attacks bleed small companies dryRomanian national was sentenced to 20 years in prison for his role in NetWalker ransomware attacksUnmasking the Lockbit Cyber Menace: International Crackdown on Ransomware ArchitectU.S. charges Russian-Israeli dual national tied to Lockbit ransomware groupUS hospital operator Ascension says 5.6 million affected in medical data breach in MayUS waits for extradition of Russian-Israeli national as part of LockBit Ransomware arrests20/125.6M people exposed in Ascension Health ransomware incident earlier this year46% of financial institutions had a data breach in the past 24 months120,000 Bitcoin Theft: Bitfinex Hacker Refutes Netflix Documentary’s StoryAI is becoming the weapon of choice for cybercriminalsAlleged Dark Engine Leak Exposes Sensitive Phone Data in the U.S.Alleged Data Breach at Codo.ma.gov Exposes Governmental DataAlleged Data Breach at Modia's Magento-Based Platform Exposes Sensitive InformationAlleged Data Breach at Xiaomi Exposes Sensitive User InformationAlleged Data Leak Exposes Information of Wealthy Businessmen in ChinaAlleged Data Leak Exposes WhatsApp Information of 11,346 Users in ChinaAlleged Personal Data Leak in Vietnam Exposes Sensitive InformationAlleged Personal Data Leak in Vietnam Raises Privacy ConcernsAmazon Data Breach Allegations: User Disputes Company’s ClaimsAnother NetWalker affiliate sentenced to 20 years in prisonAscension: Health data of 5.6 million stolen in ransomware attackAvoid holiday phishing traps: Fake invoices and shipping alerts flood inboxesBattling Cyber Warfare: Securing Indonesia’s Digital Future – OpEdBitfinex hacker addresses public from prison: “I hate myself”BitLyft Predicts Cybersecurity Trends for 2025: AI, Ransomware & MoreBuilder.ai Database Misconfiguration Exposes 1.29 TB of Unsecured RecordsCISA Adds Critical Flaw in BeyondTrust Software to Exploited Vulnerabilities ListCISA Urges Encrypted Messaging After Salt Typhoon HackCISA: Use Signal or other secure communications appCritical Sophos Firewall Vulnerabilities Let Attackers Execute Remote CodeCyber attack hits Valio, putting data of 5,000 at riskCyber attack on state registries: Security Service of Ukraine checks data leakageData Security Best Practices to Safeguard Data Against Cyber ThreatsDragos claims cyber threat actors targeting manufacturingExecutives targeted in mobile spearphishing attacksFake DocuSign docs used to secure corporate credentials in mishing campaignFBI Warns Gmail, Outlook, Apple Mail Users—Check 3 Things To Stop AttacksFirm fined for scraping data on LinkedInFive under-the-radar phishing scams you may not know ofFoxit PDF Editor Vulnerabilities Let Attackers Execute Remote CodeGoogle Calendar users, watch out for this phishing scamHackers Exploiting Critical Fortinet EMS Vulnerability to Deploy Remote Access ToolsHow a ransomware attack caused a British company to go bustIndonesia’s ransomware scare highlights need for proper implementation of privacy lawInterior Designer Arrested in HDFC Life Insurance Data BreachItaly’s Data Protection Watchdog Issues €15m Fine to OpenAI Over ChatGPT ProbeHackers Selling Cracked Version of Acunetix Tool as Araneida ScannerKrispy Kreme breach, data theft claimed by Play ransomware gangKrispy Kreme Hack Claimed by Play Ransomware – Threatens to Release DataLazarus Group Spotted Targeting Nuclear Engineers with CookiePlus MalwareLockBit 4.0: Ransomware Kingpins Plot February ComebackLockBit Admins Tease a New Ransomware VersionLockBit Developer Rostislav Panev, a Dual Russian-Israeli Citizen, ArrestedLuxottica settles data breach class action lawsuit over 2020 hacking incidentMachine Identity: An Important Defense Against Rising Phishing ThreatsMajor data breach at SRP Federal Credit Union exposes sensitive information of 240,000 individualsMalicious Rspack, Vant packages published using stolen NPM tokensMandatory ransomware reporting key to Australia's cyber resilienceMassive