DAILY NEWS: Junho (18/06 - 24/06) - 25 Semana de 2023

Felipe Prado
19 de jun. de 2023
20 min de leitura

Atualizado: 26 de jun. de 2023

Cyber Security and Information Security News --- Daily Updates !! Weekly Resume

24/06

45,000 New York City (NYC) students among the victims of MOVEit global data breach, Department of Education (DOE) officials say

A Global Hack Blamed On Russian Thieves Hits An Insurance Company And A Pension Fund In California

Airline data breach: Major companies warn staff thousands had their information exposed

American and Southwest Airlines Third-Party Vendor Suffered a Data Breach

American Airlines, Southwest Airlines disclose data breaches affecting pilots

Another data breach at NYC schools exposes student and staff information

City of Fort Worth Assessing Impact After Data Breach by Hacktivist Group

CoWIN Data Leak: 2 brothers held in Bihar for uploading data on Telegram

Dallas Public Library system back up weeks after ransomware attack

Data Breach Exposes Personal Information of 3.5 Million Oregon Residents

Data breach exposes sensitive information on NYC Public Schools’ students and staff

Founder of the World’s Largest Hacker Forums Arrested

GPT-4 and Cybersecurity: Defending Against AI-Powered Threats

Hackers atacam 100 mil contas do ChatGPT; Brasil é o 3º mais afetado

Here’s How Atomic Wallet Hacker Moved 22M+ XRP on XRPL

How switching off your mobile phone 5 minutes daily may help fight hacking

Keeping brand reputation strong: All it requires is avoiding data breaches

Massive Data Breach Exposes Over 1 Lakh ChatGPT Accounts, India Most Affected

Military Drone Hacking: Assessing the Threat of Cyber Warfare

National Security Compromised as Cyber attack Forces Manual Cheque Clearing in Pakistan

North Korea's Cyberspying Extends Beyond Cryptocurrency To Target State Secrets, Says Report

Pak-based hackers target Indian Army, education sector in new cyber attack

Police issue phishing warning to businesses after spate of scam emails

School dropout who quit before GCSEs fighting US extradition over '£400m computer hack'

Southern Illinois University investigating possible cyberattack

Sweetwater Union High School District confirms data breach caused outages in February

Thanks to Israel your government is spying on you via your phone

The Evolution of Cyber Warfare Tactics and Techniques

The Evolution of Electronic Warfare: From Jamming to Cyber Attacks

The Importance of Cybersecurity Measures for Small Modular Reactors

The Rise of Spear Phishing: How Advanced Anti-Phishing Technologies Can Help

The Risks of Data Breaches in Precision Agriculture

Twitter Hacker Sentenced to 5 Years in Prison for $120,000 Crypto Scam

U.S. Cybersecurity Agency Adds 6 Flaws to Known Exploited Vulnerabilities Catalog

What Is a Multi-Factor Authentication Prompt Bombing Attack?

23/06

1.5M people exposed in biggest MOVEit bug breach so far

8,500 phishing cases in Singapore in 2022; more than 80% spoofed a bank or financial service

Big Four Bank Data Lost in HWL Ebsworth Cyber-Attack

BlackCat ransomware gang threatens to post plastic surgery photos

CalPERS pension fund impacted by MOVEit breach

Cambridgeshire County Council apologises for sharing residents’ data in Mill Road Bridge email

Capital One becomes latest bank affected by cyberattack on debt-buying giant

China Likely Also Sought IP In Barracuda Attacks: Researcher

Chinese Espionage Malware Targets European Healthcare via USB Drives

CISA Alert: LockBit Ransomware Extorted $91 Million from US Organizations

CISA orders agencies to patch iPhone bugs abused in spyware attacks

Clop names PWC, Ernst & Young, and Sony in MOVEit hack

CoWIN Data Leak: Two Bihar Brothers Apprehended For Allegedly Leaking Data From Portal On Telegram

Crypto Security: Safeguarding Your Digital Assets in a Decentralized World

Czechia engaged in information war with Russia, says president

Cyberattack may cost town more than $245K

Cybercrime Group 'Muddled Libra' Targets BPO Sector with Advanced Social Engineering

Data from some students and alumni copied during University cyber attack

Detectives ask Northern Ireland businesses to be on their guard against phishing scammers

FBI Analyst Gets Three Years For National Security Breach

FBI seizes BreachForums after arresting its owner Pompompurin in March

Feds seize notorious and shuttered hacking site BreachForums

Former Highmark employee accused of hacking customer accounts, stealing thousands of dollars

Fortinet fixes critical FortiNAC remote command execution flaw

Fullerton Healthcare and vendor face fines over data breach as hospital strengthens cybersecurity

Hacker que vazou nudes de ex-atriz da Disney implora para não pegar cadeia e diz ser 'recluso solitário'

Hacker responsible for 2020 Twitter breach sentenced to prison

Hackers invadem contas do ChatGPT e fazem leilão de dados roubados; Brasil é o terceiro país mais afetado do mundo

Hawaii Community College targeted in ransomware attack

High-severity vulnerabilities patched in popular domain name software BIND

How to Secure Your Smartphone and Protect Your Privacy in 2023

Infosecurity Europe: BlackBerry Cybersecurity President Warns Against Heavy-Handed AI Regulation

Insurance companies neglect basic email security

Iowa School District Says 35K Affected in January Cyber Attack

Is Cyberinsurance a Vital Protection Against Ransomware?

