DAILY NEWS: Março (12/03 - 18/03) - 11 Semana de 2023
Dia a Dia da Segurança da Informação !!! Cyber Security and Information Security News --- Daily Updates !! Weekly Review

18/03
34 Most Common Types of Network Security Protections
Beware of New Trigona Ransomware Attacking Finance and Marketing Industries
Blackbaud to Pay $3M Fine for 'Misleading' Customers Following 2020 Ransomware Attack, Data Breach
Chinese Hackers Exploit Fortinet Zero-Day Flaw for Cyber Espionage Attack
Cyber Defenses Should Be on High Alert
Data breaches cost Canadian businesses nearly $6M on average: Mastercard data
Don’t Click on the Email that Promises a Free Shein Gift Card – It’s a Scam!
Emotet malware now distributed in Microsoft OneNote files to evade defenses
Euler Finance hacker starts returning stolen Ether
Hacker devolve R$ 28 milhões em Ethereum (ETH) roubados em ataque contra projeto DeFi
Hospitals risk becoming major targets for cyberattacks following Saint-Pierre hacking
Internet users urged to be vigilant as cybercrimes are on the rise
Latitude customers are furious: some have had data hacked before through Medibank and Optus
LockBit 3.0 Ransomware: Inside the Cyberthreat That's Costing Millions
More than 3,000 customers' data stolen in Latitude Financial cyberattack
National Cybersecurity Center reports increase in ransomware attacks
New password rules to secure your accounts
Owner of Breach Forums Pompompurin Arrested in New York
ParaSpace hack in retrospect: $5M rescued, large withdrawals time-locked, hacker wants fees back
Phishing in EU: How to become cyberaware and protect yourself
Pompompurin Unmasked: Infamous BreachForums Mastermind Arrested in New York
'Red alert' warning for people who use Gmail or Microsoft Outlook over phishing scams
Samsung Exynos Modems Are Facing Major Vulnerabilities, Come On Samsung, Fix Them Now!
The Hidden Costs of Insider Threats
Twitter silent as hackers scam users with stolen high-profile verified accounts
US authorities arrest alleged BreachForums owner and FBI hacker Pompompurin
What Are Giveaway Bots and How Are They Used in Scams?
You've been pwned, how much will each stolen customer SSN cost you? How about $7.5k?
17/03
5 Reasons Why Cyber Matters for CFOs
5 Security Tricks to Avoid Potential Facebook Hacks in 2023
A New Security Category Addresses Web-borne Threats
Airports’ cyber-security post‑COVID: Do we feel any symptoms?
AllCare Plus Pharmacy, Inc. Notified Patients of Recent Data Breach Leaking Their SSNs and PHI
Alleged BreachForums owner ‘Pompompurin’ arrested on cybercrime charges
Are there potential cyber security challenges around selling energy back to the grid?
Beware Of Online Payment Frauds, This Is How Scammers Can Steal Your Money
Binance, Tinder, Costco, and Walmart – Top Phishing Scams of the Week
Chinese Hackers Exploiting 0-day Vulnerability in Fortinet Products
Clop ransomware expands GoAnywhere victims list, as Hitachi and more confirm incidents
Cloudflare uses its global network to identify the top 50 most impersonated brands
Cybercriminals add three novel tactics to phishing in latest attempts to sneak past security
Digital crimes are getting more sophisticated. Here's what to watch out for
Dutch shipping giant Royal Dirkzwager confirms Play ransomware attack
eBook: How to improve cyber security posture, overall cyber resilience
Education Leaders Need to Prioritize Cybersecurity to Protect Schools and Students
Essendant confirms ransomware attack
Etisalat and Cyberint partner on strengthening cyber security
Euler Finance Hacker Rejects $20M Offer, Mixes 1,000 ETH in Tornado Cash
Experian data breach fraudster re-arrested, denied bail
Fake Telegram and WhatsApp clones aim at crypto on Android and Windows
FakeCalls Vishing Malware Targets South Korean Users via Popular Financial Apps
FBI: Critical Infrastructure Hit 860 Times by Ransomware in 2022
Firms spend millions, weeks recovering from cyberattacks
Google Exposes 18 Zero-Day Flaws in Samsung Exynos Chips
Google Uncovers 18 Severe Security Vulnerabilities in Samsung Exynos Chips
GPT-4 Can’t Stop Helping Hackers Build Cybercriminal Tools
Hacker do Euler Finance envia 100 ETH para grupo Lazarus
