top of page

DAILY NEWS: Março (12/03 - 18/03) - 11 Semana de 2023

Dia a Dia da Segurança da Informação !!! Cyber Security and Information Security News --- Daily Updates !! Weekly Review

18/03


34 Most Common Types of Network Security Protections


Beware of New Trigona Ransomware Attacking Finance and Marketing Industries


Blackbaud to Pay $3M Fine for 'Misleading' Customers Following 2020 Ransomware Attack, Data Breach


Chinese Hackers Exploit Fortinet Zero-Day Flaw for Cyber Espionage Attack


Cyber Defenses Should Be on High Alert


Data breaches cost Canadian businesses nearly $6M on average: Mastercard data


Don’t Click on the Email that Promises a Free Shein Gift Card – It’s a Scam!


Emotet malware now distributed in Microsoft OneNote files to evade defenses


Euler Finance hacker starts returning stolen Ether


Hacker devolve R$ 28 milhões em Ethereum (ETH) roubados em ataque contra projeto DeFi


Hackers Can Gain Full Control Of Certain Samsung Phones With Just Contact Number: Google's Project Zero Report


Hospitals risk becoming major targets for cyberattacks following Saint-Pierre hacking


Internet users urged to be vigilant as cybercrimes are on the rise


Latitude customers are furious: some have had data hacked before through Medibank and Optus


LockBit 3.0 Ransomware: Inside the Cyberthreat That's Costing Millions


More than 3,000 customers' data stolen in Latitude Financial cyberattack


National Basketball Association (NBA) Notifies Fans of Data Breach That Led to Stolen Private Information


National Cybersecurity Center reports increase in ransomware attacks


New password rules to secure your accounts


Owner of Breach Forums Pompompurin Arrested in New York


ParaSpace hack in retrospect: $5M rescued, large withdrawals time-locked, hacker wants fees back


Phishing in EU: How to become cyberaware and protect yourself


Pompompurin Unmasked: Infamous BreachForums Mastermind Arrested in New York


'Red alert' warning for people who use Gmail or Microsoft Outlook over phishing scams


Samsung Exynos Modems Are Facing Major Vulnerabilities, Come On Samsung, Fix Them Now!


The Hidden Costs of Insider Threats


Twitter silent as hackers scam users with stolen high-profile verified accounts


US authorities arrest alleged BreachForums owner and FBI hacker Pompompurin


What Are Giveaway Bots and How Are They Used in Scams?


You've been pwned, how much will each stolen customer SSN cost you? How about $7.5k?


17/03


5 Reasons Why Cyber Matters for CFOs


5 Security Tricks to Avoid Potential Facebook Hacks in 2023


A New Security Category Addresses Web-borne Threats


Airports’ cyber-security post‑COVID: Do we feel any symptoms?


AllCare Plus Pharmacy, Inc. Notified Patients of Recent Data Breach Leaking Their SSNs and PHI


Alleged BreachForums owner ‘Pompompurin’ arrested on cybercrime charges


Are there potential cyber security challenges around selling energy back to the grid?


Atenção: Smartphones da Vivo, Samsung e Google afetados por vulnerabilidade que permite controlo remoto por hackers. Saiba o que fazer


Beware Of Online Payment Frauds, This Is How Scammers Can Steal Your Money


Binance, Tinder, Costco, and Walmart – Top Phishing Scams of the Week


Chinese Hackers Exploiting 0-day Vulnerability in Fortinet Products


Clop ransomware expands GoAnywhere victims list, as Hitachi and more confirm incidents


Cloudflare uses its global network to identify the top 50 most impersonated brands


Cyber Security Threats


Cybercriminals add three novel tactics to phishing in latest attempts to sneak past security


Digital crimes are getting more sophisticated. Here's what to watch out for


DOCOMO Pacific details cyber security attack; customer data unaffected, but system restoration ongoing


Dutch shipping giant Royal Dirkzwager confirms Play ransomware attack


eBook: How to improve cyber security posture, overall cyber resilience


Education Leaders Need to Prioritize Cybersecurity to Protect Schools and Students


