DAILY NEWS: Novembro (20/11 - 26/11) - 47 Semana de 2022

Cyber Security and Information Security News - Daily Updates !! Weekly Review

26/11

Banks warn to watch out for these banking scams in South Africa

Council data breach sees phone numbers and email addresses of people who objected to Yorkshire housing development published

Cyber attack on AIIMS from ‘outside India’

Data Breach investigations should be prioritized in Digital Data Privacy Law and Digital India Act

Data of 500 million-plus WhatsApp users at risk: Countries affected and other details

Department for Work and Pensions (DWP): Scam warning issued as next cost of living payments sent to residents

How to avoid becoming a fraud victim this Black Friday

IIROC-registered Canadian crypto exchange Coinsquare suffers data breach

Pay Attention Users: Scammers Are Targeting Your Credit Card Details

Pornographic deepfakes to be made illegal in new measure

Russia-based RansomBoggs Ransomware Targeted Several Ukrainian Organizations

The key elements of robust data security in healthcare

This Cyber Crime Group is Now Using Fake Android VPNs

WhatsApp data breach: 500 million users’ phone numbers on sale

25/11

5 cybersecurity predictions for 2023

A Phishing Gang Known As Ducktail Is Using LinkedIn and WhatsApp To Hijack Business Accounts on Facebook

BlackFriday: Preparing for Online Shopping Scams This Holiday Season

Can you make fighting cyber crime pay: Investors can back the war against hackers and rogue states - by joining the fightback

Canadian menswear chain Harry Rosen confirms cyber attack

Cincinnati State College one of several schools added to ransomware leak sites on Thanksgiving

Dell, HP, and Lenovo Devices Found Using Outdated OpenSSL Versions

Electronic patient record system shut down due to cyber attack

European Parliament's website hit by a DDoS attack launched by the pro-Russian Killnet group

Experts Find 1600+ Malicious Docker Hub Images

Global Police Celebrate $130m Cyber Busts

Google pushes emergency Chrome update to fix 8th zero-day in 2022

Guadeloupe kickstarts continuity plan after wide-ranging cyberattack

Interpol Seized $130 Million from Cybercriminals in Global "HAECHI-III" Crackdown Operation

Introducing the book: The Security Analyst’s Guide to Suricata

IT supply chain: A fertile ground for ransomware attacks

Killnet Hits European Parliament Website with DDoS Attack

Maple Leaf Foods confirms it was hit by ransomware, won’t pay attackers

Massive Twitter data breach was far worse than reported, reveal security researchers

Microsoft detects cyber-attack on Tata power via obsolete web server

Moses Staff Hackers Publish Footage of Jerusalem Explosion

New Cybereason study reveals damage caused by Ransomware

New ransomware attacks in Ukraine linked to Russian Sandworm hackers

No further action needed after ransomware attack on SCRD: report

Ontario Teachers’ Data Stolen in Ransomware Attack

Overcoming unique cybersecurity challenges in schools

Police data breach puts victim-survivors of sexual offences at risk

Privacy commissioner says SLGA cyber attack affected about 40,000

Ransomware attack on HomeTrust Mortgage's network compromised consumers' contact information and SSNs

Russian hackers targeting Dutch gas terminal: report

Security expert on AirAsia ransomware attack

Six out of 10 Irish SMEs have experienced a cyber attack - report

Social media is still a hotbed for scams

Sonder’s Data Breach Exposes Guest Records

Southampton County, Virginia reports ransomware incident

Twitter accused of covering up data breach that affects millions

U.K. Police Arrest 142 in Global Crackdown on 'iSpoof' Phone Spoofing Service

UK urges to disconnect Chinese security cameras in government buildings

Update Chrome Browser Now to Patch New Actively Exploited Zero-Day Flaw

Vazamento gigantesco: Hacker oferece 487 milhões de números de WhatsApp. Parte também é da República Tcheca

Vice Society ransomware claims attack on Cincinnati State college

Zero-Trust Management a Big Corp Challenge, Perimeter 81 Finds

Watch Out Gamers: Hackers Exploiting MSI Afterburner to Deliver Coin Miner

World Cup Crypto Scams are On the Rise – Look Out For These

24/11

50k Customers of Revolut affected by Phishing Data Breach

AIIMS (All India Institute of Medical Sciences) Delhi cyber attack: Need for legal framework for data security, experts suggest

An aggressive malware campaign targets US-based companies with Qakbot to deliver Black Basta Ransomware

