top of page

DAILY NEWS: Março (12/03 - 18/03) - 11 Semana de 2023

Dia a Dia da Segurança da Informação !!! Cyber Security and Information Security News --- Daily Updates !! Weekly Review


34 Most Common Types of Network Security Protections

Beware of New Trigona Ransomware Attacking Finance and Marketing Industries

Blackbaud to Pay $3M Fine for 'Misleading' Customers Following 2020 Ransomware Attack, Data Breach

Chinese Hackers Exploit Fortinet Zero-Day Flaw for Cyber Espionage Attack

Cyber Defenses Should Be on High Alert

Data breaches cost Canadian businesses nearly $6M on average: Mastercard data

Don’t Click on the Email that Promises a Free Shein Gift Card – It’s a Scam!

Emotet malware now distributed in Microsoft OneNote files to evade defenses

Euler Finance hacker starts returning stolen Ether

Hacker devolve R$ 28 milhões em Ethereum (ETH) roubados em ataque contra projeto DeFi

Hackers Can Gain Full Control Of Certain Samsung Phones With Just Contact Number: Google's Project Zero Report

Hospitals risk becoming major targets for cyberattacks following Saint-Pierre hacking

Internet users urged to be vigilant as cybercrimes are on the rise

Latitude customers are furious: some have had data hacked before through Medibank and Optus

LockBit 3.0 Ransomware: Inside the Cyberthreat That's Costing Millions

More than 3,000 customers' data stolen in Latitude Financial cyberattack

National Basketball Association (NBA) Notifies Fans of Data Breach That Led to Stolen Private Information

National Cybersecurity Center reports increase in ransomware attacks

New password rules to secure your accounts

Owner of Breach Forums Pompompurin Arrested in New York

ParaSpace hack in retrospect: $5M rescued, large withdrawals time-locked, hacker wants fees back

Phishing in EU: How to become cyberaware and protect yourself

Pompompurin Unmasked: Infamous BreachForums Mastermind Arrested in New York

'Red alert' warning for people who use Gmail or Microsoft Outlook over phishing scams

Samsung Exynos Modems Are Facing Major Vulnerabilities, Come On Samsung, Fix Them Now!

The Hidden Costs of Insider Threats

Twitter silent as hackers scam users with stolen high-profile verified accounts

US authorities arrest alleged BreachForums owner and FBI hacker Pompompurin

What Are Giveaway Bots and How Are They Used in Scams?

You've been pwned, how much will each stolen customer SSN cost you? How about $7.5k?


5 Reasons Why Cyber Matters for CFOs

5 Security Tricks to Avoid Potential Facebook Hacks in 2023

A New Security Category Addresses Web-borne Threats

Airports’ cyber-security post‑COVID: Do we feel any symptoms?

AllCare Plus Pharmacy, Inc. Notified Patients of Recent Data Breach Leaking Their SSNs and PHI

Alleged BreachForums owner ‘Pompompurin’ arrested on cybercrime charges

Are there potential cyber security challenges around selling energy back to the grid?

Atenção: Smartphones da Vivo, Samsung e Google afetados por vulnerabilidade que permite controlo remoto por hackers. Saiba o que fazer

Beware Of Online Payment Frauds, This Is How Scammers Can Steal Your Money

Binance, Tinder, Costco, and Walmart – Top Phishing Scams of the Week

Chinese Hackers Exploiting 0-day Vulnerability in Fortinet Products

Clop ransomware expands GoAnywhere victims list, as Hitachi and more confirm incidents

Cloudflare uses its global network to identify the top 50 most impersonated brands

Cyber Security Threats

Cybercriminals add three novel tactics to phishing in latest attempts to sneak past security

Digital crimes are getting more sophisticated. Here's what to watch out for

DOCOMO Pacific details cyber security attack; customer data unaffected, but system restoration ongoing

Dutch shipping giant Royal Dirkzwager confirms Play ransomware attack

eBook: How to improve cyber security posture, overall cyber resilience

Education Leaders Need to Prioritize Cybersecurity to Protect Schools and Students