ITx Notifies SoutheastHEALTH Patients that GoAnywhere Data Breach Leaked Their Confidential Information

John Hopkins University suffers data breach

Know what to do if your personal information is exposed in a breach

Latest Coinbase Phishing Scam is a Warning to Everyone

LockBit ransomware is evolving: Apple and ARM devices in the crosshairs

Manchester University Breach Victims Hit with Triple Extortion

Marylanders advised to protect identity after state affected by major data breach

Marymount Manhattan College data breach $1.3M class action settlement

Medical supplier Apria sued over massive data breach

Microsoft Teams vulnerability allows attackers to deliver malware to employees

MOVEIt breach impacts Genworth, CalPERS as data for 3.2 million exposed

MOVEit hack claims Calpers and Genworth as millions more victims impacted

NCSC Updates Cybersecurity Guidance for the Legal Sector

Nearly 10 Million Driver’s License Holders Exposed in the Oregon DMV and Louisiana OMV Cyber Attack

New Cryptocurrency Mining Campaign Targets Linux Systems and IoT Devices

New ransomware gang 8BASE behind surge of May attacks

New South Wales Cashless Gaming in Jeopardy Following Cyber Attack

NSA Releases Guide to Combat Powerful BlackLotus Bootkit Targeting Windows Systems

OpenSSH Trojan Campaign Targets IoT and Linux Systems

Operationalizing zero trust in the cloud

Passkey (Passkey Authentication)

Passwordless Authentication and the Internet of Things: A Perfect Match

Patched OpenSSH Exploited for IoT, Linux Cryptomining

Police Smash Criminal Ring Using Fake Court Summons To Extort Victims

Powerful JavaScript Dropper PindOS Distributes Bumblebee and IcedID Malware

Public transit systems remain vulnerable to cyber threats

Ransomware and phishing attacks continue to plague businesses in Singapore

Risks to critical infrastructures remain top cybersecurity concern - report

Russia is targeting the US homeland with its strategy of Cyber Armageddon

Russian-backed hackers could be targeting Canada's energy sector, intelligence agency says

San Luis Obispo (SLO) County Office of Education latest California agency to suffer from data breach

Security investments that help companies navigate the macroeconomic climate

Singapore phishing targets increased to 8,500 and ransomware attacks stood at 132 in 2022: CSA

Some hospitals are one ransomware attack away from closing

Southern Illinois University Targeted in MOVEit Hack

Study Identifies Lack of Preparedness for Ransomware Attacks in Emergency Departments

The Philippines: Department of Information and Communications Technology (DICT) forms special task group to counter phishing, cyber scams

The Power of Browser Fingerprinting: Personalized UX, Fraud Detection, and Secure Logins

The Risks of Insufficient Privacy and Security Measures in Smart Cities

The Urgent Need to Enhance Cloud Data Security In 2023

To pay or not to pay? Ransomware attacks are the new kidnapping

Two brothers in Bihar stole CoWin data, misused mother's official ID to access info

UK cyberspies warn ransomware crews targeting law firms

University of Manchester confirms data theft in recent cyberattack

UPS discloses data breach following exploitation of customer info in SMS phishing attacks

U.S. military members receive unsolicited smartwatches in the mail

US Military Personnel Warned of Malicious Smartwatches

USB Drives Used as Trojan Horses By Camaro Dragon

Vincera Institute Files Notice of Data Breach Following Ransomware Attack

Zero Trust and deep observability: the cybersecurity paradigm

22/06

6 Attack Surfaces You Must Protect

$10 million reward offered for information on Cl0p ransomware gang

15% of law firms feel they have security gaps

40% of IT workers admit to working 50+ hour weeks consecutively

58 percent of malware families sold as a service are ransomware

87% of web-based businesses faced two or more threats at the same time

90% of Portuguese domains are vulnerable to phishing and spoofing

100,000 ChatGPT Accounts Hacked in Malware Attack

Alert: Million of GitHub Repositories Likely Vulnerable to RepoJacking Attack

Almost 770,000 Calpers members hit by cyber attack

Another victim of the MOVEit file hosting vulnerability was the owner of Avast and Norton antivirus programs

Apple Addresses Exploited Security Flaws in iOS, macOS and Safari

Apple corrige falhas de segurança exploradas por hackers

Apple fixes zero-day vulnerabilities used to covertly deliver spyware (CVE-2023-32435)

Apple patches exploits used in spy campaign ‘Operation Triangulation’

Are DDoS Attacks a Hacker Goldmine for Cybercriminals?