Ataque hacker cresce em empresas menores, assim como preço do resgate

Australian Cyber Task Force Looks to “Hack the Hackers” After Data Breach Crime Wave

Bahamut Cyber Espionage Hackers Targeting Android Users with Fake VPN Apps

Black Basta Ransomware Gang Actively Infiltrating U.S. Companies with Qakbot Malware

Criminals Commercialising Cybercrime, Launching Innovative Ransomware Attacks: Sophos Report 2023

Cyber Essentials Scheme Set for April 2023 Update

Daixin ransomware gang stole 5m customers' data records from AirAsia's network

Docker Hub repositories hide over 1,650 malicious containers

FBI joins German law enforcement probe into the Continental data breach

Gardaí arrest six over international phone call phishing scam

Hackers modify popular OpenVPN Android app to include spyware

How cloud PCs act as an insurance plan for ransomware recovery

Interpol seized $130 million from cybercriminals worldwide

Iranian hacker group publishes video of Jerusalem attacks

Is Ransomware Getting Commercialized?

'iSpoof' service dismantled, main operator and 145 users arrested

Japan considers creating new cyber defence agency as attacks ramp up in region

Killnet Group Claims Responsibility for European Parliament Cyber Attack

Lorenz Ransomware Alert: Risk to Healthcare, Public Sector

Millions of Android Devices Still Don't Have Patches for Mali GPU Flaws

New crypto phishing scam discovered in the wild

New RansomExx Ransomware Variant Rewritten in the Rust Programming Language

Personal data complaints spike following Optus breach

Police text 70,000 victims in UK's biggest anti-fraud operation

Ransomware attacks against businesses on holidays and weekends result in greater disruption and costs

Ransomware incidents now dominate agenda at COBRA meetings, report

Ransomware suspected as AIIMS servers go down, trigger long waits

Russian DDoS Briefly Downs European Parliament Site

Scammers, bots dominate threat landscape ahead of Black Friday and Cyber Monday

Sonder confirms data breach, documents and other PII potentially compromised

Suffolk Police 'extremely sorry' for sex offences data breach

The emergence of zero trust consumers

The safest datacenter is the one that works best

The Smith Family reports major cyber attack

This Android File Manager App Infected Thousands of Devices with SharkBot Malware

UK Cops Lead Action Against Fraud Site that Made £100m+

U.S. govt seizes domains used in 'pig butchering' scams

What is Cyber Extortion and How Can It Be Prevented?

Why individual arrests will not shut down LockBit

Your staff are the frontline in your ransomware fight

Zeppelin Ransomware Proceeds Punctured by Crypto Workaround

23/11

5G can reduce – but also create – security risk

34 Russian Cybercrime Groups Stole Over 50 Million Passwords with Stealer Malware

A flaw in ConnectWise Control spurred the company to make life harder for scammers

Ataque hacker: aparelhos Android com GPU Mali estão vulneráveis

AxLocker Ransomware Adds a Twist: Stealing Discord Tokens

Backdoored Chrome extension installed by 200,000 Roblox players

Best practices for implementing a company-wide risk analysis program

Bitcoin Will Become ‘Less Important’ for Cybercrime Payments: Kaspersky

China-based hackers target Asia-Pacific gov’ts, including PH, in spear-phishing campaign

Cisco Reveals Top Cybersecurity Threats Trends in Quarter 3 2022 (from August to October 2022) Ransomware accounts for 40% of total cyberattacks

Cloud Security Basics for Small Business

Data breach compromises local Social Security numbers

Data breach penalty reforms get Senate committee green light

DDoS Protection From OVHCloud

Dozens of Russian Groups Steal 50 Million User Passwords

Ducktail hackers now use WhatsApp to phish for Facebook Ad accounts

Ducktail Malware Operation Evolves with New Malicious Capabilities

Dutch national cyber security strategy aims to protect digital society

European Parliament comes under Russian cyber-attack hours after ‘state terrorism’ vote

European Parliament hit by 'sophisticated' cyberattack

Exclusive – Quantum Locker lands in the Cloud

Fake subscription invoices lead to corporate data theft and extortion

FBI joins investigation into Continental ransomware attack

First company to receive Cyber Security Capability certification for its BWMS

For two years security experts have been secretly decrypting systems for Zeppelin ransomware victims

Google bans four apps as millions of users warned to 'delete them now'