Emerging Practices in Cybersecurity-Related Public-Private Partnerships and Collaboration in OSCE participating States


Essendant confirms ransomware attack


Etisalat and Cyberint partner on strengthening cyber security


Euler Finance Hacker Rejects $20M Offer, Mixes 1,000 ETH in Tornado Cash


Experian data breach fraudster re-arrested, denied bail


Fake Telegram and WhatsApp clones aim at crypto on Android and Windows


FakeCalls Vishing Malware Targets South Korean Users via Popular Financial Apps


FBI: Critical Infrastructure Hit 860 Times by Ransomware in 2022


Firms spend millions, weeks recovering from cyberattacks


Google Exposes 18 Zero-Day Flaws in Samsung Exynos Chips


Google Uncovers 18 Severe Security Vulnerabilities in Samsung Exynos Chips


GPT-4 Can’t Stop Helping Hackers Build Cybercriminal Tools


Hacker do Euler Finance envia 100 ETH para grupo Lazarus


Hackers target Horsham school in 'malicious cyber attack'


Happy State Bank Notifies 10,069 Customers of Recent Data Breach


HC3 Raises Alarm Over Black Basta Ransomware Group as a Threat to Healthcare


Healthcare services provider Independent Living Systems notifies 4.2m individuals about data breach


Healthcare software company ILS reveals data breach affecting 4 million people


Hitachi Energy confirms data breach after Clop GoAnywhere attacks


How ChatGPT is changing the cybersecurity game


How healthcare CISOs can automate cloud security controls


ICO Reprimands Metropolitan Police for Data Snafu


iPhone or Android slow or buggy? Do this one simple thing every week


Joint European task force takes down darkweb money laundering platform ChipMixer


LockBit group claims responsibility for a ransomware attack on Essendant


Lookalike Telegram and WhatsApp Websites Distributing Cryptocurrency Stealing Malware


Malaysia faces increasing cybersecurity threats - Teo


Microsoft shares script to fix WinRE BitLocker bypass flaw


Microsoft Warns Russian Hackers May Plan More Attacks, Inside and Outside of Ukraine


Minneapolis Public School data released on dark web after ransomware attack


Most security pros turn to unauthorized AI tools at work


National Basketball Association (NBA) alerts fans of a data breach exposing personal information


NCSA conducts mandatory specialised training course in cyber security


New Espionage Group ‘YoroTrooper’ Targeting Entities in European, CIS Countries


New GoLang-Based HinataBot Exploiting Router and Server Flaws for DDoS Attacks


New Jersey latest state to implement cyber incident reporting requirement


Pro-Russian Winter Vivern APT Targets Governments and Telecom Firm


Remote work provides new cybersecurity challenges for small businesses


Russian hackers allegedly target health ministry website over 'India's support to Ukraine'


Russian Military Preparing New Destructive Attacks: Microsoft


Samsung, Vivo, Google phones open to remote compromise without user interaction


SVB account holders targeted with phishing, scams


Telegram, WhatsApp Trojanized to Target Cryptocurrency Wallets


THN Webinar: 3 Research-Backed Ways to Secure Your Identity Perimeter


Tracking the global spread of malware


Unmonitored AI poses extra threat to cyber security in SA


Vishing Campaign Targets Social Security Administration


Winter Vivern APT Group Targeting Indian, Lithuanian, Slovakian, and Vatican Officials


16/03


2023 cybersecurity outlook: Crime keeps on slippin’ into the future


A Ransomware Gang Claims to Have Hacked the Security Camera Company Amazon Ring


Acer Confirms Data Breach After Hacker Lists Stolen Data on Hacking Forum


Adobe Acrobat Sign abused to push Redline info-stealing malware


After Cyber Attacks, Pennsylvania Police Warn Residents


Alunos em Campinas recebem pedidos de bitcoin via e-mail


Amazon Linux 2023: Create and execute cloud-based applications with enhanced security