live sports piracy ring with 812 million yearly visits taken offlineMeezan Bank Compensates Victims of Alleged Third Party Data BreachNearly 6 million people were impacted by ransomware attack on Ascension HealthNetWalker Ransomware Operator Sentenced For Hacking Hundreds Of OrganizationsNew Gmail Security Warning For 2.5 Billion—Second Attack Wave IncomingNew infosec products of the week: December 20, 2024New “NotLockBit” Ransomware Attack Windows and macOSNorth Korean Hackers Stole $1.34 Billion in Crypto in 2024Online shoppers are at a higher risk of becoming data breach victimsOperational tech under attack, deepfake phishing and learning to use passkeys -- cybersecurity predictions for 2025Over 1,800 records exposed in Rapido data breachPhishing Statistics Small Businesses Should KnowRaccoon Infostealer operator sentenced to 60 months in prisonRansomware Attackers Target Industries with Low Downtime ToleranceRansomware Spotlight: RansomHubRansomware's 35th birthday: How a floppy disk evolved into a multi-billion dollar criminal businessRhode Island’s RIBridges system targeted in ransomware attackRIBridges data breach: Answering questions about credit freezes, getting benefits and moreRocky Mountain Gastroenterology Associates Data Breach Affects 366K PatientsRomanian Netwalker ransomware affiliate sentenced to 20 years in prisonRspack npm Packages Compromised with Crypto Mining Malware in Supply Chain AttackRussia launches major cyber attack on Ukraine amid missile strikesSession Smart Routers With Default Passwords Hacked By Mirai MalwareSiemens UMC Vulnerability Let Remote Attacker Execute Arbitrary CodeSophos discloses critical Firewall remote code execution flawSophos Issues Hotfixes for Critical Firewall Flaws: Update to Prevent ExploitationStudent information accessed in school division cyber attackThird member of LockBit ransomware gang has been arrestedThreat Actors Selling Nunu Stealer On Hacker ForumsUkraine struck by “largest cyberattack” affecting critical infrastructureUkraine's Security Service Probes GRU-Linked Cyber-Attack on State RegistersUS charges Russian-Israeli as suspected LockBit ransomware coderU.S. CISA adds BeyondTrust software flaw to its Known Exploited Vulnerabilities catalogWashington County implements cybersecurity policy to combat potential ransomware attacksWebcams and DVRs Vulnerable to HiatusRAT, FBI WarnsWhy cybersecurity is critical to energy modernization19/12$2.2 billion stolen from crypto platforms in 2024 cyberattacks5M unique credit and debit cards exposed in data breachAlleged Data Breach at BASC.edu.ph Exposes Sensitive InformationAlleged Data Breach at SENATI Exposes 880,000 RecordsAlleged Data Breach at University of Baghdad Exposes Sensitive InformationAlleged Data Breach Exposes WhatsApp User Database in RussiaAlleged Discord Database Leak Raises Significant Security ConcernsAlleged Leak of Lunar Scampage Raises Concerns About Phishing SchemesAre threat feeds masking your biggest security blind spot?Best endpoint protection software of 2024Best firewall software of 2024Best malware removal of 2024BeyondTrust Remote Access & Support Flaw Enables Command Injection AttacksBeyondTrust says hackers breached Remote Support SaaS instancesBillion-dollar airline faces $450M fine over alleged GDPR violationsCERT-UA: Russia-linked UAC-0125 abuses Cloudflare Workers to target Ukrainian armyCISA Mandates Cloud Security for Federal Agencies by 2025 Under Binding Directive 25-01CISA orders federal agencies to secure their Microsoft cloud environmentsCISA Released National Cyber Incident Response Plan (NCIRP) – 2024CISA releases mobile best practices guide for high-value persons after China telecos attacksCISA Urges Use of End-to-End Encrypted Messaging Services like Signal, Following U.S. Telecoms HackCISA Warns of 4 New Vulnerabilities Exploited in the WildCRIL Investigates: LNK Files, SSH Commands, and the Evolution of Cyberattack