Grupo pró-Rússia reivindica ataque hacker ao Parlamento UE

Guests' Personal Records Exposed in Sonder Data Breach

Hacker da Mango Markets teria fingido shortar Curve para explorar brecha da Aave

Hackers Exploiting Abandoned Boa Web Servers to Target Critical Industries

Here’s how to make sure your incident response strategy is ready for holiday hackers

HomeTrust Mortgage confirms data breach after a ransomware attack

How Health Care Data Encryption Fits Into Your Security Strategy

Identity-Based Attacks Increase, MFA-Thwarting Tactics Rise

Key Challenges that lie ahead for the Cyber security industry

Lockbit ransomware gang takes credit for attack on Quebec municipality

Mali GPU ‘patch gap’ leaves Android users vulnerable to attacks

Mango Market Hacker Loses Millions in Failed Aave Scheme

Medical Software Firm exposes vulnerable children’s sensitive data

Meta Takes Down Fake Facebook and Instagram Accounts Linked to Pro-U.S. Influence Operation

Microsoft releases out-of-band update to fix Kerberos auth issues caused by a patch for CVE-2022-37966

Microsoft warns: This forgotten open-source web server could let hackers 'silently' gain access to your system

Navigating the World of RaaS: A Dive Into the Hive Ransomware Group as a Business

NCC-CSIRT speaks on Somnia Ransomware targetting Telegram accounts

Nighthawk Likely to Become Hackers' New Post-Exploitation Tool After Cobalt Strike

Odd and interesting gift ideas for the hobbyist hacker in your life

Qakbot Infections Linked to Black Basta Ransomware Campaign

Ransomware attack cripples AIIMS services

Ransomware Cyber attack on AIIMS (All India Institute of Medical Sciences) server

Ransomware Knocks Out Dallas Appraisal District Website

Russian cybergangs stole over 50 million passwords this year

Template Injection Attacks: Protecting Against Camouflaged URLs

The Enemy Has Deep Pockets: How safe are your user accounts?

The impact of inadequate SaaS management

The psychological warfare behind ransomware attacks

The Smith Family Cyber-Attack Raises Concerns For Aussies Experiencing Mental Health Issues

The Top 10 Most Common Cause of Data Breach

Threat actors extend attack techniques to new enterprise apps and services

Top 6 security risks associated with industrial IoT

Top Cyber Threats Facing E-Commerce Sites This Holiday Season

UK Privacy Tsar Defends Controversial Enforcement Strategy

WannaRen Returns as Life Ransomware, Targets India

Yanluowang Ransomware's Russian Links Laid Bare

22/11

5 API Vulnerabilities That Get Exploited by Criminals

12 Cybersecurity Trends Every CISO Must Prepare for in 2023

90% of organizations have Microsoft 365 security gaps

A cyber-attack on your supply chain: A real life case study

Android file manager apps infect thousands with Sharkbot malware

Atakama outlines their top cybersecurity predictions for 2023

Aurora Stealer Malware is becoming a prominent threat in the cybercrime ecosystem

Beware of a False Sense of Cybersecurity

C-suite mystified by cyber security jargon

China just announced a new social credit law. Here’s what it means

Chitkara University Signs MoA with Data Security Council of India to Collaborate for Joint Programs on Cyber Security and Privacy

Credential Stuffers Steal $300K from DraftKings Customers

Crypto exchange urges Singapore to implement 'practical' regulation on back of FTX collapse

Cyber risk focus areas for portfolio companies

Digesting CISA's Cross-Sector Cybersecurity Performance Goals

Ducktail Hacker Group Evolves, Targets Facebook Business Accounts

Em movimento: hacker da FTX divide quase US$ 200 milhões em ETH em 12 carteiras

Emotet is back and delivers payloads like IcedID and Bumblebee

Estonian Duo Arrested for Masterminding $575m Ponzi Scheme

EU Council mulls broad national security carveouts in IoT cybersecurity law

Experts Warn Threat Actors May Abuse Red Team Tool Nighthawk

Firms Spend $1197 Per Employee Yearly to Address Cyber-Attacks

Four Reasons The Cybersecurity Sector Could Remain Recession-Resilient

Guest Lectures On Domestic Abuse, Cyber Security Held At GMC

Here's How to Ensure Your Incident Response Strategy is Ready for Holiday Hackers

How entrepreneurs can capitalize on the impending golden age of cybersecurity

Invest in cyber security to secure your digital assets – Cyber Security Expert to SMEs

