DAILY NEWS: Fevereiro (19/02 - 25/02) - 08 Semana de 2023
Dia a Dia da Segurança da Informação !!! Cyber Security and Information Security News --- Daily Updates !! Weekly Review

25/02
6 Ways to Simplify Your Cybersecurity Efforts
Activision responde a rumores sobre ataque de hackers a suas informações
Caribbean Utilities Company (CUC) warns customers of fake email that is being circulated
Crypto-mining scheme run from US school crawl space
Data breach could include Huskie ticket sales
'Ethical hacker' among ransomware suspects cuffed by Dutch cops
Fake ChatGPT Clones Spread Malware to an Ample Windows and Android Devices
Fruit shortages could be on the way following Dole ransomware attack
FTX Hacker Has Started Dumping His Ether Holdings For Bitcoin, On-Chain Data Reveals
Hacker invade contas e rouba R$ 353 mil da Prefeitura de Belém do Piauí
Hackers deface over 32 Russian websites with Kremlin on fire video
Hackers Deface Russian Websites on Ukraine Invasion Anniversary
Hackers invadem sistema bancário e roubam R$ 353 mil de prefeitura no Piauí
How to avoid falling victim to an online scam – research says slow down
Jump Crypto and Oasis.app ‘counter exploits’ Wormhole hacker for $225M
Jump Crypto Just Paid $140 Million to Counter-Exploit Wormhole Hacker
PureCrypter malware hits govt orgs with ransomware, info-stealers
Sainsbury's and Argos issue warning about online air fryer scam
Serial hacker suspected of stealing psychotherapy patient records extradited to Finland
SMB Protocol: How It Works and What Makes It Vulnerable
Telus source code, staff info for sale on dark web forum
What churches need to know about avoiding cyber scams
24/02
5 healthy cyber habits to practice in 2023
7 Metaverse Crimes to Watch Out for in Virtual Worlds
A Year of the Russia-Ukraine War: Seven Types of Cyberattacks Used Against Ukraine
After GoAnywhere MFT hack, HHS again warns of Clop ransomware threat
Arkansas health system faces lawsuit regarding its November data breach
Asia-Pacific Faced the Highest Share of Cyberattacks in 2022
BrasDex: malware intercepta transferências via Pix de principais bancos do país
Brave browser to block “open in app” prompts, pool-party attacks
Bringing Cyber Security to the Flathead Valley
Chinese national accused of 2022 mass data leak
CISA Calls For Increased Vigilance One Year After Ukraine's Russian Invasion
CISA Sounds Alarm on Cybersecurity Threats Amid Russia's Invasion Anniversary
Commonwealth University notifies 2,158 physician assistant portal users affected by data breach
Companies Are Deploying Active Defense To Complement Traditional Denial-Based Cybersecurity Defenses
Cork cyber-security experts warn of huge jump in phishing attacks on businesses
Cyber Security Headlines: Dole ransomware attack, stress devours CISOs, new Lazarus backdoor
Cybersecurity in this era of polycrisis
Defenders on high alert as backdoor attacks become more common
Digital forensics and incident response: The most common DFIR incidents
DLL sideloading and CVE attacks show diversity of threat landscape
DNA testing service to pay $400k for data breach it ignored
Dole operations briefly paused in North America after ransomware hit
Dutch Police arrest three ransomware actors extorting €2.5 million
Employees bypass cybersecurity guidance to achieve business objectives
Emtec, Inc. Reports Data Breach Affecting Over 7,000 People Following Cyberattack
EU Commission Bans TikTok on Corporate Devices
Even Top-Ranked Android Apps in Google Play Store Provide Misleading Data Safety Labels
Experts predict how AI will energize cybersecurity in 2023 and beyond
Falha crítica em carteira de Bitcoin expõe chaves privadas de usuários
FedEx, DHL, and Apple – Top Phishing Scams of the Week
Firms Who Pay Ransom Subsidise 10 New Attacks: Report
Google Teams Up with Ecosystem Partners to Enhance Security of SoC Processors
Hacker deu uma nova vida ao clássico ThinkPad 701C
Hacker group defaces Russian websites to display the Kremlin on fire
Hacker invade Hogwarts Legacy e deixa mensagens de ódio contra homens e pessoas trans
Hackers are actively exploiting CVE-2022-47966 flaw in Zoho ManageEngine
Hackers usam aplicativos ChatGPT falsos para enviar malware para Windows e Android
Highly evasive cryptocurrency miner targets macOS
How to Prevent SQL Injection Attacks?
