Dia a Dia da Segurança da Informação !!! Cyber Security and Information Security News - Daily Updates !! Weekly Review

14/01

Ataques hackers acendem alerta para maiores investimento em segurança digital nas instituições

Brave browser’s new Snowflake feature help bypass Tor blocks

Cacti Servers Under Attack as Majority Fail to Patch Critical Vulnerability

Canada's largest alcohol retailer's site hacked to steal credit cards

Cisco Issues Warning for Unpatched Vulnerabilities in EoL Business Routers

Community Health Network warns patients of data breach at Fishers location

Emerging cybersecurity trends using AI to combat cyber challenges and ensure privacy

Facebook Users Received Fake Copyright Strikes From Hackers

Four simple ways to improve your online security and protect your data from hackers

French CNIL fined Tiktok $5.4 Million for violating cookie laws

Hackers russos tentam contornar restrições da OpenAI para uso malicioso do ChatGPT

How to Secure Personal Data amid a breach?

It is time cybersecurity stopped being seen as a tech issue

Little Over a Week Left to Claim Money From T-Mobile's $350 Million Data Breach Settlement

Malware Attack on CircleCI Engineer's Laptop Leads to Recent Security Incident

NortonLifeLock is sending data breach notifications, get to know more about it

Russian Hackers Eager to Bypass OpenAI’s Restrictions to Abuse ChatGPT

Should We Be Concerned About OpenAI’s ChatGPT?

TikTok Fined $5.4 Million by French Regulator for Violating Cookie Laws

Top 5 stories of the week: ChatGPT, CES and cybersecurity advice from AWS

Twitter Sued Over Data Leak, Denies Responsibility

Why are there so many cyberattacks lately? An explainer on the rising trend

13/01

7 security predictions for 2023

38% global increase in 2022 cyberattacks with healthcare as the most targeted industry in India: Check Point Research

70% of apps contain at least one security flaw after 5 years in production

Armed Forces communications network remains uncompromised from attempted hacking

BC college warns students and staff of potential data breach

Better phishing, easy malicious implants: How AI could change cyberattacks

Beware: Tainted VPNs Being Used to Spread EyeSpy Surveillanceware

Biggest Cyber Attacks and Data Leaks in History

Bitdefender releases free decryption tool for MegaCortex

Britain’s International Mail Service Hit by Cyber Attack, Russian Ransomware Suspected

Building CyberSecurity Barriers for Enterprises with Zero Trust

Buttoning Up On The Basics: BEC Is A Simple Yet Precarious Attack Method

Cisco Warns of Critical Vulnerability in End-of-Life Routers

Citrix flaw exploited in ransomware attack against small US business

College confirms cyber attack brought down IT systems

Cyber attack on AIIMS not only hit hospital ops, but also academic processes

Cyber attack on private company stoping recorders offices from updating real estate records

Cyber Attacks on Hospitals for Children Cause More Than Pain

Cyber extortion group lists Trans Maldivian Airways (TMA) as a victim

Cyber security: Kicking 2023 off on the offensive

Cybercriminals Using Polyglot Files in Malware Distribution to Fly Under the Radar

Data Security: This Time, it’s Personal

DataSmart e Agile Cybersecurity Solutions unem-se para responder às Advanced & Persistent Threats no mercado português

December 2022’s Most Wanted Malware: Glupteba Entering Top Ten and Qbot in First Place

Defense Cyber Security Market to Reach $43.4 Billion, Globally, by 2031 at 7.7% CAGR: Allied Market Research

Digital License Plates: A Convenient Future or a Hacker’s Dream?

DVLA (Driving, Vehicle and Licensing Agency) warning to drivers as cyber criminals continue to target motorists

Employees concerned after Huron-Superior Catholic District School Board cyberattack

Euro Police Bust Multimillion-Dollar Crypto Fraud Gang

Europol takes down call centers that scammed Germans out of €2 million

Federal Communications Commission (FCC) Proposes To Strengthen Data Breach Notification Rules for Telecom Operators

FortiOS Flaw Exploited as Zero-Day in Attacks on Government and Organizations

FortiOS flaw was exploited to compromise governmental targets (CVE-2022-42475)

Fraude no IPVA 2023: como se proteger dos golpes que circulam na rede

Free cyber security support for small charities

Get Unified Cloud and Endpoint Security: Only $1 for 1,000 Assets for all of 2023!