Know thy enemy: thinking like a hacker can boost cybersecurity strategy

Liquid C2 launches Cyber Security Fusion Centre for Kenyan businesses

Luna Moth Gang Invests in Call Centers to Target Businesses with Callback Phishing Campaigns

Meta fires employees for allegedly hacking into user’s accounts

Out of the blue: Surviving an 18-hour, 39M-request DDoS attack

Researchers Warn of Cyber Criminals Using Go-based Aurora Stealer Malware

Security awareness training needs a revamp

The most commonly used passwords you should avoid to stay safe online

This Malware Installs Malicious Browser Extensions to Steal Users' Passwords and Cryptos

Three-quarters of retail, hospitality applications have security flaws

Twitter contrata George Hotz, hacker de iPhone, como estagiário

Two Estonian citizens arrested in $575M cryptocurrency fraud scheme

U.S. Authorities Seize Domains Used in 'Pig butchering' Cryptocurrency Scams

US Takes Down Domains Used in 'Pig Butchering' Cryptocurrency Scheme

What cyber insurance really covers

Why Website Captchas are Vulnerable to Cyber-Attacks?

Why You Need To Be Carrying Out A Cyber Security Audit In Your Business

Windows 10 22H2 now in broad deployment, available to everyone

21/11

3 Steps for Creating a Strong Security Culture in the Workplace

4 clear objectives to assess cybersecurity threats and performance

5 free resources from the Cybersecurity and Infrastructure Security Agency (CISA)

10 organizations that suffered massive data breaches in 2022

Achieve Defense-in-Depth in Multi-Cloud Environments

Addepalli Dolendra Vikas' DirectMessage Is a Cyberpunk Secure LoRa Communicator Handset

Apps with over 3 million installs leak 'Admin' search API keys

Augusta University students participate in cyber security competition

Aviation Starting to Get Hit with Rise of Cyberattacks Post-Pandemic

Been Doing It The Same Way For Years? Think Again

Black Friday deal: 50% off Malwarebytes Premium + Privacy VPN bundle

Breaches in healthcare

California County Says Personal Information Compromised in Data Breach

CGI’s Cyber Escape Experience visits Lincoln

Chinese threat group spoofs Coca-Cola and McDonald’s in sophisticated phishing campaign

Commonwealth Care Alliance of California Reports Recent Data Breach Leaking Patient’s Protected Health Information

Covering Data Breaches in an Ethical Way

Criminals 'follow the money' by commercialising cybercrime, launching more 'innovative' ransomware attacks and doubling down on credential theft: Sophos

Cyber as important as missile defences – ex-NATO general

Cyber Risk Is Rising: Here Is How Companies Can Tackle Tomorrow's Threats Today

Cyber security pros: move to the next level next year

Cybersecurity Risk Remains the Leading Concern for Autonomous Shipping

Cybersecurity sector continues to grow despite imminent global recession

CyberStrong’s Cybersecurity Dashboard Capabilities

Daixin Ransomware Gang Steals 5 Million AirAsia Passengers' and Employees' Data

DataDome Joins AWS ISV Accelerate Program to Boost Adoption of Advanced Bot Protection

Defending against Hive ransomware: It’s time to use the attackers’ tools

DOJ busy with cryptocurrency-related crimes

Eagle Bank Reports that Recent Data Breach Resulted in Compromised Customer Social Security Numbers

Emerging cyber threats

Farrer Park Hospital fined S$58,000 over data breach affecting medical information of 2,000 people

Five ways to guarantee the safety of customer data

Forefront Dermatology To Pay $3.75M In Healthcare Data Breach Settlement

Former Employee Could Sue Company over Data Breach

Future-proofing asset and vulnerability intelligence in response to CISA’s BOD 23-01

Google Chrome extension used to steal cryptocurrency, passwords

Google Identifies 34 Cracked Versions of Popular Cobalt Strike Hacking Toolkit in the Wild

Google provides rules to detect tens of cracked versions of Cobalt Strike

Google releases 165 YARA rules to detect Cobalt Strike attacks

Google seeks to make Cobalt Strike useless to attackers

Google Wins Lawsuit Against Russians Linked to Blockchain-based Glupteba Botnet

Google Wins Legal Battle Against Glupteba Botnet

Google won a lawsuit against the Glupteba botnet operators

Hacker da FTX troca Ether por Bitcoin e preço cai 8%

Hackers Gain Control of LED Billboard for Minutes to Post Racy Images

Hackers steal $300,000 in DraftKings credential stuffing attack

How Do Medical Data Breaches Happen?