How to Tackle the Top SaaS Challenges of 2023
How to Use AI in Cybersecurity and Avoid Being Trapped
IBM report reveals vulnerable UK energy system among top targets for cybercriminals
In pirated copies of Final Cut Pro, embedded cryptocurrency mining malware was found
Injunctions – a valuable tool in data breach toolkit
Investment Scams Drive $9bn in Fraud in 2022
LockBit reduces ransom demand by half to £33m, but Royal Mail refuses to budge
Malicious actors push the limits of attack vectors
Microsoft announces automatic BEC, ransomware attack disruption capabilities
Microsoft: Here's how our technology disrupts ransomware and phishing attacks
More than 1.5 million Good Guys customers impacted by cyberattack
'New Class of Bugs' in Apple Devices Opens the Door to Complete Takeover
News Corp says state hackers were on its network for two years
Oakland says 311, business license systems still down, but National Guard is helping
Okta Report Surfaces Progress on Shift to Zero-Trust
Platypus Finance divulges its plans for recouping
Prefeitura de Pedra Branca é alvo de tentativa de ataque hacker em contas bancárias e abre B.O
Privacy Concerns Raised Over Android Apps' Data Safety Labels
Ransomware attack cripples Oakland’s 311 system as winter storm hits region
Ransomware attack forces Irish food production giant Dole to pause North American operations
Ransomware part of attack that compromised 2,000 LA student records
Revenue Cycle Management Company Reports Healthcare Data Breach Impacting 250K
Rockler Companies, Inc. Announces Data Breach Impacting More than 8,600 Individuals
Royal Mail stands firm as LockBit leaks data and renews ransom demand
Russian hacker behind NLBrute malware extradited to US
Russian IT “Brain Drain” Decentralizes Cybercrime
Should we Make Ransomware Payments Illegal?
Some Indigo employee data was stolen in ransomware attack, retailer now says
Stanford University discloses data breach affecting PhD applicants
Stay ahead of cyberattacks: A guide to cybersecurity
Suspect in major data theft case linked to Dutch-subsidized cybersecurity org.: report
The 3rd ROK-UK Cyber Dialogue Held in Seoul
The alleged author of NLBrute Malware was extradited to US from Georgia
The Good Guys targeted in historic data breach
These are the most secure countries for remote workers in 2023
Threat Groups Using Translation Tools in Phishing Attacks
University of Saskatchewan (USask) alerted about third-party data breach
What to expect at BSidesNYC 2023
23/02
Applications of Geospatial Data in Cybersecurity
Attackers reduce complexity to catch more potential victims
Australia retailer's customer data compromised in third-party breach
CISOs struggle with stress and limited resources
Clasiopa hackers use new Atharvan malware in targeted attacks
Commission strengthens cybersecurity and suspends the use of TikTok on its corporate devices
Cyber insurance is a hot topic for banks—here’s how to make sure it doesn’t become a hot potato
Cyber Sanctions: An Effective Weapon or Just Posturing?
Cyber security is an ‘arms race’ and rules are ‘changing every day’ for Medibank
Cyber Security Malaysia probing audit findings on data leak
Cyber Security: Weak, similar passwords for multiple accounts inviting online incursions
Cybersecurity layoffs in 2023: What to expect?
CyberSmart raises $15M for an all-in-one cybersecurity and insurance solution targeting SMBs
Dozens of Malicious 'HTTP' Libraries Found on PyPI
Experts Sound Alarm Over Growing Attacks Exploiting Zoho ManageEngine Products
Forsage DeFi platform founders indicted for $340 million scam
Fortinet FortiNAC CVE-2022-39952 flaw exploited in the wild hours after the release of PoC exploit
Fruit giant Dole suffers ransomware attack impacting operations
FTC: Americans lost $8.8 billion to fraud in 2022 after 30% surge
Hackers use fake ChatGPT apps to push Windows, Android malware
Hackers Use S1deload Stealer to Target Facebook, YouTube Users
Hackers Using Trojanized macOS Apps to Deploy Evasive Cryptocurrency Mining Malware
Hiperautomação, Cloud pública e Cybersecurity são as prioridades de TI para 2023
How cybersecurity executives make the case for continued tech investments in a tough economy
How to delete your Twitter account and protect your data, too
Huddersfield welcomes cyber security event this march
ICO Calls on Accountants to Improve SME Data Protection
iG Mail some com e-mails de clientes pagantes, culpa hackers e diz: “é a ponta do iceberg”
Insider threats must be top-of-mind for organizations facing layoffs
Lazarus Group Using New WinorDLL64 Backdoor to Exfiltrate Sensitive Data
Many cyber operations conducted by Russia are yet to be publicly disclosed, says Dutch intelligence
New S1deload Malware Hijacking Users' Social Media Accounts and Mining Cryptocurrency