Aumenta interesse de ataques hackers em infraestruturas de telecom

Beware of Gambling Apps Used for Phishing, GCash Warns Users

Big tech is actually doing all this with your personal data. True or false?

Billing vendor: Data breach could impact over 200K CoxHealth patients

British law firms warned to upgrade cyberdefenses against ransomware attacks

CalPERS participants' personal information exposed in data breach

Camaro Dragon Hackers Strike with USB-Driven Self-Propagating Malware

ChatGPT shows promise in detecting phishing sites

China-sponsored APT group targets government ministries in the Americas

Cl0p Denies UK Data Breach

Cloud-native security hinges on open source

Connected Devices Conspicuously Absent from 2023 Verizon Data Breach Investigations Report

Consider a career in cyber security

CoWin data breach: Delhi Police nabs Bihar man and minor in probe

Critical Flaw Found in WordPress Plugin for WooCommerce Used by 30,000 Websites

Current Technologies That Make You Vulnerable to Hacker Attacks and How to Protect Yourself

Cybersecurity efforts need to be stepped up, DNV reports

‘Deeply suspicious’: Hackers target cashless gaming trial

Digital Health Company Suffers Breach, 103K Impacted

Dole says February ransomware attack breached data of almost 3,900 US workers

Driver and Vehicle Licensing Agency (DVLA) scam warning to drivers over email that could steal your bank details

EU-supported cybersecurity exercise enhances Moldova’s resilience against cyber threats

Finra Issues Cybersecurity Alert After Recent Hack

Fullerton Health and its vendor fined after patients' data offered for sale on dark web

Generative-AI apps & ChatGPT: Potential risks and mitigation strategies

Genworth Financial's Life-Insurance Data Compromised by Data Breach

Hacker descobre “Modo Elon” que ativa condução totalmente autônoma em modelos da Tesla

Hacker descobre “modo secreto” para dirigir carros Tesla sem as mãos

How a Layered Security Approach Can Minimize Email Threats

Hybrid Microsoft network/cloud legacy settings may impact your future security posture

Increased spending doesn’t translate to improved cybersecurity posture

Infosecurity Europe: Angoka Named UK's Most Innovative Cyber SME of 2023

Infosecurity Europe Case Study: Attack Surface Operations at Nationwide

Infosecurity Europe: Drones Contain Over 156 Different Cyber Threats, Angoka Research Finds

Infosecurity Europe: Dunelm Shifts Security to the Edge

Infosecurity Europe: Hackers Are the Immune System of the Digital Age

Infosecurity Europe: Experts Highlight Evolving Attack Techniques

Infosecurity Europe: Industry Pros Urged to Advocate Neuroinclusion

Infosecurity Europe: Internet of Things Continues to Pose Security Risk

Infosecurity Europe: It’s Time to Think Creatively to Combat Skills Shortages

Internal staff data ‘compromised’ in cyber attack on Peter Mark

Iowa's largest school district says January ransomware attack affected over 6,500 individuals

Kannact & Vincera Institute Fall Victim to Cyberattacks

Largest public pension fund in US affected by MOVEit breach

LockBit Developing Ransomware for Apple M1 Chips, Embedded Systems

Manchester University students threatened by ransomware gang

Massachusetts-based software gets hacked, exposing millions of Americans’ personal data

Medibank says MOVEit Transfer breach compromised employees' names, emails, and phone numbers

Mirai botnet targets 22 flaws in D-Link, Zyxel, Netgear devices

Microsoft: Hackers hijack Linux systems using trojanized OpenSSH version

Microsoft Teams bug allows malware delivery from external accounts

Millions of GitHub repos likely vulnerable to RepoJacking, researchers say

Millions of medical devices in UK hospitals are completely unprotected against hackers

Mondelez reveals that attackers stole employee data

MULTI#STORM Campaign Targets India and U.S. with Remote Access Trojans

National Cyber Security Centre (NCSC) Removes Thousands of Email Scams With Reporting Service

NCBA Loop Customers: Beware of an Email Hack Attempt on Your Account

New strain of JavaScript dropper delivers Bumblebee and IcedID malware

North Carolina Department of Public Instruction (DPI) sent $165k to fraudster in phishing scam