Hackers target Horsham school in 'malicious cyber attack'
Happy State Bank Notifies 10,069 Customers of Recent Data Breach
HC3 Raises Alarm Over Black Basta Ransomware Group as a Threat to Healthcare
Healthcare services provider Independent Living Systems notifies 4.2m individuals about data breach
Healthcare software company ILS reveals data breach affecting 4 million people
Hitachi Energy confirms data breach after Clop GoAnywhere attacks
How ChatGPT is changing the cybersecurity game
How healthcare CISOs can automate cloud security controls
ICO Reprimands Metropolitan Police for Data Snafu
iPhone or Android slow or buggy? Do this one simple thing every week
Joint European task force takes down darkweb money laundering platform ChipMixer
LockBit group claims responsibility for a ransomware attack on Essendant
Lookalike Telegram and WhatsApp Websites Distributing Cryptocurrency Stealing Malware
Malaysia faces increasing cybersecurity threats - Teo
Microsoft shares script to fix WinRE BitLocker bypass flaw
Microsoft Warns Russian Hackers May Plan More Attacks, Inside and Outside of Ukraine
Minneapolis Public School data released on dark web after ransomware attack
Most security pros turn to unauthorized AI tools at work
National Basketball Association (NBA) alerts fans of a data breach exposing personal information
NCSA conducts mandatory specialised training course in cyber security
New Espionage Group ‘YoroTrooper’ Targeting Entities in European, CIS Countries
New GoLang-Based HinataBot Exploiting Router and Server Flaws for DDoS Attacks
New Jersey latest state to implement cyber incident reporting requirement
Pro-Russian Winter Vivern APT Targets Governments and Telecom Firm
Remote work provides new cybersecurity challenges for small businesses
Russian hackers allegedly target health ministry website over 'India's support to Ukraine'
Russian Military Preparing New Destructive Attacks: Microsoft
Samsung, Vivo, Google phones open to remote compromise without user interaction
SVB account holders targeted with phishing, scams
Telegram, WhatsApp Trojanized to Target Cryptocurrency Wallets
THN Webinar: 3 Research-Backed Ways to Secure Your Identity Perimeter
Tracking the global spread of malware
Unmonitored AI poses extra threat to cyber security in SA
Vishing Campaign Targets Social Security Administration
Winter Vivern APT Group Targeting Indian, Lithuanian, Slovakian, and Vatican Officials
16/03
2023 cybersecurity outlook: Crime keeps on slippin’ into the future
A Ransomware Gang Claims to Have Hacked the Security Camera Company Amazon Ring
Acer Confirms Data Breach After Hacker Lists Stolen Data on Hacking Forum
Adobe Acrobat Sign abused to push Redline info-stealing malware
After Cyber Attacks, Pennsylvania Police Warn Residents
Alunos em Campinas recebem pedidos de bitcoin via e-mail
Amazon Linux 2023: Create and execute cloud-based applications with enhanced security
AppSec Decoded: Continuous AppSec testing in DevSecOps with Seeker IAST
AT&T vendor data breach exposes account details of 9 million wireless customers
Aussie drivers losing hundreds of thousands of dollars to toll phishing scam
Australia Inc roiled by raft of cyberattacks since late 2022
Authorities Shut Down ChipMixer Platform Tied to Crypto Laundering Scheme
BEC Volumes Double on Phishing Surge
BianLian Ransomware Pivots From Encryption to Pure Data-Theft Extortion
Chair of Senate security panel eyes bipartisan silver lining to Congress data breach
Chinese and Russian Hackers Using SILKLOADER Malware to Evade Detection
Chinese SilkLoader Malware Sold to Russian Cyber-Criminals
ChipMixer Crypto Laundromat Shut Down By German, US Authorities
CISA adds Adobe ColdFusion bug to Known Exploited Vulnerabilities Catalog
CISA Issues Urgent Warning: Adobe ColdFusion Vulnerability Exploited in the Wild
Cloudflare Offers Free Post-Quantum Cryptography (PQC) to Its Customers
Conti-based ransomware ‘MeowCorp’ gets free decryptor
Convincing Twitter 'quote tweet' phone scam targets bank customers
Cryptojacking Group TeamTNT Suspected of Using Decoy Miner to Conceal Data Exfiltration
Current Turmoil and Future Risks in Resolving Data Breach Class Actions
Cyber attribution: Vigilance or distraction?
