DAILY NEWS: Março (19/03 - 25/03) - 12 Semana de 2023
Dia a Dia da Segurança da Informação !!! Cyber Security and Information Security News --- Daily Updates !! Weekly Review

25/03
9 Ways to protect yourself from Emails Phishing
Arbitrum Discord hacker shares phishing announcement amid airdrop hype
Are passwords and password managers still fit for purpose? And are the alternatives any better?
Can Someone Hack Into Your Phone By Calling You?
Euler Finance Hacker Sends 51,000 Stolen Ether Back to Protocol
Hacker compartilha link de phishing no Discord da Arbitrum em meio ao hype com airdrop
How AI changing cybersecurity landscape in education
How Albania Became a Target for Cyberattacks
How to Protect yourself From One-Time Password (OTP) Fraud
How to spot a scam email: five tell-tale signs to look out for
Incidents of ransomware in Africa/Middle East have dropped, but attackers continue to innovate
IPH sets up new network after cyber attack
Massive Crypto Crime Wave Uncovered: The Jaw-Dropping Truth Behind Billions In Hacks And Scams
Mentalidade hacker é segredo de profissionais bem-sucedidos, segundo professor de Oxford
Microsoft Warns of Stealthy Outlook Vulnerability Exploited by Russian Hackers
New phishing scam uses fake police ID cards to target victims
OpenAI admits data breach at ChatGPT, private data of premium users exposed
OpenAI Reveals Redis Bug Behind ChatGPT User Data Exposure Incident
Security experts: Russia may be behind the attack on elderly care
U.K. National Crime Agency Sets Up Fake DDoS-For-Hire Sites to Catch Cybercriminals
24/03
5 steps organizations can take to counter IAM threats
10% of Organizations Had a Security Breach in the Past Year
92% of organizations were victim to phishing in the past 12 months, reveals survey
A 2023 Guide to Secure Cloud Deployment for Improved Application Security
Attackers capitalise on GPT-4 hype with crypto scam
Banks must improve cybersecurity as attacks rise
Beware the Network Security Breaches Caused by Carelessness
'Bitter' espionage hackers target Chinese nuclear energy orgs
British hospital investigating impact of ‘contained’ cyber incident
Can Your Business Automate Its Ransomware Response?
Car dealers' data obsession has cybercriminals circling
ChatGPT Bug Exposed Payment Details of Paid Users
ChatGPT Suffers First Data Breach, Exposes Personal Information
CISA gives ransomware victims a heads-up
CISA releases free tool for detecting malicious activity in Microsoft cloud environments
CISA Unveils Ransomware Notification Initiative
Critical WooCommerce Payments Plugin Flaw Patched for 500,000+ WordPress Sites
Cybercriminals Pose a Growing Threat to Health Care Providers
Dark Web Intel Underutilized by CISOs, Diminishing Healthcare Cybersecurity
Department of Justice (DOJ) says ‘millions’ of US citizens victimized by BreachForums administrator
Dole confirms employee data was breached following February ransomware attack
DVLA warning to drivers over 'copycat' websites charging money for free services
European Banks to Run Cyber Stress Tests As European Central Bank (ECB) Notes Rise in Cyber Attacks
Even after armed with defense tools, CISOs say successful cyberattacks are ‘inevitable’: New study
FBI, CISA + MS-ISAC Warn of LockBit 3.0 Ransomware
FBI, CISA investigating cyberattack on Puerto Rico’s water authority
Fortra told breached companies their data was safe