TechniquesCriminals Abuse Microsoft Dynamics 365 to Steal User CredentialsCritical Chrome Vulnerabilities Let Attackers Execute Remote Code – Update NowCrypto-Hackers Steal $2.2bn as North Koreans DominateCryptocurrency hackers stole $2.2 billion from platforms in 2024Cybersec firm gets a ‘rare compliment’ as Moscow declares it ‘undesirable’Developers targeted by malicious Microsoft VSCode extensionsDutch DPA Fines Netflix €4.75 Million for GDPR Violations Over Data TransparencyEU Opens Door for AI Training Using Personal DataEuropol Reveals How Cyber Criminals Boost Economy By Hacking Legal BusinessesEuropol seizes €27M in cryptocurrencies from drug traffickersFacing TP-Link allegations, China blames the US for attacking its critical tech companiesFortinet Vulnerabilities Let Attackers Execute Arbitrary Code RemotelyFortinet warns about Critical flaw in Wireless LAN Manager FortiWLMFortinet Warns of Critical FortiWLM Flaw That Could Lead to Admin Access ExploitsFortinet warns of FortiWLM bug giving hackers admin privilegesGitHub Launches “Copilot Free” Access to 150 Million DevelopersGoogle Calendar Phishing Scam Targets Users with Malicious InvitesGoogle warns of holiday scam surge: how to protect yourself from fraudGovernment employees are still using Kaspersky despite the banHacker behind Racoon Infostealer sentenced to 5 years in federal prisonHacker group leaked Telecom Namibia's data after it refused to pay a ransomHackers Exploiting Azure Key Vault Access Policies To Read Sensitive DataHackers Exploiting FortiClient EMS Vulnerability (CVE-2023-48788) in the WildHackers leak Telecom Namibia data following ransom refusalHackers stole the data of 1.4m individuals from Texas Tech University Health Sciences CentresHikvision Camera Driver Vulnerability Records Login details in Log filesInternet-exposed HMIs are a risk to water facilities, CISA warnsInterpol Calls for an End to “Pig Butchering” TerminologyJuniper Warns of Mirai Botnet Targeting SSR Devices with Default PasswordsLeadership skills for managing cybersecurity during digital transformationLockBit Ransomware Group Plots Comeback With 4.0 ReleaseMicrosoft really wants users to ditch passwords and switch to passkeysMicrosoft says Auto HDR causes game freezes on Windows 11 24H2Midnight Blizzard hacking group hijacks RDP proxies to launch malware attacksMirai botnet targets SSR devices, Juniper Networks warnsNetflix fined $5 million by Dutch regulator for privacy violationsNew Malware Can Kill Engineering Processes in ICS EnvironmentsNew Mobile Phishing Targets Executives with Fake DocuSign LinksNew Phishing Attack Exploiting HubSpot Tools To Steal Microsoft Azure LoginsNorth Korean hackers steal $1.34B in crypto in 2024Políticos americanos não devem mandar SMS ou fazer ligações, orienta governoRaccoon Infostealer Admin Arrested for Hacking ComputersRansomware in 2024: New players, bigger payouts, and smarter tacticsRecorded Future CEO Calls Russia’s “Undesirable” Listing a “Compliment”They (don't) want you to know this: how hackers get "colossal" bountiesThousands Download Malicious npm Libraries Impersonating Legitimate ToolsThousands of GPS tracking customers have info leaked following data breachTop security solutions being piloted today — and how to do it rightUAC-0125 Abuses Cloudflare Workers to Distribute Malware Disguised as Army+ AppUkrainian hacker gets prison for infostealer operationsUS considers banning TP-Link routers over cybersecurity concernsUS government mulls entire TP-Link product ban - routers, switches and more all set to be blockedUS may ban Chinese TP-Link routers next year due to security risksUS Organizations Still Using Kaspersky Products Despite BanUS to Ban TP-Link Routers, as They Fuel Chinese Cyber Attacks"Vamos atingir a NATO e Portugal": site do Estado português atacadoVulnerability Exploit Assessment Tool EPSS Exposed to Adversarial AttackWiFi hacking for the everyday spyWindows 