New Hacking Cluster 'Clasiopa' Targeting Materials Research Organizations in Asia
New Video: Broken Promises and Bright Future – Preparing for the Next Wave of AI in Cybersecurity
NSA says: Do these things to keep your home network safe from cyberattack
Palo Alto Networks Is the Leading Cyber Security Play
Phishing Sites and Apps Use ChatGPT as Lure
Pirated Final Cut Pro infects your Mac with cryptomining malware
Python Developers Warned of Trojanized PyPI Packages Mimicking Popular Libraries
Researchers find hidden vulnerabilities in hundreds of Docker containers
Royal Mail cyber attack: Russian hackers claim data has been published after ransom refused
Russian Invasion Sparks Global Wiper Malware Surge
Russian malware dev behind NLBrute hacking tool extradited to US
Russia-Ukraine: New Norms in Cyber Warfare Emerging
SLSA and Developer Productivity Meet in 2023
Talon Cyber Security Now Available in the Microsoft Azure Marketplace
The European Commission has banned its staff from using TikTok over security concerns
The Good Guys customers' personal data stolen in cyberattack on third-party supplier
The potential pitfalls of open source management
The Secret Vulnerability Finance Execs are Missing
These experts are racing to protect AI from hackers. Time is Running Out
Top 10 Most Disruptive Cybersecurity Companies of 2023
Ukraine says Russian hackers backdoored govt websites in 2021
Users looking for ChatGPT apps get malware instead
Valve “honeypot” used to ban 40,000 Dota 2 players using cheat
Weak Creds, Unpatched Flaws, Reliance on Tools Plagued Orgs in 2022
Why Organizations Should Not Rely on the New EU US Privacy Framework in the Long-Term
WinorDLL64 Backdoor Linked to Lazarus Group
22/02
3 Steps to Automate Your Third-Party Risk Management Program
Add ChatGPT to your WordPress site with this plugin deal
Android voice chat app with 5m installs leaked user chats
Apple Bug Could Allow Attackers Access to Photos and Messages
Apple Warns of 3 New Vulnerabilities Affecting iPhone, iPad, and Mac Devices
Are your IoT devices at risk? Cybersecurity concerns for 2023
Attackers Flood NPM Repository with Over 15,000 Spam Packages Containing Phishing Links
Call of Duty Developer Confirms Phishing Attempt but Not Breach
CISA adds IBM Aspera Faspex and Mitel MiVoice to Known Exploited Vulnerabilities Catalog
Dutch cyber security professionals experience stress akin to soldiers in war zone, claims expert
Employees at Gaming Giant Activision Hit by SMS Phishing Attack
Experts found a large new class of bugs ‘class’ in Apple devices
Gcore Thwarts Massive 650 Gbps DDoS Attack on Free Plan Client
Google investigates Gmail IMAP sync issues affecting Outlook users
Hackers now exploit critical Fortinet bug to backdoor servers
Hackers russos atacam sites de empresas e instituições italianas
How a hub and spoke model can future-proof your cloud deployment
How to easily back up your Mac onto a USB drive (and feel like James Bond doing it)
How to set up a VPN on your router
Hydrochasma Group Targets Asian Medical and Shipping Sectors
Hydrochasma hackers target medical research labs, shipping firms
Hydrochasma: New Threat Actor Targets Shipping Companies and Medical Labs in Asia
Interview: Ciaran Martin’s New Chapter in Cybersecurity
Minister of State announces UKG investment for NI’s Cyber Security industry
Most vulnerabilities associated with ransomware are old
New S1deload Stealer malware hijacks Youtube, Facebook accounts
North Macedonia steps up security after cyber attacks and bomb hoaxes linked to Ukraine war
Npm Packages Used to Distribute Phishing Links
Open Source Flaws Found in 84% of Codebases
Phishing, king of compromise, remains top initial access vector
Putin Speech Interrupted by DDoS Attack
Rádios russas transmitem ataque de míssil falso após invasão hacker
Resecurity warns about cyber-attacks on data center service providers
Shield your router so that it is not the gateway to a cyber attack
The top security threats to GraphQL APIs and how to address them
This threat to Android security is often overlooked. Google wants to change that
Threat Actors Adopt Havoc Framework for Post-Exploitation in Targeted Attacks
Time Taken to Deploy Ransomware Drops 94%
U.S. Cybersecurity Agency CISA Adds Three New Vulnerabilities in KEV Catalog
Valve waited 15 months to patch high-severity flaw. A hacker pounced
VMware addressed a critical bug in Carbon Black App Control
VMware patches critical injection flaw in Carbon Black App Control (CVE-2023-20858)
VMware Patches Critical Vulnerability in Carbon Black App Control Product
VMware warns admins of critical Carbon Black App Control flaw
What is Cybersecurity? Definition, Meaning, and Purpose
What is the Best Pen Testing Schedule for Your Development Cycle?