Emerging Practices in Cybersecurity-Related Public-Private Partnerships and Collaboration in OSCE participating States

Essendant confirms ransomware attack

Etisalat and Cyberint partner on strengthening cyber security

Euler Finance Hacker Rejects $20M Offer, Mixes 1,000 ETH in Tornado Cash

Experian data breach fraudster re-arrested, denied bail

Fake Telegram and WhatsApp clones aim at crypto on Android and Windows

FakeCalls Vishing Malware Targets South Korean Users via Popular Financial Apps

FBI: Critical Infrastructure Hit 860 Times by Ransomware in 2022

Firms spend millions, weeks recovering from cyberattacks

Google Exposes 18 Zero-Day Flaws in Samsung Exynos Chips

Google Uncovers 18 Severe Security Vulnerabilities in Samsung Exynos Chips

GPT-4 Can’t Stop Helping Hackers Build Cybercriminal Tools

Hacker do Euler Finance envia 100 ETH para grupo Lazarus

Hackers target Horsham school in 'malicious cyber attack'

Happy State Bank Notifies 10,069 Customers of Recent Data Breach

HC3 Raises Alarm Over Black Basta Ransomware Group as a Threat to Healthcare

Healthcare services provider Independent Living Systems notifies 4.2m individuals about data breach

Healthcare software company ILS reveals data breach affecting 4 million people

Hitachi Energy confirms data breach after Clop GoAnywhere attacks

How ChatGPT is changing the cybersecurity game

How healthcare CISOs can automate cloud security controls

ICO Reprimands Metropolitan Police for Data Snafu

iPhone or Android slow or buggy? Do this one simple thing every week

Joint European task force takes down darkweb money laundering platform ChipMixer

LockBit group claims responsibility for a ransomware attack on Essendant

Lookalike Telegram and WhatsApp Websites Distributing Cryptocurrency Stealing Malware

Malaysia faces increasing cybersecurity threats - Teo

Microsoft shares script to fix WinRE BitLocker bypass flaw

Microsoft Warns Russian Hackers May Plan More Attacks, Inside and Outside of Ukraine

Minneapolis Public School data released on dark web after ransomware attack

Most security pros turn to unauthorized AI tools at work

National Basketball Association (NBA) alerts fans of a data breach exposing personal information

NCSA conducts mandatory specialised training course in cyber security

New Espionage Group ‘YoroTrooper’ Targeting Entities in European, CIS Countries

New GoLang-Based HinataBot Exploiting Router and Server Flaws for DDoS Attacks

New Jersey latest state to implement cyber incident reporting requirement

Pro-Russian Winter Vivern APT Targets Governments and Telecom Firm

Remote work provides new cybersecurity challenges for small businesses

Russian hackers allegedly target health ministry website over 'India's support to Ukraine'

Russian Military Preparing New Destructive Attacks: Microsoft

Samsung, Vivo, Google phones open to remote compromise without user interaction

SVB account holders targeted with phishing, scams

Telegram, WhatsApp Trojanized to Target Cryptocurrency Wallets

THN Webinar: 3 Research-Backed Ways to Secure Your Identity Perimeter

Tracking the global spread of malware

Unmonitored AI poses extra threat to cyber security in SA

Vishing Campaign Targets Social Security Administration

Winter Vivern APT Group Targeting Indian, Lithuanian, Slovakian, and Vatican Officials


2023 cybersecurity outlook: Crime keeps on slippin’ into the future

A Ransomware Gang Claims to Have Hacked the Security Camera Company Amazon Ring

Acer Confirms Data Breach After Hacker Lists Stolen Data on Hacking Forum

Adobe Acrobat Sign abused to push Redline info-stealing malware

After Cyber Attacks, Pennsylvania Police Warn Residents

Alunos em Campinas recebem pedidos de bitcoin via e-mail

Amazon Linux 2023: Create and execute cloud-based applications with enhanced security