AppSec Decoded: Continuous AppSec testing in DevSecOps with Seeker IAST


AT&T vendor data breach exposes account details of 9 million wireless customers


Atlantic General Hospital (AGH) CEO Provides Update On Cyber Attack; Reports Medical Records Not Hacked


Aussie drivers losing hundreds of thousands of dollars to toll phishing scam


Australia Inc roiled by raft of cyberattacks since late 2022


Authorities Shut Down ChipMixer Platform Tied to Crypto Laundering Scheme


BEC Volumes Double on Phishing Surge


BianLian Ransomware Pivots From Encryption to Pure Data-Theft Extortion


CFPB's RFI seeks info on data brokerage firms. ILS suffers medical data breach. Latitude Group Holdings sensitive loan data exposed.


Chair of Senate security panel eyes bipartisan silver lining to Congress data breach


Check Point Research conducts Initial Security Analysis of ChatGPT4, Highlighting Potential Scenarios For Accelerated Cybercrime


Chinese and Russian Hackers Using SILKLOADER Malware to Evade Detection


Chinese SilkLoader Malware Sold to Russian Cyber-Criminals


ChipMixer Crypto Laundromat Shut Down By German, US Authorities


CISA adds Adobe ColdFusion bug to Known Exploited Vulnerabilities Catalog


CISA Issues Urgent Warning: Adobe ColdFusion Vulnerability Exploited in the Wild


Cloudflare Offers Free Post-Quantum Cryptography (PQC) to Its Customers


Conti-based ransomware ‘MeowCorp’ gets free decryptor


Convincing Twitter 'quote tweet' phone scam targets bank customers


Cryptojacking Group TeamTNT Suspected of Using Decoy Miner to Conceal Data Exfiltration


Current Turmoil and Future Risks in Resolving Data Breach Class Actions


Cyber attribution: Vigilance or distraction?


Cybercrime in Japan hits record high in 2022 as ransomware cases surge


Data Breach at Independent Living Systems Impacts 4 Million Individuals


Dell Rolls Out New Suite of Cybersecurity-Centric Solutions and Services


DNV recovers from fleet management system ransomware attack


Double extortion ransomware explored: handling the business risk


Ethics in AI: The Missing Code


Euler Hacker Gives out Stolen ETH to Random Users, Here's What's Happening


FakeCalls Android malware returns with new ways to hide on phones


FBI issues warning over crypto schemes; Mental health app data breach affects more than three million


FBI says 860 critical infrastructure organizations hit by Ransomware in 2022


Flipper Zero: como funciona o aparelho hacker proibido pela Anatel


Fortinet zero-day attacks linked to suspected Chinese hackers


Global Cyber Attacks: Where Does the UK Land?


Google finds 18 zero-day vulnerabilities in Samsung Exynos chipsets


GPT-4 Can’t Stop Helping Hackers Make Cybercriminal Tools


Hacker puts 350GB classified data stolen from US Marshals Service servers up for sale for $150,000


HC3 Shares Black Basta Ransomware Threat Intelligence Data


Healthcare software firm ILS announces data breach affecting more than 4 million people


Hong Kong Privacy Regulator Highlights Data Security Guidance as Cyberattacks Increase


How Ransomware Is Causing Chaos in American Schools


How to Protect Your Company in a ChatGPT World


How two-step phishing attacks evade detection and what you can do about it


Hundreds of thousands of customer records stolen from lender Latitude in cyber-attack


In Past Five Year, 47 Incidents of Data Leak and 142 Data Breaches: MeitY


India's Health Ministry Website Targeted By Russian Hacker Group Phoenix: Report


IP firm IPH is latest Australian company to suffer data breach


Kaspersky Updates Decryption Tool for Conti Ransomware


Latitude cyberattack leads to data theft at two service providers


Latitude Financial hit by cyber attack, more than 300,000 identity documents stolen


Leading Brussels hospital fends off a major cyber attack, restores emergency services


