top of page

DAILY NEWS: Novembro - Dezembro (27/11 - 03/12) - 48 Semana de 2022

Cyber Security and Information Security News - Daily Updates !! Weekly Review

03/12


18% of Brazilians have had digital services hacked after password leaks, reveals research


A new Linux flaw can be chained with other two bugs to gain full root privileges


Adversarial activity. Risk and trend reports. Sandworm renews ransomware activity against Ukrainian targets.


AIIMS Ransomware Attack Conspiracy Planned By Significant Forces: Rajeev Chandrasekhar


Chinese Hackers Suspected Behind AIIMS Delhi Cyber Attack


Cyber alert: NCC-CSIRT warns Nigerians on latest Phishing attack


Darknet markets generate millions in revenue selling stolen personal data


DNA - Cyber Attack: How important data is stolen and posted on Dark Web?


Ethical Hacker Discovers SiriusXM Ability to Unlock and Start Cars Ahead of the Evil Ones


Find out if they spy on your Android mobile


Five scams to watch out for on Facebook Marketplace


Google fixed the ninth actively exploited Chrome zeroday this year


Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability


Govt to have Cyber Security Analysts, CERT, Early Warning System; set up CoE, think tank


Hackers use new, fake crypto app to breach networks, steal cryptocurrency


How to choose between outsourced vs in-house cybersecurity


HSE brace for likely legal actions following cyber breach disclosures


Making cybersecurity awareness training a cornerstone of the curriculum


Malware Apps Signed with Compromised Android Platform Certificates


MediaTek, Samsung and LG certificates were used to validate malware on Android


Meta faces lawsuit for harvesting financial data from tax prep websites


North Korea’s Nuclear Program Is Funded by Stolen Cryptocurrency, Could It Collapse Now That FTX Has?


Not the bargain they asked for: Cyber threats hound Filipino shoppers


Online Leak of Stolen Twitter Data Leads to the Discovery of a Greater Breach


Rackspace rocked by ‘security incident’ that has taken out some hosted Exchange services


Russia coordinating Ukraine hacks with missiles, could increasingly target European allies, Microsoft warns


San Diego State University: SDSU Cyber Security and Intelligence Club, Haiku Inc. Launch New Partnership


San Diego Unified telling staff & students to change passwords following cybersecurity incident


Seminar on cyber security awareness held in schools in Nagpur


Why Do Crypto Companies Keep Getting Hacked?


02/12


After Discovery of Huge Data Breach, Twitter Alternative Hive Goes Offline


AIIMS Ransomware Attack: A Wake-Up Call For India


Australia among top countries affected by ransomware attacks


AWS builds a lake for multivendor security data sharing


Binance pauses withdrawals after hacker exploits Ankr and Hay tokens


Cuba Ransomware Actors Pocket $60m


Cuba Ransomware Extorted Over $60 Million in Ransom Fees from More than 100 Entities


Cyber Safety Review Board to probe Lapsus$ ransomware spree


Don’t ignore the security risks of limitless cloud data


Experts argue 'sludge' could muck up cyber attacks


FBI e CISA dizem que gangue de ransomware de Cuba extorquiu US$ 60 milhões de vítimas este ano


FBI issues warning to Norman parents after ransomware attack


Financial organizations more prone to accidental data leakage


Five Albanian state IT staff investigated over Iran hack


Five controls for OT cybersecurity


Five reasons why we can expect a major cyberattack on a healthcare organization in 2023


Hacker Makes Off With Millions After Minting Six Quadrillion of Ankr’s BNB Staking Tokens


Hackers and Phishing, Oh My! Easing Fintech Security Concerns


Hackers will get smarter in 2023, but cybersecurity talent will be harder to find: experts


Health insurer Accuro says 30,000 customers’ data potentially exposed in hack


How finance CISOs can revamp their cyber security strategy to protect against today’s cyber threats


How Ransomware Trends Will Drive Significant Data Management Changes In 2023


I am a Medibank customer. Am I affected by the cyber-attack? What can I do to protect myself?