Norton parent firm Gen Digital, was victim of a MOVEit ransomware attack too

Now BlackCat extortionists threaten to leak stolen plastic surgery pics

NSA shares tips on blocking BlackLotus UEFI malware attacks

Opaque Systems releases new data security, privacy-preserving features for LLMs

Over 100k ChatGPT accounts stolen in dark web hacker attack

Over two-thirds of Canadian execs view cybercrime as biggest threat

Prepare Your Team to Deal With Online Threats with This $50 Cybersecurity Bundle

Pro-Russian hackers attack the European Investment Bank

PyPI Attackers Still At It: Malicious Packages Drop Trojans and Info-stealers

RangeForce launches Defense Readiness Index to measure businesses’ cybersecurity capabilities

RedEyes Group Targets Individuals with Wiretapping Malware

Russian National Arrested in LockBit Ransomware Campaign Against U.S., Foreign Businesses

San Luis Obispo (SLO) County Office of Education Hit by Cyber Attack

Silobreaker unveils new geopolitical cyber threat intelligence capabilities

Some CoxHealth Patients Victim Of Data Breach

Spanish companies are more commonly attacked by ransomware, but pay less ransom. Security

Strengthening Security: The Importance of Multi-Factor Authentication in Healthcare

Teams is prone to modern malware, new research shows

The Importance Of Identity For SaaS Security

The next wave of cyber threats: Defending your company against cybercriminals empowered by generative AI

This $6 USB condom can protect your data in the most unsuspecting places

Three Cybersecurity Red Flags Investors Should Look Out For

Top Crypto Attacks and Why They Happened

Trellix Detects Leading Threat Actor Countries Behind Nation-State Activity

Understanding the interplay between DevOps productivity and security

Unraveling the multifaceted threats facing telecom companies

Unveiling the Unseen: Identifying Data Exfiltration with Machine Learning

UPS discloses data breach after exposed customer info used in SMS phishing

US intelligence is buying your data – in bulk

US Justice Department Launches New National Security Cyber Section

VMware fixes vCenter Server bugs allowing code execution, auth bypass

Zero-Day Alert: Apple Releases Patches for Actively Exploited Flaws in iOS, macOS, and Safari

Why Your CEO Needs To Be A Cybersecurity Expert

21/06

3 in 4 people at risk of being hacked due to poor password practices

6 Frequent Mistakes that Might Cause a Data Breach in Your Enterprise

92% of survey respondents are concerned about compromised credentials

Alert! Hackers Exploiting Critical Vulnerability in VMware's Aria Operations Networks

An Executive Guide To Email Hygiene: Secure Communication And Boost Business Value

Apple fixes zero-days used to deploy Triangulation spyware via iMessage

APT37 hackers deploy new FadeStealer eavesdropping malware

Are Satellites Vulnerable to IoT Cyber Attacks?

As mensagens ameaçadoras de um hacker para um delegado: “Aguarde, safado”

Atlanta Women’s Health Group Data Breach Impacts 33,800 Patients

Australia plans to mandate file scanning for all tech companies

Bitcoin ATM operator demands Texas sheriff return funds seized in ransomware scam

BlackCat Group claims responsibility for Reddit hack

BlackCat ransomware group claims major cyber attack on Reddit; threatens to leak stolen data

Capita to face class action lawsuit over data breach

Chinese APT15 hackers resurface with new Graphican malware

Chinese Hacker Group 'Flea' Targets American Ministries with Graphican Backdoor

City of Melville delays implementing privacy policy weeks after data breach

Clicks limits access to customers' personal data after cyber attack

Clop ransomware claims it has no data from BBC, BA, Boots

Compromised ChatGPT accounts garner rapid dark web popularity

Compromised Domains account for over 50% of Embedded URLs in Malware Phishing Campaigns

Critical 'nOAuth' Flaw in Microsoft Azure AD Enabled Complete Account Takeover

DDoS Attack Hits European Investment Bank – Websites Unavailable

Department of Justice (DoJ) creates new National Security Cyber Section

Digital-first economy introduces unforeseen risks for 89% of CISOs

Dutch ports fall victim to Russia-friendly hackers again

Elon Mode: hacker descobre modo totalmente automático em veículos Tesla

Empowering Google security and networking solutions with AI

European Council agrees to water down protections for journalists from spyware

Experienced China-based hacking group has new backdoor tool, researchers say

Fake OnlyFans content is luring users into installing malware

FIIG Securities hit with cyber breach

Five ways hackers can steal your data on public Wi-Fi

FTC: Amazon trapped millions into hard-to-cancel Prime memberships

Good Samaritan Hospital pays 'undisclosed amount' to resolve data breach suit

Hacker group BlackCat threatens to leak 80GB of stolen Reddit data

Hawaii Community College Suffers Ransomware Attack

HHS warns industry about resurfaced ransomware group after attack on cancer center

Honda ecommerce platform vulnerability: a walkthrough

How to create SBOMs for container images

Infosecurity Europe 2023 video walkthrough

Infosecurity Europe: Compliance Does Not Mean Security, Experts Warn

Infosecurity Europe: Cybersecurity Industry Still Fighting to Recruit and Retain Talent

Infosecurity Europe: Does Pentesting Need a New Service Model?