Google Ad phishing campaign found distributing Rhadamanthys malware

Hacker offers data from Belgians for the second time

Hackers are using this old trick to dodge security protections

Hackers invadem perfil de rede social de natalense do BBB 23 e aplicam golpe do Pix nos seguidores

Hackers pró-Rússia reivindicam ataque informático que paralisou Royal Mail

Hamburg university is being blackmailed by hackers

How did hackers bring Royal Mail to a halt?

How to Implement a Foolproof IoT Cybersecurity Strategy

How to protect yourself from bot-driven account fraud

Illegal Crypto Transaction Volumes Hit All-Time High

Is ChatGPT a cybersecurity threat?

Knox College: Internal investigation shows sensitive personal info may be compromised

Liquor Control Board of Ontario (LCBO) has a warning for customers after "malicious" cyber attack

Market for Security Robots Grows, But Data Privacy Concerns Remain

Maximizing data value while keeping it secure

Meta sues ‘surveillance service’ for creating fake accounts and scraping user data

Millions of Insurance Customers Compromised Via Supplier

Nigerian cybercriminals arrested in Delhi by Tamil Nadu police after phishing attack on bank: Details

Nine Universities Receive $29 Million In NSF Grants To Prepare More Cybersecurity Workers

No cybersecurity training in 1/3rd of organisations: Hornet

NortonLifeLock warns that hackers breached Password Manager accounts

O que é ransomware e como se proteger

Ohio Supreme Court Rules Insurance Provider Not Required to Cover Cyber-attack Costs

Pepsi Kronos data breach $12.75M class action settlement

Pro-Russian Hacktivist Group Targets Czech Presidential Election

Ransomware attacks against schools are on the rise. Are Fort Worth districts ready?

Ransomware gangs are starting to ditch encryption

Royal Mail's Attackers Linked to Russia-Backed LockBit

Russia behind cyber-attack on candidates’ websites during presidential elections in Czech Republic

Russian Hackers Try to Bypass ChatGPT's Restrictions For Malicious Purposes

San Benito School Officials Share Cyber Attack Details

Securing Critical Infrastructure with Zero Trust

Sierra Pacific Industries faces cyber attack

Suspeito de tentar invadir sistema do BRB para extorsão chega ao DF

The Business of Cybercrime and What it Means for MSPs

This industry in India was ‘most targeted’ by hackers in 2022

Threat actors target govt networks exploiting Fortinet SSL-VPN CVE-2022-42475 bug

Twitter Says No Evidence Data Leak Originated From Its Servers

Up to 1,000 ships affected by DNV ransomware attack

Vulnerabilities in cryptographic libraries found through modern fuzzing

What Happens to a Customer After a Data Breach?

What Is Address Poisoning? Everything You Need to Know

Why are there so many cyberattacks lately? An explainer on the rising trend

12/01

6 oversights that enable data breaches

8 Guidelines On How To Handle Students’ Personal Information

10 Ways to Protect Your Organization from a Data Breach

12 Ways Hackers Can Attack and Take Control of Your Smart TV

$500 Million T-Mobile Data Breach Class Action Settlement

AI-generated phishing attacks are becoming more convincing

Alert: Hackers Actively Exploiting Critical "Control Web Panel" RCE Vulnerability

Android TV box on Amazon came pre-installed with malware

As Companies' Fears of Data-Breach Litigation Soar, Legal Terrain Rife With Uncertainty

Ataque hacker? Revelado motivo do apagão em sistema de aviação nos EUA

Black market crypto flows hit $20bn last year, with sanctioned Russian exchanges joining scammers, dark-net sellers and ransomware attackers as clandestine beneficiaries

British NFT Investments says hackers stole $250,000 worth of assets

ChatGPT: The infosec assistant that is jack of all trades, master of none

Cisco won’t fix router flaws even though PoC exploit is available (CVE-2023-20025, CVE-2023-20026)

Consolidated Class Action Lawsuit Filed Against Shields Health Care Group Sued Over 1.9 Million-Record Data Breach

Credential Stealing Flaw in Google Chrome Impacted 2.5 Billion Users

Critical vulnerabilities in Siemens PLC devices could allow bypass of protected boot features (CVE-2022-38773)

Cyber attack on Royal Mail that left letters in limbo was work of Russia-linked hackers

Cyber-Threat Actors Tailoring Attacks to Key Sectors

Cybersecurity, ransomware protections lacking in some Florida school districts

‘Dark Pink’ hackers target state and military organizations in Asia, Europe

Darktrace publishes 2022 cyber-attack trend data for energy & retail sectors globally