11 24H2 upgrades blocked on some PCs due to audio issues18/12Androxgh0st Botnet Targets IoT Devices, Exploiting 27 VulnerabilitiesAPT29 Hackers Target High-Value Victims Using Rogue RDP Servers and PyRDPAttacker Distributes DarkGate Using MS Teams Vishing TechniqueAuto parts maker LKQ Corporation says cyber attack impacted its Canadian operationsBADBOX Botnet Hacked 74,000 Android Devices With Customizable Remote CodesBeware Of Malicious SharePoint Notifications Delivering Xloader MalwareBeyondTrust fixes critical vulnerability in remote access, support solutions (CVE-2024-12356)BeyondTrust Issues Urgent Patch for Critical Vulnerability in PRA and RS ProductsCellebrite shatters smartphone security illusion: everything can be unlocked, researchers warnCISA and ONCD Push Cybersecurity for Federal Grants with New PlaybookCISA Issues Best Practices to Secure Microsoft 365 Cloud EnvironmentsCISA urges switch to Signal-like encrypted messaging apps after telecom hacksCisco Data Breach – IntelBroker Group Leaked 2.9GB of Data OnlineCISO accountability: Navigating a landscape of responsibilityCISOs should stop freaking out about attackers getting a boost from LLMsConsumers wrongly attribute all data breaches to cybercriminalsCredential phishing attacks rose by 703% in H2 of 2024Data breach comes back to haunt Meta as tech giant fined $260MEarth Koshchei Hackers Using Red Team Tools To Attack RDP ServersEuropean Commission Opens TikTok Election Integrity ProbeEuropean companies hit with effective DocuSign-themed phishing emailsGoogle’s New XRefer Tool to Analyze More Complex Malware SamplesGuernsey Revenue Service reprimanded for mishandling sensitive dataHacker rouba US$ 5,36 mi em criptomoedas aproveitando vazamento do LastPassHackers Exploit Google Calendar & Drawings to Bypass Email SecurityHackers Exploiting Linux eBPF to Spread Malware in Ongoing CampaignHealthcare software provider ConnectOnCall says cyber incident impacted over 900,000 individualsHubPhish Exploits HubSpot Tools to Target 20,000 European Users for Credential TheftHubSpot phishing targets 20,000 Microsoft Azure accountsInstant loan app leaks nearly 30 million files with user dataIntelBroker publishes partial data allegedly stolen from CiscoINTERPOL Pushes for "Romance Baiting" to Replace "Pig Butchering" in Scam DiscourseInterpol replaces dehumanizing "Pig Butchering" term with "Romance Baiting"INTERPOL To Replace ‘Pig Butchering’ Term With “Romance Baiting”Irish Data Protection Commission (DPC) fined Meta €251 million for a 2018 data breachKey steps to scaling automated compliance while maintaining securityKey strategies to enhance cyber resilienceLosses from LastPass breach continue to grow with another $12M stolenMalicious Microsoft VSCode extensions target devs, crypto communityMaximizing Productivity with Online Document SolutionsMeta Fined €251 Million for 2018 Data Breach Impacting 29 Million AccountsMeta Hit with Massive $263m GDPR FineMicrosoft Sentinel Launched Agentless Integration for SAP SecurityMultiple GStreamer Vulnerabilities Impact Linux Distributions Using GNOMENearly 400,000 WordPress credentials stolenNebraska sues Change Healthcare over massive data breach impacting 575,000 residentsNew Apache Tomcat Vulnerabilities Let Attackers Execute Remote CodeNew Attacks Exploit VSCode Extensions and npm PackagesNigeria Cracks Down on Cryptocurrency Investment Fraud and Romance ScamsNo Pornhub in Florida? Here's what's happeningNot Your Old ActiveState: Introducing our End-to-End OS PlatformOkta Warns of Phishing Attacks Mimic “Okta Support” to Steal MFA TokensONLY Cynet Delivers 100% Protection and 100% Detection Visibility in the 2024 MITRE ATT&CK EvaluationPatch Alert: Critical Apache Struts Flaw Found, Exploitation Attempts DetectedPhishing Attacks Double in 2024Polícia identifica hacker que invadiu sistema e apagou dados da Defensoria Pública do AmapáRecorded Future CEO applauds "undesirable" designation by RussiaThe Mask APT is back after 10 years of silenceThe Need for Specialized AI Models in Today’s Transforming Industry ChallengesThe open-source tools that could disrupt the entire IT incident management marketThousands of users in Europe getting malicious emails with DocuSign-enabled PDFsThreat Actors Abusing Cloudflare Workers Service To Deliver Weaponized ApplicationTop 10 Cyberattacks in 2024 that Stole the SpotlightUS Government Issues Cloud Security Requirements for Federal AgenciesUSAA settles $3.25 million data breach case, faces fresh allegations of negligenceVanir: Open-source security patch validation for Android17/121-Click RCE Attack in Kerio Control UTM Let Attackers Gain Root Access To the Firewall1.4M Affected in Texas Tech Data Breach, Ransomware Hits Hard5 Practical Techniques for Effective Cyber Threat Hunting10 Major Ransomware Attacks And Data Breaches In 202427 DDoS-for-hire operations shut down by law enforcement2024 cyber threat landscape highlights key attack trendsAll Major European Financial Firms Suffer Supplier Breaches‘All student records accessed’ in Granite School District data breachAlleged Cisco Source Code Leak Raises Security and IP ConcernsAlleged Data Breach at Platinum-Celebs.com Exposes 72,000 User RecordsAlleged Data Breach at RM Group of Education Exposes Sensitive User InformationAlleged Data Breach at Talentely.com Exposes TMS-LMS Platform DataAlleged Data Breach at Warid Telecom Exposes Sensitive User InformationAlleged Data Breach Exposes Information of 261,000 Insurance Agents in the U.S.Alleged Leak of 1.3 Billion Fresh URL Login Credentials Raises Serious Security ConcernsAttackers Exploit Microsoft Teams and AnyDesk to Deploy DarkGate MalwareAustralian Facebook users score $50 million settlement with Meta over Cambridge Analytica data harvesting scandalAzure Data Factory And Apache Airflow Integration Flaws Let Attackers Gain Write AccessBalancing security and user experience to improve fraud prevention strategiesBitter APT Targets Turkish Defense Sector with WmRAT and MiyaRAT MalwareCISA and FBI Raise Alerts on Exploited Flaws and Expanding HiatusRAT CampaignCISA releases first draft of updated National Cyber Incident Response PlanCISA Warns of Adobe & Windows Kernel Driver Exploited in AttacksCISA’s pre-ransomware alerts nearly doubled in 2024Cisco to Acquire Threat Detection Company SnapAttack to Power SplunkCleo data theft incident claimed by the Clop ransomware groupCritical Infrastructure Under Siege: 42% Spike in Ransomware Attacks on UtilitiesCybercriminals Exploit Google Calendar to Spread Malicious LinksCybersecurity Incident at Deloitte May Be Responsible for RIBridges Data BreachDarkGate Malware Distributed Via Microsoft Teams Voice PhishingDump user 'horrified' by Cornwall Council data breachEU Sanctions Russian Cyber Actors for “Destabilizing Actions”EU Watchdog Fines Meta $263 Million for Data BreachEven Great Companies Get Breached — Find Out Why and How to Stop ItExclusive-Major cloud providers could get key role in AI chip access outside the US, sources sayFake Hacking: What It Is & How to Protect Yourself?FBI biometrics division website outage claimed by Mr HamzaFBI Warns Of HiatusRAT Attacking Web Cameras & DVRs To Gain Full AccessGenAI is already here, but how is it affecting the labor market?GenAI: Security Teams Demand Expertise-Driven SolutionsHackers actively exploiting Windows flaw to gain system privileges, CISA warnsHackers Demand Ransom in Rhode Island Health System Data BreachHackers Exploit Microsoft Management Console to Drop Backdoor Payloads on WindowsHackers Exploit Webview2 to Deploy CoinLurker Malware and Evade Security DetectionHackers Leverage Red Team Tools in RDP Attacks Via TOR & VPN for Data ExfiltrationHackers Use Fake PoCs on GitHub to Steal WordPress Credentials, AWS KeysHackers Use Microsoft MSC Files to Deploy Obfuscated Backdoor in Pakistan AttacksHealthcare Cybersecurity: 2024 Was Tough, 2025 May Be BetterHealthcare hacking spree continues as another 225K exposedHelsinki City Board receives status update on Education Division data breachIntelBroker publishes partial Cisco dataIreland fines Meta $264 million over 2018 Facebook data breachKali Linux 2024.4 released! 