Infosecurity Europe: Financial Firms to Build Resilience in Face of Growing Cyber-Threats

Infosecurity Europe: From Passion to Profession, Becky Pinkard's Dedication to Cybersecurity

Infosecurity Europe: LastPass CEO Acknowledges Communication Failings During 2022 Breaches

Infosecurity Europe: One in Three UK&I Workers Susceptible to Phishing

Infosecurity Europe: Security Training Failures Impacting Digital Transformation

Infosecurity Europe: Security Training Needs to Nudge, Not Nag

Infosecurity Europe: Transparency and Context Key to Insider Risk Management

Infosecurity Europe: Why API Security Could Be the Next Big Thing in Cyber

Ireland's transport system among those at risk from cyber attack says major threat assessment

Louisiana and Oregon motor vehicle departments victimised by MOVEit Transfer hack, millions affected

Maryland Urges Identity Protection Following Major Cyber Attack

Military Satellite Access Sold on Russian Hacker Forum for $15,000

Modo Elon: hacker descobre um recurso secreto em carros da Tesla

MOVEIt Vulnerability: A Painful Reminder That Threat Actors Aren’t the Only Ones Responsible for a Data Breach

New Condi Malware Hijacking TP-Link Wi-Fi Routers for DDoS Botnet Attacks

New Report Exposes Operation Triangulation's Spyware Implant Targeting iOS Devices

Norton LifeLock owner, Vancouver Transit Police confirm MOVEit breaches

Onix Group says March ransomware attack impacted more than 300,000 individuals

Onix Group Sued for Failing to Prevent Ransomware Attack and 320K-Record Data Breach

Organizations actively embrace zero trust, integration remains a hurdle

Paying Ransomware’s Ransom: Why it’s Time to Reconsider

Phishing Tools for Purchase: A Closer Look at Facebook Scamming Groups

Placing People & Realism at the Center of Your Cybersecurity Strategy

Polícia prende hackers que vendiam dados de 200 milhões de brasileiros

PricewaterhouseCoopers (PwC) and Ernst & Young (EY) impacted by MOVEit cyber attack

Profissão: hacker corporativo; Salário: R$ 500 mil. Topa?

Progress Software faces federal class action lawsuits as MOVEit breach exposure widens

Ransomware Attack Reported At Hawaiʻi Community College

Ransomware attacks pose communications dilemmas for local governments

Ransomware attacks – which countries are the major targets?

Rogue Android Apps on Google Play are Spreading Malware

ScarCruft Hackers Exploit Ably Service for Stealthy Wiretapping Attacks

Security Researchers Uncover New Spyware Implant TriangleDB

Snack food company Mondelez warns employees of data theft

Startup Security Tactics: Friction Surveys

Supply Chain and APIs Top Security Concerns, CISO Survey Shows

Survey shows vast majority of IT pros consider ‘passwordless’ access a top priority

Telos confirms data breach over MOVEit bug

The Great Exodus to Telegram: A Tour of the New Cybercrime Underground

The limitations of shifting left in application security

The true cost of cyber protection

Through the eyes of an adversary: moving beyond the external attack surface

Trellix Detects China-Affiliated APT Groups Behind Most Nation-State Threat Activity

University of Manchester (UoM) students threatened with “data leakage” following cyber attack

UPS discloses data breach after exposed customer info used in SMS phishing

US and European IT decision-makers have different cloud security priorities

Vincera Institute notifies patients after ransomware attack

VMware Aria Operations for Networks vulnerability exploited in the wild (CVE-2023-20887)

Washington Department of Licensing data breach $3.6M class action settlement

WhatsApp had continuous mic access, Google tackled the issue

Who Is Responsible for Identity Threat Detection and Response?

Why Immutable Storage Is Key to Stopping Ransomware

20/06

6 million Louisiana OMV records compromised in data breach, exposing most residents’ data

10 open-source recon tools worth your time

55% of employees solely use mobile device for work while traveling

100,000 Hacked ChatGPT Accounts Discovered on Dark Web

A Policy of All Privileged Accounts – Overkill or Common Sense?