Medibank Data Breach update


Microsoft sheds light on a year of Russian hybrid warfare in Ukraine


Microsoft support 'cracks' Windows for customer after activation fails


Microsoft unveils AI-powered Microsoft 365 Copilot assistant


Multiple Hacker Groups Exploit 3-Year-Old Vulnerability to Breach U.S. Federal Agency


Multiple threat actors exploited Progress Telerik bug to breach U.S. federal agency


Navigating the future of digital identity


Negative Impacts of Data Loss and How to Avoid Them


NCSC Calms Fears Over ChatGPT Threat


On-the-Run Hacker Who Allegedly Breached Federal Cop Database Arrested in Florida


Orlando Family Physicians data breach class action settlement


Over a Year of Log4j Lingering: Why We Need to Stop Viewing High-Severity Breaches as Anomalies


PayPal Data Breach Exposes Personal Information of 35,000 Users


Penetration Testing with Kali Linux 2023 released: New modules, exercises, challenges (PEN-200)


Polish intelligence dismantled a network of Russian spies


Portable health device company suffers data breach


Ransomware gang claims to have stolen 3,000 designs for SpaceX ROCKETS from Elon Musk's team - and is threatening to sell them to rival manufacturers


Rapid7 Acquires Ransomware Prevention Technology Company Minerva Labs


Research finds 48% of global critical manufacturing at significant risk of breach


Reventics Inc. Faces Class Action Investigation for Failure to Adequately Protect or Notify Customers of Medical Data Breach


Rodaram o Doom em um vape miniatura - Veja onde ele já funcionou


Romanian entities issued monetary penalties for infosecurity and data protection failures


Rushed cloud migrations result in escalating technical debt


Russian hacker group Phoenix targets health ministry systems


Scams Lost US $10 BILLION in 2022 — Crypto Fraud Grows Fast


Study: U.S. data breaches rise 83% from 2020-2022


The 74’s Mark Keierleber to Appear on PBS Friday to Talk MN School Data Breach


The Top Cybersecurity Grants for Education and How To Apply for Them


Three Healthcare Providers Report Phishing Attacks


Trinity Health Of New England discloses employee email breach that exposed patients' personal data


UK Joins US, Canada, Others in Banning TikTok From Government Devices


Uncovering HinataBot: A Deep Dive into a Go-Based Threat


US Government IIS Server Breached via Telerik Software Flaw


Virtual patching: Cut time to patch from 250 days to <1 day


Voya Financial Advisors, Inc. Reports Recent Data Breach Leaking an Unknown Number of Social Security Numbers


Zoll Medical Hit With Suit Over Data Breach Affecting 1 Million


What's Wrong with Manufacturing?


White House Tech Council Launches Cyber-Physical Resilience Working Group


Winter Vivern APT hackers use fake antivirus scans to install malware


15/03


11 lawsuits filed against California medical group over ransomware attack that affected 3 million patients


57% of financial firms at risk of data breach due to mismanaged data


A ransomware gang claims it has breached Ring and is threatening to leak data


Agribusinesses Vulnerable to Phishing Scams


AT&T reveals data breach affecting 9 million wireless accounts


Best practices for securing the software application supply chain


Businessman convicted for Experian data breach re-arrested after failing to appear in court, saying his child was sick


Cancer patient sues hospital after ransomware gang leaks her nude medical photos


ChipMixer platform seized for laundering ransomware payments, drug sales


CISA Establishes Ransomware Warning Pilot


Critical Microsoft Outlook bug PoC shows how easy it is to exploit


Data loss prevention company hacked by Tick cyberespionage group


Drivers lose more than $660k to toll road scam as phishing attempts surge in Australia


Exfiltration malware takes center stage in cybersecurity concerns


Experts warn of scams tied to Silicon Valley Bank collapse


"FakeCalls" Android Malware Targets Financial Firms in South Korea


FBI: Ransomware hit 860 critical infrastructure orgs in 2022


First-known Dero cryptojacking operation seen targeting Kubernetes


For credentials, these are the new Seven Commandments for zero trust


Good Guys Decrypt Ransomware Targeting Charitable Groups


Hacker selling data allegedly stolen in US Marshals Service hack


Hackers russos preparam novo ataque contra Ucrânia, diz relatório da Microsoft


Healthcare provider ILS warns 4.2 million people of data breach


How do consumers react to a security breach?