14 new shiny tools addedKitsap Mental Health Services Notifies Individuals of Recent Data BreachLaunceston dump user ‘horrified’ by council data breachMalvertising on steroids serves Lumma infostealerMeta fined $263M over 2018 security breach that affected ~3M EU Facebook usersMight need a mass password reset one day? Read this first.Nebraska AG Sues Change Healthcare Over Data BreachNebraska Sues Change Healthcare Over ‘Historic’ Data BreachNew APIs Discovered by Attackers in Just 29 SecondsNew critical Apache Struts flaw exploited to find vulnerable serversNigerian Crypto-Romance Scam Leads to Nearly 800 ArrestsOrganizations Warned of Rise in Okta Support Phishing AttacksOver 25,000 SonicWall VPN Firewalls exposed to critical flawsPersonal data shared in new online booking systemPrefeitura de Itapema sofre ataque hacker e site fica fora do arRansomware Defender Risk: 'Overconfidence' in Security ToolsRansomware, deepfakes, and scams: the digital landscape in 2024RATs can sniff out your Chinese-made web cameras: here’s how to defend yourselfRCE Vulnerability in 1,000,000 WordPress Sites Lets Attackers Gain Control Over BackendResearchers reveal OT-specific malware in use and in developmentRevenue Service email data breach was one of severalRising scams involving phishing links swindled $36mn out of Carousell sellersRussia FSB relies on Ukrainian minors for criminal activities disguised as “quest games”Securities and Exchange Commission Settles Charges Against Flagstar for Misleading Investors About Citrix Data BreachSensitive data leaked after Namibia ransomware hackSophisticated TA397 Malware Targets Turkish Defense SectorStarbucks restores systems after Blue Yonder ransomware attackTexas medical school says hackers stole sensitive health data of 1.4 million individualsTexas Tech University Data Breach Impacts 1.4 MillionThe FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRsThe Mask APT Resurfaces with Sophisticated Multi-Platform Malware ArsenalThe shifting security landscape: 2025 predictions and challengesThirty-Five Years of Ransomware-CISCO Official Reveals Lessons LearntTop 10 cybersecurity misconfigurations: Nail the setup to avoid attacksUnlock and load: officials caught using Israeli spyware to snoop on Android usersU.S. CISA adds Microsoft Windows Kernel-Mode Driver and Adobe ColdFusion flaws to its Known Exploited Vulnerabilities catalogUS needs to do more make cyber attackers pay, Trump adviser saysUS Unveils New National Cyber Incident Response PlanVirtavo security camera users beware: app data spilled onlineVulnerabilidades no Windows e Adobe ColdFusionWindows Malware Phishing Attacks Target YouTubersWindows to block PornHub? German state leaders hope so16/12390,000 WordPress credentials compromised via phishing, GitHub reposAI deepfakes are targeting women in politics at alarming ratesAlleged Data Breach at ApolloGames.com Exposes Sensitive CRM DataAlleged Data Breach at CREFSP Exposes Full Database in São PauloAlleged Data Breach at Delhi Public Primary School Itarsi Exposes Sensitive RecordsAlleged Data Breach at HemenBahis Exposes Sensitive User InformationAlleged Data Breach at Rozavam.ru Exposes Sensitive Customer InformationAlleged Data Breach at SAIC in Brazil Exposes Sensitive InformationAlleged Data Breach at World Leadership Academy Exposes Sensitive InformationAlleged Data Breach Exposes Sensitive Legal Proceedings Data in ColombiaAlleged Leak of 1.5 Billion URL Login Credentials Raises Online Security ConcernsAlleged Leak of 200 Million URL Login Credentials Raises Privacy ConcernsAmnesty Accuses Serbia of Tracking Journalists