Who is responsible for cybersecurity in the home?
Why Zero Trust Isn’t a Silver Bullet for Security
21/02
59.7M patient records were breached in 2022: 7 things to know
Activision confirms data breach exposing employee and game info
Activision employees reportedly found out about data breach on social media
Activision suffered a data breach; Hackers steal games and employee data
An Overview of the Global Impact of Ransomware Attacks
Belfast construction firm targeted by group behind Royal Mail ransomware attack
CentraState Data Breach – Can you sue the hospital?
ChatGPT is bringing advancements and challenges for cybersecurity
Civil liberties groups call for EU-wide ban on spyware
Coinbase Employee Falls for SMS Scam in Cyber Attack, Limited Data Exposed
Coinbase explains how ‘0ktapus’ hacker accessed corporate directory
CommonSpirit Health Ransomware Attack Leads to $150M in Losses To Date
Complexity, volume of cyber attacks lead to burnout in security teams
Cyber attack strikes Virgin Media TV
Cyber attack targets FBI field office in New York
Cyber security training: Insights for future professionals
Cybercrime, Crypto Scams on the Rise in Portugal, Say Prosecutors
Cybersecurity Burnout – Human vs Machine
Cybersecurity startups to watch, according to VCs
Dark web threats are rising. Should small businesses be concerned?
Data privacy violations are the new cyber threats for insurers
DNA Diagnostic Center fined $400,000 for 2021 data breach
ESXiArgs Ransomware Has Spread to 500 New Targets in Europe. Will there be More?
Ethereum Denver fell victim to a Phishing Attack
Even hackers are reportedly getting laid off by organized crime groups
Exploit released for critical Fortinet RCE flaws, patch now
Fifth of Brits Have Fallen Victim to Online Scammers
Folkestone: Rocksalt customers' data at risk after restaurant targeted by scam
GoDaddy Confirms Multi-Year Data Breach with Stolen Source Code and Customer Data
Google Protected Computing: Ensuring privacy and safety of data regardless of location
Google will boost Android security through firmware hardening
Guidance on staying cyber-secure when you’re out of the office
Hackers Exploit Privilege Escalation Flaw on Windows Backup Service
Hackers steal Activision's upcoming COD games, 'employee data'
HMRC issues new scam warning to every taxpayer with an email account
How advancing cyber education can help fill workforce gaps
How South African businesses can start the financial year digitally secure
How to Build a Robust Cybersecurity Strategy for Your Startup
Imperva releases its Global DDoS Threat Landscape Report 2023
Internal data breach in Husbanken
Ireland Set to Notify 20,000 More Health Data Breach Victims
Irish TV broadcaster says attempted hack will affect programming
Is blockchain really secure? Here are four pressing cyber threats you must consider
Israel's Top Tech University Targeted by DarkBit Ransomware
Kim Kardashian Twitter hacker to be extradited to US
Koreans lost nearly W1.7t to phishing scams over past 5 years: data
Largest Exit Scam on Arbitrum: Hope Finance Drained for $2M
Lehigh Valley Health Network and MKS Instruments Recovering from Ransomware Attacks
Login Details of Tech Giants Leaked in Two Data Center Hacks
LockBit gang takes credit for attack on water utility in Portugal
Miscommunication in organisations can lead to cybersecurity incidents: Report
Multi-Factor Authentication Is Crucial for IoT Security
MyloBot Botnet Spreading Rapidly Worldwide: Infecting Over 50,000 Devices Daily
New Jersey hospital facing lawsuit for data breach that affected 671,000 patients
New Privilege Escalation Bug Class Found on macOS and iOS
New report reveals Britons are ‘phishing’ bait for online criminals
Oakland ransomware attack: Here's a look at how other cities solved their cyberattacks
Phishing attacks: The phisherman, the phish, the bait and the hook
PoC exploit, IoCs for Fortinet FortiNAC RCE released (CVE-2022-39952)
Political motive behind hacking RailYatri data: Hacker
RailYatri Data breach – Over 31 Million Users Data Exposed
Ransomware attack on semiconductor giant Applied Materials’ supplier will cost $250 million