AppSec Decoded: Continuous AppSec testing in DevSecOps with Seeker IAST

AT&T vendor data breach exposes account details of 9 million wireless customers

Atlantic General Hospital (AGH) CEO Provides Update On Cyber Attack; Reports Medical Records Not Hacked

Aussie drivers losing hundreds of thousands of dollars to toll phishing scam

Australia Inc roiled by raft of cyberattacks since late 2022

Authorities Shut Down ChipMixer Platform Tied to Crypto Laundering Scheme

BEC Volumes Double on Phishing Surge

BianLian Ransomware Pivots From Encryption to Pure Data-Theft Extortion

CFPB's RFI seeks info on data brokerage firms. ILS suffers medical data breach. Latitude Group Holdings sensitive loan data exposed.

Chair of Senate security panel eyes bipartisan silver lining to Congress data breach

Check Point Research conducts Initial Security Analysis of ChatGPT4, Highlighting Potential Scenarios For Accelerated Cybercrime

Chinese and Russian Hackers Using SILKLOADER Malware to Evade Detection

Chinese SilkLoader Malware Sold to Russian Cyber-Criminals

ChipMixer Crypto Laundromat Shut Down By German, US Authorities

CISA adds Adobe ColdFusion bug to Known Exploited Vulnerabilities Catalog

CISA Issues Urgent Warning: Adobe ColdFusion Vulnerability Exploited in the Wild

Cloudflare Offers Free Post-Quantum Cryptography (PQC) to Its Customers

Conti-based ransomware ‘MeowCorp’ gets free decryptor

Convincing Twitter 'quote tweet' phone scam targets bank customers

Cryptojacking Group TeamTNT Suspected of Using Decoy Miner to Conceal Data Exfiltration

Current Turmoil and Future Risks in Resolving Data Breach Class Actions

Cyber attribution: Vigilance or distraction?

Cybercrime in Japan hits record high in 2022 as ransomware cases surge

Data Breach at Independent Living Systems Impacts 4 Million Individuals

Dell Rolls Out New Suite of Cybersecurity-Centric Solutions and Services

DNV recovers from fleet management system ransomware attack

Double extortion ransomware explored: handling the business risk

Ethics in AI: The Missing Code

Euler Hacker Gives out Stolen ETH to Random Users, Here's What's Happening

FakeCalls Android malware returns with new ways to hide on phones

FBI issues warning over crypto schemes; Mental health app data breach affects more than three million

FBI says 860 critical infrastructure organizations hit by Ransomware in 2022

Flipper Zero: como funciona o aparelho hacker proibido pela Anatel

Fortinet zero-day attacks linked to suspected Chinese hackers

Global Cyber Attacks: Where Does the UK Land?

Google finds 18 zero-day vulnerabilities in Samsung Exynos chipsets

GPT-4 Can’t Stop Helping Hackers Make Cybercriminal Tools

Hacker puts 350GB classified data stolen from US Marshals Service servers up for sale for $150,000

HC3 Shares Black Basta Ransomware Threat Intelligence Data

Healthcare software firm ILS announces data breach affecting more than 4 million people

Hong Kong Privacy Regulator Highlights Data Security Guidance as Cyberattacks Increase

How Ransomware Is Causing Chaos in American Schools

How to Protect Your Company in a ChatGPT World

How two-step phishing attacks evade detection and what you can do about it

Hundreds of thousands of customer records stolen from lender Latitude in cyber-attack

In Past Five Year, 47 Incidents of Data Leak and 142 Data Breaches: MeitY

India's Health Ministry Website Targeted By Russian Hacker Group Phoenix: Report

IP firm IPH is latest Australian company to suffer data breach

Kaspersky Updates Decryption Tool for Conti Ransomware

Latitude cyberattack leads to data theft at two service providers

Latitude Financial hit by cyber attack, more than 300,000 identity documents stolen

Leading Brussels hospital fends off a major cyber attack, restores emergency services