GitHub Swiftly Replaces Exposed RSA SSH Key to Protect Git Operations
GitHub Updates Security Protocol For Operations Over SSH
Greek National Intelligence Agency Targets Meta’s Former Cybersecurity Chief in Cyber Attack
Hacker demonstrates security flaws in GPT-4 just one day after launch
Hackers are stealing Gmail messages — delete this extension right now
How Businesses Can Defend Against Evolving Phishing Attacks
Imperial College launches investigation into February cyber attack
IPH systems restored following last week’s cyber attack
IRS Phishing Emails Used to Distribute Emotet
Journalist Targeted in USB Drive Bombing Attack
Kordia uncovers truth of cyber crime in New Zealand
Kroger Postal Prescription Services Files Notice of Data Breach Impacting 82,466 Consumers
Latitude Financial breach widens across Australia and New Zealand
Lawmakers Warn of Cyber Threat Posed by Beijing, Moscow to Energy Sector
LockBit 3.0 ‘Black’ attacks and leaks reveal wormable capabilities and tooling
LockBit joins Play ransomware gang in claiming credit for a cyber attack on the City of Oakland
Maersk says posted data is not current and not from attack by hackers
Malicious Python Package Uses Unicode Trickery to Evade Detection and Steal Data
McDonald’s, USPS, MetaMask, and WeTransfer – Top Phishing Scams of the Week
Microsoft Exchange and Log4j continue to be top points of compromise
Microsoft shares tips on detecting Outlook zero-day exploitation
Ministério Público Eleitoral denuncia quatro pessoas por hackear sistema do TSE
MITRE’s System of Trust risk model manager improves supply chain resiliency
Modern Cybersecurity Problems Need Next-Gen PAM Solutions
More than half of Kiwi businesses hit by cyber-attack last year: report
Mount Chambers Surgery Braintree suffers data breach
Now UK Parliament Bans TikTok from its Network and Devices
OpenAI: ChatGPT payment data leak caused by open-source bug
Our Lady of the Lake hit by cyberattack; victims say hackers got Social Security and other data
Pension Protection Fund confirms employee data exposed in GoAnywhere breach
Phishing, Brute Force Attacks Rise in Expanded Threat Landscape
Pinoys ‘cyber harassed’ 20x more in 2022: report
Procter & Gamble confirms data theft via GoAnywhere zero-day
Qilin’s hefty ransom cuts on $3m payouts revealed by undercover sting
Ransomware attack targets Shoreline Community College
Ransomware Attacks Increased by More Than 51% in February
Ransomware Forces Shoreline Community College to Go Remote
Researchers Uncover Chinese Nation State Hackers' Deceptive Attack Strategies
Security Flaws Cost Fifth of Execs Business
Security leaders discuss CISA access management best practices
Sobeys parent company reeling from cyber attack
South African Revenue Service (SARS) warns of scam targeting taxpayers – this is what it looks like
Stolen Minneapolis Public Schools data released online, may contain SSNs
Streaming Platform Gaint Lionsgate Exposes Over 37m Users’ Data
SundaySky Inc. Notifies 37,095 Consumers of Recent Data Breach
Thousands of Arbitrum (ARB) Airdrop Winners Controlled by Hackers and Sybil Attackers
Top ways attackers are targeting your endpoints
UK creates fake DDoS-for-hire sites to identify cybercriminals
UK National Crime Agency reveals it ran fake DDoS-for-hire sites to collect users’ data
UK Pension Protection Fund latest victim of GoAnywhere hack
What cyber attack risks do the railways face?