Arcserve Survey Reveals Vulnerabilities in Ransomware and Data Recovery Preparedness of Local Government and Public Services

ASUS Releases Patches to Fix Critical Security Bugs Impacting Multiple Router Models

Australia Inc roiled by raft of cyber attacks since late 2022

Automotive Cyber Security Market Capture a CAGR of 18.5%, to Reach USD 8.94 Billion Valuation by 2030

Basic password mistake one in 10 Aussies is making with their social media and bank accounts - despite scams robbing us of $200million this year alone

Changes in the Ransomware Threat to State and Local Governments

ChatGPT and data protection laws: Compliance challenges for businesses

Compromised ChatGPT accounts are for sale on dark web

Compromised Linux SSH servers engage in DDoS attacks, cryptomining

Cyber Security 2.0: Updated Cyber Security for the New World

Cyberattack hits European Investment Bank

Demand for STEM training skyrockets

Demystifying the Dark Web: How Anti-Phishing Technologies Monitor and Mitigate Threats

DNV acquires cyber security firm Nixu

DNV acquires cyber security specialist Nixu in €98m deal

Employees are nearly always to blame for data breaches

Experts Uncover Year-Long Cyber Attack on IT Firm Utilizing Custom Malware RDStealer

Fire Rescue Victoria still hampered by December 2022 cyber attack

FirstBank supplier falls victim to cyber attack and customer data exposed

Group behind Reddit hack demands $4.5 mn and reversal of API pricing changes

Hackers can weaponize exposed cloud secrets in just 2 minutes

Hackers infect Linux SSH servers with Tsunami botnet malware

Hackers warn University of Manchester students’ of imminent data leak

Half of Irish companies unprepared for ransomware attacks

How cyber attack disrupted operation at German’s Rheinische Post

How Outsourcing Expertise Can Maximize Data Protection Potency

Illinois hospital attributes closure to ransomware attack

Infosecurity Europe: Netskope Sets Out to Help Enterprises Safely Use ChatGPT

Infostealers: The Growing Threat

Intangic MGA revolutionises cybersecurity with new CyFi dashboard

IoT Security: Key Findings from Nokia's 2023 Threat Intelligence Report

Is AI revolutionizing cybersecurity? The answer isn’t as clear

Is IPTV Safe to Use?

KnowBe4’s Annual Phishing Benchmarking Report Finds Untrained Users Are Biggest Flaw in Organizations’ Cyber Defense Layer

Lockbit ransomware still poses persistent threat to businesses, warn international agencies

Looking To Prevent Ransomware? Lock Down These Initial Access Methods First

Majority of Users Neglect Best Password Practices: Keeper Security

May 2023 Healthcare Data Breach Report

Medibank’s employee data leaked in MOVEit attacks

Microsoft fixes Azure AD auth flaw enabling account takeover

MOVEit hack: Gang claims not to have BBC, BA and Boots data

Murfreesboro Medical Clinic alerts patients at risk after 'criminal cyber-attack'

National Disability Insurance Agency (NDIS) agency scrambles over risk of leaked sensitive client information in HWL Ebsworth hack

Naughty internet users warned NOT to search for free OnlyFans pics as it could land you in deep trouble

New Condi malware builds DDoS botnet out of TP-Link AX21 routers

New RDStealer malware steals from drives shared over Remote Desktop

Nigeria ranks 2nd most cyber-secure African country for business in 2023

Norton Parent Says Employee Data Stolen in MOVEit Ransomware Attack

One overlooked element of executive safety: Data privacy

Over 100,000 ChatGPT Accounts Found in Dark Web Marketplaces

Over 100,000 Stolen ChatGPT Account Credentials Sold on Dark Web Marketplaces

Philadelphia healthcare facility suffers ransomware attack

Phone scammers are targeting O2 customers with calls offering fake discounts

Pro-Russia hacker group claims major DDoS attack on the Port of Rotterdam

Protecting Your Personal Information: Effective Strategies to Boost Data Security

Ransomware Attack Linked to Permanent Shut Down of Illinois Hospital St. Margaret’s Health in Spring Valley

Ransomware gang preys on cancer centers, triggers alert

Ransomware is only getting faster: Six steps to a stronger defense

Reddit: Hackers demand $4.5 million and API policy changes

Researchers Expose New Severe Flaws in Wago and Schneider Electric OT Products

Rhysida ransomware group claims major attack on the Chilean army's internal network

Rogue Android Apps Target Pakistani Individuals in Sophisticated Espionage Campaign

Russian APT28 hackers breach Ukrainian govt email servers

Russian-Linked Hackers Taunt Hwl Ebsworth Over Data Breach, Claim to Have Published Files to Dark Web

SaaS in the Real World: How Global Food Chains Can Secure Their Digital Dish

Safeguarding autofinance lending: Cybersecurity best practices

Senegal tops African countries in cybersecurity – Indusface

Server Misconfiguration: The Exploitation

Small and medium businesses: Remember — your own employees might cause cyber compromise

Smart Pet Feeders Expose Personal Data

SmartPay investigates data breach

Square Yards data leak: passports, financial data exposed

Sturdy Finance Sends DeFi Hacker On-Chain Threat to Return Funds, ‘This Isn’t Going Away’

Supply Chain Attack: Abandoned S3 Buckets Used for Malicious Payloads

The Cybersecurity Confidence Gap: Are Executives Equipped to Protect Their Digital Lives?