LastPass admits to customer data breach caused by previous breach


Last Pass reports second data breach in three months


LastPass Suffers Second Major Data Breach in Four Months


More organisations in Africa threatened by Ransomware, Sophos reveals


Multiple NC schools received hoax active shooter calls in one day; 911 dispatch and cyber security experts weigh in


'No-one wants our data, it's not important': Wrong


Ransomware as a Service and Rise of Metaverse can pose new cybersecurity challenges in 2023, says CyberArk


Russian regions attacked by new wiper posing as ransomware


Social Engineering Attacks: 3 Strategies to Mitigate Risk


Social Security numbers of Suffolk employees compromised during cyber attack


St. Michael Medical Center patient information at risk in ransomware data attack


Suffolk County government continues to reel from cyber attack


The top 10 hacks and cyber security threats of 2022


Trojan Steals Facebook Details from Over 300K Victims


Most government servers back on after cyber attack says Vanuatu PM


Watch Out! These Android Keyboard Apps With 2 Million Installs Can be Hacked Remotely


01/12


A year later, Log4Shell still lingers


AIIMS-Delhi Working On Cyber Security Policy With Investigating Agencies


Are you using word 'password' as your password?


Australia amongst top targeted countries for ransomware


‘Bluebugging’ gives hackers access to chats, contacts, and more; Keep yourself safe!


Cybersecurity engineering under the Federal Trade Commission


Cybersecurity: Why effective data security necessary in today’s competitive world


Eight Charged with $30m Unemployment Benefits Fraud


EU threatens to ban Twitter in all of Europe unless Elon Musk gets his act together


Federal defense contractors are not properly securing military secrets


FTX collapse will blunt activities of North Korea hackers, analyst says


Hackers Leak Another Set of Medibank Customer Data on the Dark Web


How Thinking Outside Silos Helps Risk Management and Cyber Threat Response


LastPass, GoTo announce security incident


LastPass reveals another security breach


LastPass Suffers Another Security Breach; Exposed Some Customers Information


Medibank hackers reportedly release all data on dark web


Medibank responds to hackers’ biggest data dump overnight


North Korea Hackers Using New "Dolphin" Backdoor to Spy on South Korean Targets


Online Systems Still Down After Cyber Attack, AIIMS Daily OPD Registrations Fall Substantially


Predatory loan mobile apps grab data, harass users and their contacts


Prestige Ransomware Attack Highlights Need to Update Cyber Security


Report: California gun data breach was unintentional


Researchers Accidentally Crash Cryptomining Botnet


Researchers 'Accidentally' Crash KmsdBot Cryptocurrency Mining Botnet Network


Researchers Disclose Critical RCE Vulnerability Affecting Quarkus Java Framework


Schoolyard Bully Trojan Apps Stole Facebook Credentials from Over 300,000 Android Users


Security pros feel threat detection and response workloads have increased


Social Media Platforms and Data Breaches: Are Your Secured?


Treasurer's Office back online; cyber attack under investigation


UK Extends NIS Regulations to IT Managed Service Providers


Using TWS or Bluetooth devices? Here's how you can safeguard yourself from Bluetooth hacking


Vatican hit by suspected cyber attack days after Pope criticises Russia


What Developers Need to Fight the Battle Against Common Vulnerabilities


Why are K-12 educational institutions reluctant to report cyber incidents?


30/11


3 New Vulnerabilities Affect OT Products from German Companies Festo and CODESYS


33% of attacks in the cloud leverage credential access


Android and iOS apps with 15 million installs extort loan seekers


Australia Passes Bill to Fine Companies up to $50 Million for Data Breaches


Businesses Increasing Cyber Spend Without Clear Strategy, Fastly Finds


China-linked UNC4191 APT relies on USB Devices in attacks against entities in the Philippines


Chinese Cyber Espionage Hackers Using USB Devices to Target Entities in Philippines


CISOs’ priorities for the coming year


Crafty threat actor uses 'aged' domains to evade security platforms


Cyber Security DE:CODED – Security opportunities for Managed Service Providers


Cyber security | UK Regulatory Outlook November 2022


Cybersecurity laws to be updated to boost UK protection from cyber attacks


ENC Security, the encryption provider for Sony and Lexar, leaked sensitive data for over a year


French Electricity Provider Fined for Storing Users' Passwords with Weak MD5 Algorithm