and Activists with SpywareArctic Wolf Acquires BlackBerry’s Cylance Assents For $160 Million in CashAuthorities arrest 800 crypto romance scammers in Nigeria targeting Americans, EuropeansBADBOX malware hits 30,000 Android devices - make sure you update nowByte Federal Data Breach Exposes 58,000 Customer RecordsCicada3301 Ransomware Claims Attack on French Peugeot DealershipCISA and EPA Warn: Internet-Exposed HMIs Pose Serious Cybersecurity Risks to Water SystemsCl0p Ransomware Exploits Cleo Vulnerability, Threatens Data LeaksClop ransomware gang confirms it is actively exploiting Cleo MFT vulnerabilitiesClop ransomware gang confirms responsibility for Cleo data theft attackCl0p ransomware group says it was behind Cleo attacksCoinLurker, Next-Gen Tool Used by Threat Actors in Modern CyberattacksCombating the rising threat of AI-powered phishing attacksConnectOnCall breach exposes health data of over 910,000 patientsCritical Mullvad VPN Vulnerabilities Let Attackers Execute Malicious CodeCVE Assigned to Cleo Vulnerability as Cl0p Ransomware Group Takes Credit for ExploitationCyber attack forced Watsonville Community Hospital staff to rely on pen and paper to attend to patientsCyber attack on SRP Federal Credit Union compromised the data of 240,000 individualsCyber Daily announces return of the Australian Cyber Summit for 2025Cyberattack Targets Rhode Island’s RIBridges System, Compromising Sensitive Resident InformationData Governance in DevOps: Ensuring Compliance in the AI EraDecember 2024 Cyble Report: Malware, Phishing, and IoT Vulnerabilities on the RiseDeceptionAds Delivers 1M+ Daily Impressions via 3,000 Sites, Fake CAPTCHA PagesDeepfakes and AI attacks are worker's biggest security worriesDeloitte Alerts Rhode Island to Significant Data Breach in RIBridges SystemESET: RansomHub most active ransomware group in H2 2024Evasive Node.js loader masquerading as game hackFake Captcha Campaign Highlights Risks of Malvertising NetworksFake CAPTCHAs reaching millions: who’s responsible for malvertising mayhem?Fake job tasks are costing victims millions, FTC warnsFBI spots HiatusRAT malware attacks targeting web cameras, DVRsFBI subdivision firewall access listed by potential Schneider Electric hackerFBI Targets 764 Network: Man Faces 30 Years for Cyberstalking, CSAMFirmware Security: Identifying Risks to Implement Best Cybersecurity PracticesFirst man in the US sent to prison for hiding bitcoin profitHacker bounty fever: dopamine spikes and millions of dollarsHackers Attacking YouTube Creators with Weponized Collaboration RequestsHackers Claim to Have Stolen 17 Million Patient Records from PIH HealthHackers Exploiting Google Search Ads to Launch Malvertising CampaignsHackers Exploiting Microsoft Teams to Gain Remote Access to User’s SystemHackers targeting thousands of YouTubers with fake collaboration offers and infostealersHere’s what human collaboration with AI looks likeHow companies can address bias and privacy challenges in AI modelsHuge cybercrime attack sees 390,000 WordPress websites hit, details stolenKadokawa reportedly gives in to ransomware demandKaiser Permanente Employees Targeted via Malicious Google Search Ads to Deploy SocGholishMalicious ads push Lumma infostealer via fake CAPTCHA pagesMalware Hidden in Fake Business Proposals Hits YouTube CreatorsMassive Data Breach at Texas Tech University Health Sciences Centers: What You Need to KnowMedical Payment Company Facing Lawsuit in Nebraska Over Data BreachMultiple flaws in Volkswagen Group’s infotainment unit allow for vehicle compromiseMUT-1244 targeting security researchers, red teamers, and threat actorsNamibia’s state telecom provider says hackers leaked data after it refused to pay ransomNebraska AG files lawsuit against Change Healthcare following data breachNew Android NoviSpy spyware linked to Qualcomm zero-day bugsNew Glutton Malware Exploits Popular PHP Frameworks Like Laravel and ThinkPHPNew HDMI