Medibank Data Breach update

Microsoft sheds light on a year of Russian hybrid warfare in Ukraine

Microsoft support 'cracks' Windows for customer after activation fails

Microsoft unveils AI-powered Microsoft 365 Copilot assistant

Multiple Hacker Groups Exploit 3-Year-Old Vulnerability to Breach U.S. Federal Agency

Multiple threat actors exploited Progress Telerik bug to breach U.S. federal agency

Navigating the future of digital identity

Negative Impacts of Data Loss and How to Avoid Them

NCSC Calms Fears Over ChatGPT Threat

On-the-Run Hacker Who Allegedly Breached Federal Cop Database Arrested in Florida

Orlando Family Physicians data breach class action settlement

Over a Year of Log4j Lingering: Why We Need to Stop Viewing High-Severity Breaches as Anomalies

PayPal Data Breach Exposes Personal Information of 35,000 Users

Penetration Testing with Kali Linux 2023 released: New modules, exercises, challenges (PEN-200)

Polish intelligence dismantled a network of Russian spies

Portable health device company suffers data breach

Ransomware gang claims to have stolen 3,000 designs for SpaceX ROCKETS from Elon Musk's team - and is threatening to sell them to rival manufacturers

Rapid7 Acquires Ransomware Prevention Technology Company Minerva Labs

Research finds 48% of global critical manufacturing at significant risk of breach

Reventics Inc. Faces Class Action Investigation for Failure to Adequately Protect or Notify Customers of Medical Data Breach

Rodaram o Doom em um vape miniatura - Veja onde ele já funcionou

Romanian entities issued monetary penalties for infosecurity and data protection failures

Rushed cloud migrations result in escalating technical debt

Russian hacker group Phoenix targets health ministry systems

Scams Lost US $10 BILLION in 2022 — Crypto Fraud Grows Fast

Study: U.S. data breaches rise 83% from 2020-2022

The 74’s Mark Keierleber to Appear on PBS Friday to Talk MN School Data Breach

The Top Cybersecurity Grants for Education and How To Apply for Them

Three Healthcare Providers Report Phishing Attacks

Trinity Health Of New England discloses employee email breach that exposed patients' personal data

UK Joins US, Canada, Others in Banning TikTok From Government Devices

Uncovering HinataBot: A Deep Dive into a Go-Based Threat

US Government IIS Server Breached via Telerik Software Flaw

Virtual patching: Cut time to patch from 250 days to <1 day

Voya Financial Advisors, Inc. Reports Recent Data Breach Leaking an Unknown Number of Social Security Numbers

Zoll Medical Hit With Suit Over Data Breach Affecting 1 Million

What's Wrong with Manufacturing?

White House Tech Council Launches Cyber-Physical Resilience Working Group

Winter Vivern APT hackers use fake antivirus scans to install malware


11 lawsuits filed against California medical group over ransomware attack that affected 3 million patients

57% of financial firms at risk of data breach due to mismanaged data

A ransomware gang claims it has breached Ring and is threatening to leak data

Agribusinesses Vulnerable to Phishing Scams

AT&T reveals data breach affecting 9 million wireless accounts

Best practices for securing the software application supply chain

Businessman convicted for Experian data breach re-arrested after failing to appear in court, saying his child was sick

Cancer patient sues hospital after ransomware gang leaks her nude medical photos

ChipMixer platform seized for laundering ransomware payments, drug sales

CISA Establishes Ransomware Warning Pilot

Critical Microsoft Outlook bug PoC shows how easy it is to exploit

Data loss prevention company hacked by Tick cyberespionage group

Drivers lose more than $660k to toll road scam as phishing attempts surge in Australia

Exfiltration malware takes center stage in cybersecurity concerns

Experts warn of scams tied to Silicon Valley Bank collapse

"FakeCalls" Android Malware Targets Financial Firms in South Korea

FBI: Ransomware hit 860 critical infrastructure orgs in 2022

First-known Dero cryptojacking operation seen targeting Kubernetes

For credentials, these are the new Seven Commandments for zero trust

Good Guys Decrypt Ransomware Targeting Charitable Groups

Hacker selling data allegedly stolen in US Marshals Service hack

Hackers russos preparam novo ataque contra Ucrânia, diz relatório da Microsoft

Healthcare provider ILS warns 4.2 million people of data breach

How do consumers react to a security breach?