Guatemala’s Foreign Ministry investigating ransomware attack


How to find hidden data breaches and uncover threats in your supply chain


Identifying key areas for fraud risk during the recession


IoT device origin matters more than ever


Israel hosts conference on homeland and cyber security


Keralty ransomware attack impacts Colombia's health care system


LastPass suffers another data breach, customer data leaked


Let's Encrypt Issues Three Billionth Certificate


Majority of US Defense Contractors Not Meeting Basic Cybersecurity Requirements


Most Small Biz IaaS Users Seeing Surge in Attacks


National Computer Security Day Interview: Modernizing Cybersecurity Career Paths


New "Icefall" Bugs Include Critical DoS Flaw


Report warns of more devastating cyberattacks in 2023


Researchers Find a Way Malicious NPM Libraries Can Evade Vulnerability Detection


Singapore releases blueprint to combat ransomware attacks


Site do Vaticano sai do ar e levanta suspeita de ataque hacker


South Staffs Water customer data leaked after ransomware attack


The Global DDoS Threat Landscape – November 2022


The impact of lay-offs on your organization’s cyber resilience


This cruel email-hacking gang aims to tug on your heartstrings and steal your cash


This Malicious App Abused Hacked Devices to Create Fake Accounts on Multiple Platforms


TikTok Invisible Body Challenge Trend Abused to Drop Malware


Unregistered work devices heighten PH firms’ cyber risks


What is Ransom Cartel? A ransomware gang focused on reputational damage


WinGD secures DNV’s cyber security type approval for its engine control system


29/11


7 Cyber Security Tips for SMBs


80% of nation’s firms hit by ransomware


As phishing volumes increase, experts pin hope on AI and trained employees as a last line of defense


Christmas a special time for cyber criminals - Check Point


CISA adds Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities Catalog


CISA Warns of Actively Exploited Critical Oracle Fusion Middleware Vulnerability


CISOs in investment firms help fast-track cybersecurity startups


Current, former patients of Wright and Filippis may have been impacted by data breach


Cyber security firm Kocho opens Cardiff office in an investment that will create 40 new jobs


Cybersecurity: How to do More for Less


Cybersecurity in 2022: 6 Key Trends That Defined the Year


Cyber Security in BFSI Market to Reach $214.5 Billion, Globally, by 2031 at 18.6% CAGR: Allied Market Research


Cybercriminals are cashing in on FIFA World Cup-themed cyberattacks


Cybersecurity: Deliveroo's three lines of defence


Durham school board faces cyber attack


Energy bills support scam warning as fake texts urge people to apply for £400 discount


EU Council adopts the NIS2 directive


Experts Find 16,000+ Scam FIFA World Cup Domains


Facebook owner Meta fined by Irish watchdog for data breach


Hacker claims to have stolen personal WhatsApp data of 7.3m Aussies as part of alleged cache of half a BILLION people worldwide


Hackers Using Trending TikTok 'Invisible Challenge' to Spread Malware


Hacking of AIIMS server raises serious questions about cyber security in country: Congress


How an effective fraud prevention strategy can force fraudsters to invest more in their attacks


How Qualys has redefined cyber security at scale


How to Adapt to Tightening Security Budgets


Ireland’s DPC Fines Meta €265m Following Large-Scale Data Leak


Irish Regulator Fines Facebook $277 Million for Leak of Half a Billion Users' Data


Irish regulator fines Meta 265 million euros over data breach


Is Dark Web Monitoring Vital? How does it work?


Log4j: A Year in Review


Microsoft Defender boosts default protection for all enterprise users


Moving Away From a ‘Checklist’ Approach to Federal Compliance in Cloud Security


Naked TikTok Girls = Malware Mayhem


New Flaw in Acer Laptops Could Let Attackers Disable Secure Boot Protection


Open Systems acquires UK managed cyber security outfit Tiberium


Paço de Ribeirão Pires não terá atendimento após ataque hacker


PII May Have Been Stolen in Virginia County Ransomware Attack


Police Shutter 13,000 Sites in Piracy Crackdown


Pre-auth RCE in Oracle Fusion Middleware exploited in the wild (CVE-2021-35587)


Ragnar Locker gang steals vast amounts of personal data from Belgian Police servers


Ragnar Locker Ransomware Accidentally Attacked Belgian Police


Ransomware detection with Wazuh SIEM and XDR platform


Sandworm gang launches Monster ransomware attacks on Ukraine


South Staffs Water reveals bank account details targeted in cyber attack


Spanish police dismantle operation that made €12M via investment scams


The cybersecurity trends organizations will soon be dealing with


The top 200 most common passwords in 2022 are bad, mkay?