Data breach affecting vehicle registration

Data breach stalls property transfers in Columbiana County

Data Security: Your Ultimate Duty to Your Online Customer

Des Moines schools resume classes after cyber attack

DNV admits up to 1,000 vessels affected by ransomware attack

European police takes down call centers behind cryptocurrency scams

Experts Detail Chromium Browser Security Flaw Putting Confidential Data at Risk

Five Guys warns Granite Staters’ Social Security data was accessed in data breach

Fortinet: Govt networks targeted with now-patched SSL-VPN zero-day

Free decryptor for victims of MegaCortex ransomware released

Global Risks Report: Understand the risk landscape in 2023 and beyond

Google Chrome 'SymStealer' Vulnerability Could Affect 2.5 Billion Users

Guardian confirms Christmas 2022 cyber attack was ransomware

Guardian says employee records compromised in ransomware attack

Hackers linked to Russia behind Royal Mail cyber attack

Health system to pay patients $4K each for data breach

How Credential Misuse Threatens Cloud Operations

How To Build A Network Of Security Champions In Your Organization

How to cyber secure your apartment

IcedID Malware Strikes Again: Active Directory Domain Compromised in Under 24 Hours

Iowa school district grapples with data breach. More on the Twitter data breach. Police app leaks sensitive raid data. Australian fire rescue attacked by Vice Society

Jovem Pan lamenta ataque hacker em seus canais e cita tentativa de 'desestabilizar' credibilidade

Jovem Pan sofre ataque hacker

LastPass facing class action lawsuit following data breach

Los Angeles Housing Authority Hit By Cyber Ransom Attack

Marks and Spencer shoppers issued warning over scam sites offering fake £100 voucher

MetaMask warns of new 'Address Poisoning' cryptocurrency scam

Microsoft: Cuba ransomware hacking Exchange servers via OWASSRF flaw

Microsoft: Exchange Server 2013 reaches end of support in 90 days

Microsoft retracts its report on Mac ransomware

Microsoft's VALL-E will usher in new era of cyber crime

Não foi ataque hacker: arquivo corrompido gerou apagão em aviões dos EUA

Not All Multi-Factor Authentication Is Created Equal

Over 100 Siemens PLC Models Found Vulnerable to Firmware Takeover

Over 1,300 Domains Used to Deliver Notorious Information Stealer Malware

Over 21,000 Victims Fear Theft After San Benito Schools Hack

Patch Where it Hurts: Effective Vulnerability Management in 2023

Paysandu: ataque hacker em conta do Youtube preocupa direção do clube: 'São 10 anos de história'

Privacy Commissioner sounds alarm on rising data breaches

Pro-Russia hackers use Telegram, GitHub to attack Czech presidential election

QakBot Malware Used Unpatched Vulnerability to Bypass Windows OS Security Feature

Quarter of UK SMBs Hit by Ransomware in 2022

Ransomware attack exposes California transit giant’s sensitive data

Ransomware group with links in Russia behind UK Royal Mail incident -Telegraph

Royal Mail Halts International Deliveries After Cyber-Incident

Telegram Bot Abuse For Phishing Increased By 800% in 2022

The Guardian Confirms UK Members' Data Was Accessed in Ransomware Attack

The US Department of the Interior has a significant password issue

TruConnect Files Notice of Data Breach That Leaked as Many As 54,200 Consumers’ Social Security Numbers

TX Insurance Administrator Discloses Healthcare Data Breach

Twitter Denies Hacking Claims, Assures Leaked User Data Not from its System

Twitter: Leak of 200 Million Accounts Not Due to Historic Bug

Twitter responds to data breach claims: Nothing to see here

Vice Society ransomware claims attack on Australian firefighting service

Victims of Mediant Data Breach to Receive Up To $10,000 Each

Why the atomized network is growing, and how to protect it

11/01

4 key shifts in the breach and attack simulation (BAS) market

28% of businesses saw an increase in security incidents in 2022

77 percent of business managers believe their organizations are likely to experience a data breach in the next three years according to survey