standard to be announced at CES 2025New Investment Scam Leverages AI, Social Media Ads to Target Victims WorldwideNoviSpy Spyware Installed on Journalist's Phone After Unlocking It With Cellebrite ToolOfcom Issues Guidance for Tech Firms to Tackle Online HarmsOverlooking platform security weakens long-term cybersecurity posturePhishing campaign targets Kaiser Permanente employees using Google AdsRansomware attack investigation continuing in Wood CountyRansomware attack targets Rhode Island public benefits systemRhode Island confirms data breach after Brain Cipher ransomware attackRhode Island hit by data breach as hackers demand ransomRhode Island left scrambling as Deloitte confirms breach likely impacting thousandsRussia Recruits Ukrainian Kids for Sabotage and ReconnaissanceSchools are facing greater cybersecurity threats than ever beforeSecurity experts respond to Krispy Kreme cyber attackSecurity leaders top 10 takeaways for 2024Serbian Authorities Use Novispy Spyware & Cellebrite Forensic Tools to Hack JournalistsSerbian government cracked phones with Cellebrite to install spyware, report saysSerbian government used Cellebrite to unlock phones, install spywareTelecom Namibia Hit by Massive Cyberattack: Over 400,000 Files LeakedTexas Tech University Health Sciences Center and Texas Tech Health El Paso Announce Massive Data BreachTexas Tech University System data breach impacts 1.4 million patientsThousands of Rhode Island citizens have data stolen after social services hit by cyberattackTic TAC Alert: A Remote Code Execution Vulnerability in Medical ImagingTop healthcare company exposes data on millions of patients - find out if you're affectedTrapster Community: Open-source, low-interaction honeypotTwo men arrested for 'hazardous drone' ops in Boston adding to UAP hysteriaUkrainian Minors Recruited for Cyber Ops and Reconnaissance in Russian AirstrikesUS government warns water firms to secure infrastructure at risk onlineUS sanctions Chinese firm over potentially deadly ransomware attackUS set to allow tech giants to control access to AI chipsWhy You Need Cyber Resilience and Defence in DepthWindows kernel bug now exploited in attacks to gain SYSTEM privilegesWith DORA approaching, financial institutions must strengthen their cyber resilienceYouTube Creators Targeted in Global Phishing Campaign15/122024 in retrospect: Lessons learned and cyber strategies shaping future of critical infrastructureAlleged Data Breach at Fédération Française de Football (FFF) Exposes Sensitive InformationAlleged Data Breach at Meat Expert Forum Exposes User InformationAlleged Data Breach at NivteIndia.in Exposes Sensitive User InformationAlleged Data Breach at University of Georgia Exposes Sensitive InformationAlleged Data Breach in Shandong Exposes Courier and Engineering Personnel DatabaseAlleged Leak of 5 Billion URL Login Credentials Raises Serious Security ConcernsClop ransomware claims responsibility for Cleo data theft attacksCurl Vulnerability Let Attackers Access Sensitive InformationCyberattack in Rhode Island: Sensitive data breach, hackers demand ransomCyberattack reported against Israeli banking servicesExploring Cyber-Darkness: How Moscow Undermines The West Via The Dark Web – AnalysisH2HC reuniu top hackers do Brasil e do mundoNotLockBit ransomware targets Apple users with advanced file-locking and data exfiltrationOrganizations should improve employee-wide cybersecurity awarenessPUMAKIT, a sophisticated rootkit that uses advanced stealth mechanismsResecurity introduces Government Security Operations Center (GSOC) at NATO Edge 2024Rhode Island cyberattack underscores security issues with digital public assistance programsRhode Island hit by data breach as hackers demand ransomWinnti hackers target other threat actors with new Glutton PHP backdoorYates County approves cyber security upgrades and contract renewalsDaily News - Dezembro (08/12 - 14/12) - 50 Semana de 2024
Comments