Third-Party Data Breach Impacts 119 Pediatric Practices, 2.2M Patients


Tips for Gamifying Your Cybersecurity Awareness Training Program


Top Three Things Organizations Need to Stay Secure in 2023


Twitter API Vulnerability Led to the Breach of Millions of User Data Records


UK Parliament launches inquiry into national security strategy around ransomware


US Census Bureau Head Fends Off Critics of 'Differential Privacy' Tool


Users Are Receiving More Unwanted Emails Than Ever, and It’s Causing Phishing Attacks


Vanuatu officials turn to phone books and typewriters, one month after cyber attack


Vice Society ransomware gang targets Cincinnati State College, disrupts operations


VicOne Publishes 2022 Automotive Cybersecurity Report


Web App and API Attacks Surge 257% in Financial Services


28/11


3 practical tips to stay cyber secure during FIFA World Cup Qatar


6 things you can do right now to protect your business data


7 free cybersecurity resources you need to bookmark


A breakdown of the Cyber Risk Index


Account Takeover & Compromised Accounts: Protecting Your Business From ATO Attacks


African Police Bust $800K Fraud Schemes


Amid Surge in Ransomware Attacks, More Organizations Are Being Rejected for Cyber Insurance — What Can Leaders Do?


Australia beefs up scrutiny of Medibank following data breach


Balancing cybersecurity costs and business protection


Belgian Police Under Fire After Major Ransomware Leak


Binance CEO Shares Six Most Popular Crypto Scam Methods of 2022


Cabinet Office alerted to data breach – and fails to respond for 10 days


Canadian food giant refuses to pay ransom after gang threatens data leak


Cloud security starts with zero trust


Community Health Network Notifies 1.5M of Data Breach Stemming From Tracking Tech


Contas vazadas do Twitter foram compartilhadas gratuitamente em fórum hacker


Coordinated law enforcement operation against cyber crime yields over £107m in seized assets


Cyber-security researchers warn of hackers selling fake Hayya cards, digital coins for FIFA World Cup


Cybersecurity Threats Need Fresh Data Recovery Strategies


Data Protection Commission (DPC) issues Meta with €265m fine over data scraping breach


DDoS Attacks in 2022: Trends and Obstacles Amid Worldwide Political Crisis


Eagle Bank data breach compromises Social Security numbers, financial account numbers, more


Elon Musk Confirms Twitter 2.0 will Bring End-to-End Encryption to Direct Messages


Financial fraud legislation aims to combat real estate money laundering


Govt awards $25m in grants from cybersecurity skills fund


Hacker attempts to sell data of 500m WhatsApp users on dark web


Hacker Leaks 5.3M Twitter Accounts as Claims of Larger Breach Surface


Has A ‘Hacker’ With Your Password Really Recorded You Watching Porn?


Here is why you should have Cobalt Strike detection in place


How fraudsters are committing malvertising by targeting VPN users


How the dynamics of phishing attacks are changing


How to address healthcare’s unique cybersecurity challenges


How to Break Into a Cybersecurity Career – Rob Fuller (Mubix)


How to Maintain Strong Cybersecurity in the Face of Economic Headwinds


How to Protect Yourself After an Alleged WhatsApp Data Breach


HowTo: Secure On-Chain Data


IKEA posted on ransomware gang’s leak site


Indian Hospital Hit with Bitcoin Ransomware Attack


Ireland fines Facebook owner €265 million over data breach


LR awards cyber security capability to BWMS systems


Many Global 2000 companies lack proper domain security


Meta fined €265M for not protecting Facebook users' data from scrapers


Millions of Twitter Accounts Potentially Compromised


Netskope predicts trends for cyber security in the Middle East in 2023 and beyond


New era of cyber


NHS Highland apologises to patients affected by data breach


Over a Dozen New BMC Firmware Flaws Expose OT and IoT Devices to Remote Attacks


Over a million user accounts ‘stolen’ in South Africa


Phishing Campaign Impersonating UAE Ministry of Human Resources Grows


Protecting from Ransomware requires a thorough backup and recovery strategy


Ransomware: Practical tips to improve resiliency


RansomBoggs Ransomware hit several Ukrainian entities, experts attribute it to Russia


Remote working and the cost-of-living crisis: Impacts on the cyber risk landscape in the financial sector


Researchers Detail AppSync Cross-Tenant Vulnerability in Amazon Web Services


Retailers hard hit by data breaches, analysis of ICO figures suggests


Russian Sandworm Hackers Linked to New Ransomware Blitz


SANS Institute wins