Cybercrime in Japan hits record high in 2022 as ransomware cases surge
Data Breach at Independent Living Systems Impacts 4 Million Individuals
Dell Rolls Out New Suite of Cybersecurity-Centric Solutions and Services
DNV recovers from fleet management system ransomware attack
Double extortion ransomware explored: handling the business risk
Ethics in AI: The Missing Code
Euler Hacker Gives out Stolen ETH to Random Users, Here's What's Happening
FakeCalls Android malware returns with new ways to hide on phones
FBI says 860 critical infrastructure organizations hit by Ransomware in 2022
Flipper Zero: como funciona o aparelho hacker proibido pela Anatel
Fortinet zero-day attacks linked to suspected Chinese hackers
Global Cyber Attacks: Where Does the UK Land?
Google finds 18 zero-day vulnerabilities in Samsung Exynos chipsets
GPT-4 Can’t Stop Helping Hackers Make Cybercriminal Tools
Hacker puts 350GB classified data stolen from US Marshals Service servers up for sale for $150,000
HC3 Shares Black Basta Ransomware Threat Intelligence Data
Healthcare software firm ILS announces data breach affecting more than 4 million people
Hong Kong Privacy Regulator Highlights Data Security Guidance as Cyberattacks Increase
How Ransomware Is Causing Chaos in American Schools
How to Protect Your Company in a ChatGPT World
How two-step phishing attacks evade detection and what you can do about it
Hundreds of thousands of customer records stolen from lender Latitude in cyber-attack
In Past Five Year, 47 Incidents of Data Leak and 142 Data Breaches: MeitY
India's Health Ministry Website Targeted By Russian Hacker Group Phoenix: Report
IP firm IPH is latest Australian company to suffer data breach
Kaspersky Updates Decryption Tool for Conti Ransomware
Latitude cyberattack leads to data theft at two service providers
Latitude Financial hit by cyber attack, more than 300,000 identity documents stolen
Leading Brussels hospital fends off a major cyber attack, restores emergency services
Microsoft sheds light on a year of Russian hybrid warfare in Ukraine
Microsoft support 'cracks' Windows for customer after activation fails
Microsoft unveils AI-powered Microsoft 365 Copilot assistant
Multiple Hacker Groups Exploit 3-Year-Old Vulnerability to Breach U.S. Federal Agency
Multiple threat actors exploited Progress Telerik bug to breach U.S. federal agency
Navigating the future of digital identity
Negative Impacts of Data Loss and How to Avoid Them
NCSC Calms Fears Over ChatGPT Threat
On-the-Run Hacker Who Allegedly Breached Federal Cop Database Arrested in Florida
Orlando Family Physicians data breach class action settlement
Over a Year of Log4j Lingering: Why We Need to Stop Viewing High-Severity Breaches as Anomalies
PayPal Data Breach Exposes Personal Information of 35,000 Users
Penetration Testing with Kali Linux 2023 released: New modules, exercises, challenges (PEN-200)
Polish intelligence dismantled a network of Russian spies
Portable health device company suffers data breach
Rapid7 Acquires Ransomware Prevention Technology Company Minerva Labs
Research finds 48% of global critical manufacturing at significant risk of breach
Rodaram o Doom em um vape miniatura - Veja onde ele já funcionou
Romanian entities issued monetary penalties for infosecurity and data protection failures
Rushed cloud migrations result in escalating technical debt
Russian hacker group Phoenix targets health ministry systems
Scams Lost US $10 BILLION in 2022 — Crypto Fraud Grows Fast
Study: U.S. data breaches rise 83% from 2020-2022
The 74’s Mark Keierleber to Appear on PBS Friday to Talk MN School Data Breach
The Top Cybersecurity Grants for Education and How To Apply for Them
Three Healthcare Providers Report Phishing Attacks
Trinity Health Of New England discloses employee email breach that exposed patients' personal data
UK Joins US, Canada, Others in Banning TikTok From Government Devices
Uncovering HinataBot: A Deep Dive into a Go-Based Threat
US Government IIS Server Breached via Telerik Software Flaw
Virtual patching: Cut time to patch from 250 days to <1 day
Zoll Medical Hit With Suit Over Data Breach Affecting 1 Million
What's Wrong with Manufacturing?