Humans Still More Effective Than ChatGPT at Phishing


LockBit claims ransomware attack on SpaceX contractor Maximum Industries


Microsoft Patches Two Zero Days This Month


Microsoft Rolls Out Patches for 80 New Security Flaws — Two Under Active Attack


MKS Instruments hit by class-action litigation following ransomware attack


More than 80,000 could be affected by data breach at Tuscaloosa ambulance service


New Cryptojacking Operation Targeting Kubernetes Clusters for Dero Mining


NorthStar Emergency Medical Services Files Notice of Data Breach Affecting 82,450 Individuals


Phishing Campaigns Use SVB Collapse to Harvest Crypto


Province refuses to say whether ransom was paid to group behind 2021 attack on Newfoundland and Labrador health systems


Ransomware gang exploited a zero-day in Microsoft security feature, Google says


Rubrik confirms data breach but evades Cl0p ransomware allegations


Scammers used compromised police accounts in extortion scheme, prosecutors say


SEC Charges Software Company for Downplaying Scope of Ransomware Attack in Public Disclosures


Singapore businesses stumbling over what security culture entails


So, you want to deploy air-gapped Kubernetes, huh?


Specialist cyber crime team investigates major Chichester school ransomware attack


The Different Methods and Stages of Penetration Testing


Tick APT Targeted High-Value Customers of East Asian Data-Loss Prevention Company


Top 50 most impersonated brands by phishing URLs


UK Bank Limits Crypto Payments to Smother Fraud


User forgetfulness drives preference for biometrics over passwords


Zoll Suffers Massive Data Breach


Will ChatGPT Democratize the Development of Evasive Malware?


YoroTrooper Stealing Credentials and Information from Government and Energy Organizations


14/03


4 evasive web browser attacks targeting federal agencies


5 Key PKI Takeaways From the U.S.’s National Cybersecurity Strategy (2023)


60GB Deutsche Bank data allegedly for sale on dark web


2022 saw a 61% increase in the rate of phishing attacks


Advanced actor targets Fortinet FortiOS in attacks on govt entities


Africa comes under cyber attack


Akamai flags prevalence of malware on corporate networks


ALPHV ransomware gang claims it has hacked Amazon’s Ring


Amazon-owned Ring reportedly suffers ransomware attack


Attack campaign on edge appliance: undetected since 2021 and resists firmware update


Bank failure panic fuels moment of opportunity for threat actors


Beaver Medical Group Files Notice of Data Breach Leaking Patient’s PHI


BlueVoyant Research Illuminates Latest Cyber Attack Techniques and How to Defend Against Them


Bone & Joint Reports Recent “System Outage” Resulted in Data Breach Affecting Patients and Employees


Britain’s National Cyber Security Centre reviewing TikTok risks: security minister


Cambridge Student Union (SU) axe student-led inquiry into data breach


Can a quantum algorithm crack RSA cryptography? Not yet


ChatGPT and the Growing Threat of Bring Your Own AI to the SOC


CISA Creates New Ransomware Vulnerability Warning Program


CISA warns CI operators about vulnerabilities on their networks exploited by ransomware gangs


Computação em nuvem e a relação com a segurança cibernética


Cyber incidents in Israel down 18 pct in 2022: national agency


Cybercriminals exploit SVB collapse to steal money and data


Cybersecurity Companies See Uptick in Business Following Suffolk Cyber Attack


Darknet Markets Thrive Despite Repeat Disruptions by Police


Data of Skoda India Customers Leaked from Official Website


D.C. Health Link hacker exposes lawmakers’ personal information


DEV-1101 AiTM phishing kit is fueling large-scale phishing campaigns


DEV-1101 Updates Open Source Phishing Kit


Dissecting the malicious arsenal of the Makop ransomware gang