The evolving threat landscape in the financial services sector

The future of passwords and authentication

The Reddit Files: Hackers Demand $4.5M Ransom and API Access Waiver

The significance of CIS Control mapping in the 2023 Verizon DBIR

Understanding Cyber Resilience: Building a Holistic Approach to Cybersecurity

Understanding the Microsoft Teams Vulnerability: The GIFShell Attack

University of Toledo Medical Center (UTMC) involved in Fortra data breach

Unmasking Black Basta: A Closer Look at the Notorious Ransomware Group

Untrained users are biggest flaw in organizations’ cyber defense layer

US Department of Agriculture (USDA) investigates potential data breach linked to MOVEit hack

US Department of Energy and its affiliates emerge as new victims of the MOVEit Transfer hack

Vincera Institute Reports Potential Patient Data Breach Due to Ransomware Attack

VMware warns of critical vRealize flaw exploited in attacks

VPN for Privacy: Shielding Your Online Activities from Prying Eyes

Zyxel patches critical vulnerability in NAS devices (CVE-2023-27992)

Zyxel Releases Urgent Security Updates for Critical Vulnerability in NAS Devices

Wellington City Council data breach: Investigation launched, Mayor Tory Whanau disappointed, frustrated

What if the browser was designed for the enterprise?

19/06

8 notable entry-level cybersecurity career and skills initiatives in 2023

58 percent of malware families sold as a service are ransomware

73% of consumers trust what generative AI wants us to see

A History of Ransomware and the Cybersecurity Ecosystem

A third MOVEit vulnerability fixed, Cl0p lists victim organizations (CVE-2023-35708)

Android spyware camouflaged as VPN, chat apps on Google Play

ASUS urges customers to patch critical router vulnerabilities

Britain to double cyber defense funding for Ukraine

British healthcare platform Lantum leaked doctors' personal data via cloud misconfiguration

Crypto Lender Midas Capital Suffers Security Breach, Loses $600k+

Cyber attacks on Italy boomed due to Ukraine war - agency

Cyber heists in digital playground, school-age hackers steal millions in NFTs

Cyberattack targets European Investment Bank

Data Breach at New BreachForums: 4,000 members’ data leaked

Department of Justice (DOJ) Charges Russian National For Role in LockBit Ransomware Attacks

Digital Identity Theft: Tips & Techniques To Protect Yourself Online

Embattled PwC caught up in Russian cyberattack

Euler Hacker Sends Cryptic Messages Encouraging Ethical Hacking and Hints at Future Actions

European Investment Bank attacked, hackers claiming to “impose sanctions on EU”

Every Louisiana Driver’s Details Leaked In Huge Russian Cyber Attack

Exploring the role of AI in cybersecurity

Fayetteville, Arkansas latest city dealing with debilitating cyberattack

Finding the Nirvana of information access control or something like it

Former RAIDforums member “DataBox” sentenced to prison

Goodbyes are difficult, IT offboarding processes make them harder

Great Valley Cardiology says GoAnywhere software hack compromised the data of 181k patients

Grupos de hackers pró russos atacam instituições financeiras europeias. Banco Europeu de Investimento já confirmou

Hackers behind Microsoft outage most likely Russian-backed group aiming to ‘drive division’ in the west

Hackers use fake OnlyFans pics to drop info-stealing malware

High-Profile Attacks Improve Cyber Hygiene—But Not Enough

How To Make MFA Protocol Usage Less Annoying

How to Protect Against the Four Largest Cybersecurity Threats to Your Supply Chain

How to simplify the process of compliance with U.S. Executive Order 14028

How we tried to book a train ticket and ended up with a databreach with 245,000 records

If Your Password Is On This List, It’s Time to Change It

Infosecurity Europe: Asset Visibility Gaps Jeopardize Security Compliance in NHS Trusts, Report Finds

Introducing AI-guided Remediation for IaC Security / KICS

Iowa’s largest school district confirms ransomware attack, data theft

IT security weaknesses ‘expose Switzerland to hacker attacks’

KeePassXC Vulnerability CVE-2023-35866 allows attackers to change the master password and second-factor authentication settings

Louisiana Office of Motor Vehicles suffers data breach

Mais problemas para o Reddit: hackers ameaçam vazar 80 GB de dados roubados

Malwarebytes issues fix for Chrome broken by Windows 11 KB5027231

Maryland leaders encourage residents to protect identity after recent cyber attack on the state

Microsoft Blames Massive DDoS Attack for Azure, Outlook, and OneDrive Disruptions