Humans Still More Effective Than ChatGPT at Phishing

LockBit claims ransomware attack on SpaceX contractor Maximum Industries

Microsoft Patches Two Zero Days This Month

Microsoft Rolls Out Patches for 80 New Security Flaws — Two Under Active Attack

MKS Instruments hit by class-action litigation following ransomware attack

More than 80,000 could be affected by data breach at Tuscaloosa ambulance service

New Cryptojacking Operation Targeting Kubernetes Clusters for Dero Mining

NorthStar Emergency Medical Services Files Notice of Data Breach Affecting 82,450 Individuals

Phishing Campaigns Use SVB Collapse to Harvest Crypto

Province refuses to say whether ransom was paid to group behind 2021 attack on Newfoundland and Labrador health systems

Ransomware gang exploited a zero-day in Microsoft security feature, Google says

Rubrik confirms data breach but evades Cl0p ransomware allegations

Scammers used compromised police accounts in extortion scheme, prosecutors say

SEC Charges Software Company for Downplaying Scope of Ransomware Attack in Public Disclosures

Singapore businesses stumbling over what security culture entails

So, you want to deploy air-gapped Kubernetes, huh?

Specialist cyber crime team investigates major Chichester school ransomware attack

The Different Methods and Stages of Penetration Testing

Tick APT Targeted High-Value Customers of East Asian Data-Loss Prevention Company

Top 50 most impersonated brands by phishing URLs

UK Bank Limits Crypto Payments to Smother Fraud

User forgetfulness drives preference for biometrics over passwords

Zoll Suffers Massive Data Breach

Will ChatGPT Democratize the Development of Evasive Malware?

YoroTrooper Stealing Credentials and Information from Government and Energy Organizations


4 evasive web browser attacks targeting federal agencies

5 Key PKI Takeaways From the U.S.’s National Cybersecurity Strategy (2023)

60GB Deutsche Bank data allegedly for sale on dark web

2022 saw a 61% increase in the rate of phishing attacks

Advanced actor targets Fortinet FortiOS in attacks on govt entities

Africa comes under cyber attack

Akamai flags prevalence of malware on corporate networks

ALPHV ransomware gang claims it has hacked Amazon’s Ring

Amazon-owned Ring reportedly suffers ransomware attack

Attack campaign on edge appliance: undetected since 2021 and resists firmware update

Bank failure panic fuels moment of opportunity for threat actors

Beaver Medical Group Files Notice of Data Breach Leaking Patient’s PHI

BlueVoyant Research Illuminates Latest Cyber Attack Techniques and How to Defend Against Them

Bone & Joint Reports Recent “System Outage” Resulted in Data Breach Affecting Patients and Employees

Britain’s National Cyber Security Centre reviewing TikTok risks: security minister

Cambridge Student Union (SU) axe student-led inquiry into data breach

Can a quantum algorithm crack RSA cryptography? Not yet

ChatGPT and the Growing Threat of Bring Your Own AI to the SOC

CISA Creates New Ransomware Vulnerability Warning Program

CISA warns CI operators about vulnerabilities on their networks exploited by ransomware gangs

Computação em nuvem e a relação com a segurança cibernética

Cyber incidents in Israel down 18 pct in 2022: national agency

Cybercriminals exploit SVB collapse to steal money and data

Cybersecurity Companies See Uptick in Business Following Suffolk Cyber Attack

Darknet Markets Thrive Despite Repeat Disruptions by Police

Data of Skoda India Customers Leaked from Official Website

D.C. Health Link hacker exposes lawmakers’ personal information

DEV-1101 AiTM phishing kit is fueling large-scale phishing campaigns

DEV-1101 Updates Open Source Phishing Kit

Dissecting the malicious arsenal of the Makop ransomware gang