How to combat ransomware threats in the education sector

How To Keep Your Brand Safe This Black Friday And Cyber Monday

Infineon aims for ISO/SAE 21434 automotive cyber-security with MCU family

Legacy IT system modernization largely driven by security concerns

Luna Moth Phishing Extortion Campaign Targets Businesses in Multiple Sectors

MFA Still Works Despite Push Fatigue Surge

Microsoft Email Security Bypasses Instagram Credential Phishing Attacks

Montreal-area city hit by ransomware: Report

Namibia launches cyber security council to combat cyber fraud

New AXLocker Ransomware Steals Victims' Discord Tokens

New cyber security course rolling out to NSW schools

Notorious Emotet Malware Returns With High-Volume Malspam Campaign

Octocrypt, Alice, and AXLocker Ransomware, new threats in the wild

OIG: HHS Must Modernize Its Approach to Cybersecurity

Palo Alto Networks reports strong fiscal Q1 as security needs outpace economic fears

Personal data of AirAsia Malaysia, Indonesia and Thailand passengers allegedly leaked due to ransomware

Personal data of over 30,000 students leaked from Kannur University’s official website

Personal data of over 33,000 Kannur varsity students in hackers’ forum

Private Equity Exposed by Cyber-Hygiene Shortcomings

Quais são os tipos de ataque hacker mais conhecidos?

Ransomware response requires better federal, state, local coordination

Securing The New Frontier in Developer Environments: Cloud IDEs

Security Is Very Important in Online Gaming

Ten Charged in $11m Healthcare BEC Plots

The pros and cons of using open-source Kubernetes security software

This sneaky ransomware gang keeps changing tactics to spread its malware

Thousands of Algolia API Keys Could Expose Users' Data

Three security design principles for public REST APIs

Upskilling workers in technology and cyber security roles is ‘paramount’

Why Cybersecurity Should Be Part Of Any Business Strategy

Will Rishi Sunak reassess UK cybersecurity policies?

Wiz Adds Data Security Posture Module to CNAPP

20/11

Brasil nas últimas posições do ranking MIT de cibersegurança

Central Depository Services (India) (CDSL) provides updates on pending settlement after being hit by cyber attack

Cyber Pirates

‘Data-rich, resource-poor.’ Why Michigan schools can be a ‘soft target’ for ransomware attacks

Even Govt will be held accountable for data breach, says Govt source

Five common online scams to look out for this Black Friday

Five Million AirAsia Passengers And Employees Personal Data Might Be Compromised

Four Android apps banned from Google Play store as users urged to delete them

Fresh blow for Medibank customers after hackers release more data

‘FTX Accounts Drainer’ Offloads 50,000 ETH, Entity Uses Ren’s Bitcoin Gateway to Acquire BTC

FTX Launches Strategic Review of Assets as Hacker Dumps ETH

Hacker invade conta de Felipe Neto no Koo e se justifica: "Péssima segurança"

Here’s What’s Happening to Crypto Stolen from FTX

Holiday Shopping Online: Safety on Black Friday, Cyber Monday

How hackers accessed Airtel Money’s systems

How hackers stole billions from Airtel Money in Uganda

Likelihood of WannaCry happening in 2023 high: Kaspersky

Many loose ends in new Personal Data Protection Bill 2022

Medibank hackers release more data

Michigan prosthetics and orthotics provider discloses ransomware attack back in January

More Medibank data leaked on dark web as standoff continues

New malware exploits a zero-day flaw in the Windows operating system

New ransomware encrypts files, then steals your Discord account

Offshore US oil, gas facilities at ‘significant’ risk of cyberattack, watchdog warns

On-chain data reveals how an FTX hacker converted 25,000 ETH to BTC

Ransomware Attacks Decrease by Over 20% in 2022

Research sector targeted in new spear phishing attack using Google Drive

Royal Ransomware: New Threat Uses Google Ads and Cracked Software

Russian hackers behind Medibank cyber attack release thousands more records

Should You Always Put Tape Over Your Laptop Camera?

The pivotal role of cybersecurity in healthcare and medical devices

Top employee cybersecurity tips for remote work and travel

Your Home Security Cameras Can Be Hacked. Here's How to Prevent It

DAILY NEWS: Novembro (13/11 - 19/11) - 46 Semana de 2022