2022’s Most Significant Data Breaches and Leaks

A guide to internet safety: Know terms like phishing, scamming and more

Applications Five Years or Older Likely to have Security Flaws

Attackers abuse business-critical cloud apps to deliver malware

Australian Healthcare Sector Targeted in Latest Gootkit Malware Attacks

Basic Strategies for Ensuring SaaS Ransomware Protection

Consumer Healthcare Data Stolen in Recent Ransomware Attack

Crypto audit of Threema revealed many vulnerabilities

Customer and Employee Data the Top Prize for Hackers – Imperva

Cyber attack takes entire school district offline in the United States

Cyber attack targets Iowa’s largest school district, disrupts online operations

Cybersecurity staff are struggling. Here's how to support them better

Dark Pink APT Group Targets Governments and Military in APAC Region

Data Breach at LG Uplus: 180,000 Customers' Personal Information Exposed

DDoS Attacks Hit Denmark Central Bank and 7 Private Banks

Expert warning not to fall for Marks & Spencer scam

Experts offer tips on facing rise in cyber threats

Facebook groups 'attacked by bots and scams' amid phishing boom

Google is calling EU cybersecurity founders

Hackers stole data of 460,000 individuals in MFHS ransomware attack

Healthcare Supply Chain Attacks Raise Cyber Security Alarm

How Restrictive Laws Are Pushing Chinese Cyber-Criminals Towards Novel Monetization Techniques

How to Recognize and Avoid Phishing Scams on Amazon

How to Find Out if Your Data is Being Sold to a Third Party

‘Love life’ at Oxford University shattered by data breach

Microsoft Issues January 2023 Patch Tuesday Updates, Warns of Zero-Day Exploit

Microsoft's first Patch Tuesday of 2023 delivers a massive 98 fixes

Multiple Danish Banks Disrupted By DDoS Cyber-Attack

New Analysis Reveals Raspberry Robin Can be Repurposed by Other Threat Actors

New APT Dark Pink Hits Asia-Pacific, Europe With Spear Phishing Tactics

New hires may spark increase in phishing attacks in 2023, predicts Mimecast

Organizations are adopting Security Service Edge (SSE) technology to secure hybrid work

Over 100 CVEs Addressed in First Patch Tuesday of 2023

Personal medical records not part of data breach: health authorities

Ransomware attack at Hope Sentamu Learning Trust in York

Report reveals that successful ransomware attacks were down 61 percent in 2022 compared to 2021

San Francisco BART investigates Vice Society’s data breach claims

Scattered Spider hackers use old Intel driver to bypass security

Sensitive Files From San Francisco Transit Police Allegedly Leaked

The most significant DDoS attacks in the past year

This fake Geek Squad email tricks you into calling a fraudster

Timeline of the latest LastPass data breaches

Twitter claims leaked data of 200M users not stolen from its systems

Ukraine ‘has to be ready for new more powerful and complex’ cyberattacks

Zurich Insurance Suffers Cyber Attack

Want to avoid phishing attacks and protect your personal data? Here’s a step-by-step guide

Watch out for phishing attacks after the latest credit breach

10/01

4 identity security trends to watch in 2023

7 Types of Identity-Based Attacks

244,300 patients potentially affected in colonoscopy prep retail site data breach

A Fake Pokemon Featured NFT Game is Controlling User Devices

Aflac, Zurich Policyholders in Japan Affected by Data Leaks

Air France-KLM's Flying Blue customers affected in loyalty programme breach

All you need to know about the ‘Godfather’ malware targeting this country’s financial system

Alleged Insider Access to Telegram Servers Sold on the Dark Web

Banks in Denmark face cyber attack

Bay Bridge Administrators, LLC Notifies Individuals of Data Breach

British company that helps make semiconductors hit by cyber incident

Building Zero-Trust Into API Security

California's Digital License Plates Have Already Been Hacked Just As Security Experts Warned

Canadian Union of Public Employees (CUPE) promises probe into ransomware hack at local Catholic Board

CircleCI Rotates GitHub 0Auth Tokens After Security Incident

CISA orders agencies to patch Exchange bug abused by ransomware gang

Consulate Healthcare Provides Notice of Third-Party Vendor Data Breach

Critical Infrastructure: Why It’s The New Target For Cybercriminals A Discussion With Ian Bramson

Cyber Attack Continues to Impact Local Records Offices

Cyber-attack on DNV impacts 6,000+ vessels using ShipManager software

Cyberattack keeps Iowa’s largest school district closed

Cybercrime-as-a-Service, Ransomware Still on the Rise

Data Breaches and Cyber Attacks in 2022: 408 Million Breached Records

Data Protection Commission assessing alleged Residential Tenancies Board (RTB) data breach involving Kerry letting agency

DDoS Attacks in Fintech - Time to Worry?

Delinea 2022 State of Ransomware Report Reveals That Attacks are Down 61% from the Previous Year, and Ransom Payments are Also on the Decline

Delinea: Ransomware Attacks Down 61% in 2022, Ransom Payments Also Drop

Des Moines, IA, schools closed following apparent cyber attack