Microsoft confirma ataque hacker que afetou milhões de usuário

Microsoft confirms DDoS attacks against M365, Azure Portal

Microsoft Discloses DDoS Attack Impact with Limited Details

Microsoft diz que interrupções no Outlook foram ataques cibernéticos

Millions of UK University Credentials Found on Dark Web

New BreachForums site hacked by rivals

New Horizons Medical, Inc. Reports Leaked Patient SSNs Following Recent Data Breach

New Mystic Stealer Malware Targets 40 Web Browsers and 70 Browser Extensions

Over 90% of Indian organisations faced ransomware attacks in 2022: Report

PharMerica Breach: The Lure of Health Care Data

Phishing remained the top identity abuser in 2022: IDSA report

Possible data breach at U.S. Department of Agriculture

Protect yourself during the rise of Crimeware-as-a-Service is on the rise

Ransomware attacks continue to rise, Verizon data breach report finds

Ransomware attacks, like the one targeting City of Dallas, are becoming more common

Recent Satacom campaign delivers cryptocurrency-stealing browser extension

Reddit hackers demand $4.5 million and API changes in threat to leak 80GB of data

Researchers Discover New Sophisticated Toolkit Targeting Apple macOS Systems

Roblox metaverse attracts NFT thieves using crypto phishing

Scam Vendor ‘Infernal Drainer’ Strikes Again, Steals 6 NFTs On OpenSea In A Phishing Attack

School Kids Reportedly Phishing Millions in NFTs for Roblox Skins

‘Sign in to continue’ and suffer : Attackers abusing legitimate services for credential theft

Six generative AI cyber security threats and how to mitigate them

State-Backed Hackers Employ Advanced Methods to Target Middle Eastern and African Governments

Team Cymru launches threat-hunting tool aims to fast-forward analysis

The Annual SaaS Security Survey Report: Plans and Priorities for 2024

The BlackCat ransomware gang is now threatening to leak stolen Reddit data

The Intersection of Anti-Phishing Technologies and Data Privacy Regulations

Three cybersecurity actions that make a difference

TimisoaraHackerTeam Ransomware Attacks US Cancer Center

Trend Micro adds generative AI to Vision One for enhanced XDR

Two US energy department entities compromised in a global hacking spree

UK Pledges Millions in Cyber-Defense Aid to Ukraine

Untangling the web of supply chain security with Tony Turner

US feds stress urgent MOVEit platform patching after attacks hit agencies

US Offers $10m Reward For MOVEit Attackers

Zero trust for SMBs: Start thinking incrementally

What PR Professionals Need To Know About Cybersecurity

Who are Anonymous Sudan? Hacker group behind Microsoft outage linked to Russia

Why Hackers Have Their Sights Set on Healthcare

18/06

91% Indian firms faced ransomware attacks in 2022: Report

Adur and Worthing Councils investigating after contractor data breach

Bringing IT & OT Security Together

Cops reveal 'methods' of scammers who skimmed crores off online gamers

Crypto Cyber Attack: FPG Stops Withdrawals After Losing $20M

Department for Work and Pensions (DWP) issue warning over scam texts ahead of £150 cost of living payment being made

Department of Justice (DOJ) reports tens of millions extorted by Russian ransomware hacker

Derbyshire council sent confidential data to wrong person's home

Eisai Group Supply Chain Unaffected Amid Cyberattack

Facebook scam ad leads to downloading of malware: 2 people lose S$99,800 CPF monies

How to Secure Your Browsing Data (and Why You Need To)

‘It could be taken down by an enthusiastic child’: Whitehall wide open to cyber-attack, warn campaigners

Microsoft confirms Azure, Outlook outages caused by DDoS attacks

Midas Capital Suffers Second Exploit in 6 Months, Loses Over $600K

Navigating the New Frontiers of Economic Security: Exploring the Implications of Cyber Threats

New Mystic Stealer malware increasingly used in attacks

Ransomware gang haunted US firms long before MOVEit hack

Ransomware thugs paying influencers to flaunt their brand tattoos: ACSC

Reddit hackers threaten to leak data stolen in February breach

Singapore Police issues alert over malware scams as two victims lose nearly S$100k in CPF savings

The Critical Role of Employee Training in Anti-Phishing Strategies

Three months after Latitude cyberattack, some victims still not notified

Unmasking The Dark Side of AI: Unveiling Crimes, Risks, and Safeguarding Strategies

Websites of the Rheinische Post Mediengruppe Paralyzed Following a Cyber Attack

DAILY NEWS: Junho (18/06 - 24/06) - 25 Semana de 2023

Cyber Security and Information Security News --- Daily Updates !! Weekly Resume

24/06

23/06

22/06

21/06

20/06

19/06

18/06

DAILY NEWS: Junho (11/06 - 17/06) - 24 Semana de 2023

Comments

Procurar por Tags

Pelo Mundo Afora...