White House Tech Council Launches Cyber-Physical Resilience Working Group
Winter Vivern APT hackers use fake antivirus scans to install malware
15/03
57% of financial firms at risk of data breach due to mismanaged data
A ransomware gang claims it has breached Ring and is threatening to leak data
Agribusinesses Vulnerable to Phishing Scams
AT&T reveals data breach affecting 9 million wireless accounts
Best practices for securing the software application supply chain
Cancer patient sues hospital after ransomware gang leaks her nude medical photos
ChipMixer platform seized for laundering ransomware payments, drug sales
CISA Establishes Ransomware Warning Pilot
Critical Microsoft Outlook bug PoC shows how easy it is to exploit
Data loss prevention company hacked by Tick cyberespionage group
Drivers lose more than $660k to toll road scam as phishing attempts surge in Australia
Exfiltration malware takes center stage in cybersecurity concerns
Experts warn of scams tied to Silicon Valley Bank collapse
"FakeCalls" Android Malware Targets Financial Firms in South Korea
FBI: Ransomware hit 860 critical infrastructure orgs in 2022
First-known Dero cryptojacking operation seen targeting Kubernetes
For credentials, these are the new Seven Commandments for zero trust
Good Guys Decrypt Ransomware Targeting Charitable Groups
Hacker selling data allegedly stolen in US Marshals Service hack
Hackers russos preparam novo ataque contra Ucrânia, diz relatório da Microsoft
Healthcare provider ILS warns 4.2 million people of data breach
How do consumers react to a security breach?
Humans Still More Effective Than ChatGPT at Phishing
LockBit claims ransomware attack on SpaceX contractor Maximum Industries
Microsoft Patches Two Zero Days This Month
Microsoft Rolls Out Patches for 80 New Security Flaws — Two Under Active Attack
MKS Instruments hit by class-action litigation following ransomware attack
More than 80,000 could be affected by data breach at Tuscaloosa ambulance service
New Cryptojacking Operation Targeting Kubernetes Clusters for Dero Mining
NorthStar Emergency Medical Services Files Notice of Data Breach Affecting 82,450 Individuals
Phishing Campaigns Use SVB Collapse to Harvest Crypto
Ransomware gang exploited a zero-day in Microsoft security feature, Google says
Rubrik confirms data breach but evades Cl0p ransomware allegations
Scammers used compromised police accounts in extortion scheme, prosecutors say
SEC Charges Software Company for Downplaying Scope of Ransomware Attack in Public Disclosures
Singapore businesses stumbling over what security culture entails
So, you want to deploy air-gapped Kubernetes, huh?
Specialist cyber crime team investigates major Chichester school ransomware attack
The Different Methods and Stages of Penetration Testing
Tick APT Targeted High-Value Customers of East Asian Data-Loss Prevention Company
Top 50 most impersonated brands by phishing URLs
UK Bank Limits Crypto Payments to Smother Fraud
User forgetfulness drives preference for biometrics over passwords
Zoll Suffers Massive Data Breach
Will ChatGPT Democratize the Development of Evasive Malware?
YoroTrooper Stealing Credentials and Information from Government and Energy Organizations
14/03
4 evasive web browser attacks targeting federal agencies
5 Key PKI Takeaways From the U.S.’s National Cybersecurity Strategy (2023)
60GB Deutsche Bank data allegedly for sale on dark web
2022 saw a 61% increase in the rate of phishing attacks
Advanced actor targets Fortinet FortiOS in attacks on govt entities
Africa comes under cyber attack
Akamai flags prevalence of malware on corporate networks
ALPHV ransomware gang claims it has hacked Amazon’s Ring
Amazon-owned Ring reportedly suffers ransomware attack
Attack campaign on edge appliance: undetected since 2021 and resists firmware update
Bank failure panic fuels moment of opportunity for threat actors
Beaver Medical Group Files Notice of Data Breach Leaking Patient’s PHI
BlueVoyant Research Illuminates Latest Cyber Attack Techniques and How to Defend Against Them
Bone & Joint Reports Recent “System Outage” Resulted in Data Breach Affecting Patients and Employees
Britain’s National Cyber Security Centre reviewing TikTok risks: security minister
Cambridge Student Union (SU) axe student-led inquiry into data breach
Can a quantum algorithm crack RSA cryptography? Not yet
ChatGPT and the Growing Threat of Bring Your Own AI to the SOC
CISA Creates New Ransomware Vulnerability Warning Program
CISA warns CI operators about vulnerabilities on their networks exploited by ransomware gangs
Computação em nuvem e a relação com a segurança cibernética
Cyber incidents in Israel down 18 pct in 2022: national agency
Cybercriminals exploit SVB collapse to steal money and data
Cybersecurity Companies See Uptick in Business Following Suffolk Cyber Attack
Darknet Markets Thrive Despite Repeat Disruptions by Police
Data of Skoda India Customers Leaked from Official Website
D.C. Health Link hacker exposes lawmakers’ personal information
DEV-1101 AiTM phishing kit is fueling large-scale phishing campaigns
DEV-1101 Updates Open Source Phishing Kit
Dissecting the malicious arsenal of the Makop ransomware gang