Why organizations shouldn’t fold to cybercriminal requests
Wisconsin court system affected by DDoS incident
Wisconsin court system computer network targeted in cyber attack
WooCommerce Patches Critical Plugin Flaw Affecting Half a Million Sites
23/03
20% of Ransomware Attacks Involve Victim Harassment
2023 Cybersecurity Maturity Report Reveals Organizational Unpreparedness for Cyberattacks
82K Kroger Customers Impacted By Healthcare Data Breach
A closer look at TSA’s new cybersecurity requirements for aviation
A common user mistake can lead to compromised Okta login credentials
A detailed look at SVB phishing attacks
Associates in Dermatology Patients Affected by Business Associate Ransomware Attack
Beware of Phishing Scams 3.0- The email you receive might not be from who you think it is
Businesses Must Move Beyond the Reactive Approach to Cybersecurity
Canal Linus Tech Tips no YouTube é invadido por hackers e retirado do ar
Chico bank suffers data breach after February cyber attack
China-Aligned "Operation Tainted Love" Targets Middle East Telecom Providers
CISA Wants You To Report Anything You Know About Ransomware Activity
City of Toronto and Virgin confirm hackers accessed data through file transfer systems
CloudPanel installations use the same SSL certificate private key
Cyber attack disrupts Spanish medicine distribution
Cyber threats to EU transport sector sends urgent call for enhanced cybersecurity
Digital fraud surpasses pre-pandemic levels
Epidemic of Insecure Storage, Backup Devices Is a Windfall for Cybercriminals
Exploit released for Veeam bug allowing cleartext credential theft
Fake ChatGPT Chrome Browser Extension Caught Hijacking Facebook Accounts
Fake ChatGPT for Google extension hijacks Facebook accounts
Ferrari refuses to pay hackers in cyber ransom plot
Four Best Practices For Sustaining A Culture Of Security
Frustrated Dish customers still spending hours on hold weeks after ransomware attack, they say
German and South Korean Agencies Warn of Kimsuky's Expanding Cyber Attack Tactics
GRS Roadstone warns staff following cyber attack
Hackers access Dole employee data in ransomware attack
Hackers unleash cyber attack on mining group Rio Tinto
Hong Kong regulator to further amend rules on personal data protection
How scammers use social media and other online platforms to lure victims
How to enhance the cybersecurity of operational technology environments
Iran-linked incidents spurred Cyber Command to send 'hunt forward' team to Albania
Irish Food Giant Dole Admits Employee Data Breach
Is Trafficking in Hacking Information a Crime?
Kaspersky Exposes Phishing Attack Trend in Africa
Kenworth Adjusts after Parts Manufacturer Hacked by Ransomware
Latitude Financial notifies insurers over malicious cyber attack
Malicious ChatGPT Chrome Extension Hijacks Facebook Accounts
Microsoft fixes Acropalypse privacy bug in Windows 11 Snipping Tool
New Android Botnet Nexus Being Rented Out on Russian Hacker Forum
New Post-Exploitation Attack Method Found Affecting Okta Passwords
Nexus: A New Rising Android Banking Trojan Targeting 450 Financial Apps
Oak Ridge city officials explain how cyber attack impacts customers
OpenAI’s GPT-4 used as bait to launch phishing campaigns
Preventing 2022’s Application Security Fails: What We Can Learn
Python info-stealing malware uses Unicode to evade detection
Ransomware Protection Cost Analysis: How Much Will Security Cost?
Role Of Security Compliance In Mitigating Cyber Threat
SharePoint Phishing Scam Targets 1600 Across US, Europe
Small firms face same risk from hackers as bigger counterparts, travel warned
Stop using your browser's built-in password manager. Here's why
The Access Transaction As The Building Block Of IT
Top 5 security risks for enterprise storage, backup devices
Top Data Breaches in 2022 and 2023 Point to Increases in Phishing and Ransomware
UK Government Sets Out Vision for NHS Cybersecurity
Using Deception to Learn About Russian Threat Actors
Vazamento expõe dados pessoais de mutuários da CDHU
Virgin Group added to Cl0p gang’s victim leak site
Walsall Healthcare NHS Trust dealing with aftermath of 'cyber attack'
What Is Doxware and Is It Dangerous?
What Is Human Intelligence (HUMINT)?
Why Zero Trust Is Necessary In The Fight Against Ransomware
22/03
9M customers affected in AT&T data breach
A Cyberattack on Ferrari Exposed Customer Data, and the Hacker Is Demanding Ransom
Agriculture the Second-Largest Target for Cyber Criminals
Average enterprise storage/backup device has 14 vulnerabilities, three high or critical risks
BreachForums Administrator Baphomet Shuts Down Infamous Hacking Forum
Bridging the cybersecurity readiness gap in a hybrid world
Circle Executive’s Twitter Account Hacked to Promote Fake USDC Airdrop
CISA Alerts on Critical Security Vulnerabilities in Industrial Control Systems
CISA revises cybersecurity performance goals
CISA, NSA push identity and access management framework as risks grow
Class Action Lawsuit Filed Against Cardiovascular Associates Over 441K-Record Data Breach
Clop ransomware gang lists luxury brand retailer Saks Fifth Avenue as a victim
Companies vulnerable to cyber-attack via suppliers - research