DAILY NEWS: Novembro - Dezembro (27/11 - 03/12) - 48 Semana de 2022
Cyber Security and Information Security News - Daily Updates !! Weekly Review

03/12
18% of Brazilians have had digital services hacked after password leaks, reveals research
A new Linux flaw can be chained with other two bugs to gain full root privileges
AIIMS Ransomware Attack Conspiracy Planned By Significant Forces: Rajeev Chandrasekhar
Chinese Hackers Suspected Behind AIIMS Delhi Cyber Attack
Cyber alert: NCC-CSIRT warns Nigerians on latest Phishing attack
Darknet markets generate millions in revenue selling stolen personal data
DNA - Cyber Attack: How important data is stolen and posted on Dark Web?
Ethical Hacker Discovers SiriusXM Ability to Unlock and Start Cars Ahead of the Evil Ones
Find out if they spy on your Android mobile
Five scams to watch out for on Facebook Marketplace
Google fixed the ninth actively exploited Chrome zeroday this year
Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability
Govt to have Cyber Security Analysts, CERT, Early Warning System; set up CoE, think tank
Hackers use new, fake crypto app to breach networks, steal cryptocurrency
How to choose between outsourced vs in-house cybersecurity
HSE brace for likely legal actions following cyber breach disclosures
Making cybersecurity awareness training a cornerstone of the curriculum
Malware Apps Signed with Compromised Android Platform Certificates
MediaTek, Samsung and LG certificates were used to validate malware on Android
Meta faces lawsuit for harvesting financial data from tax prep websites
Not the bargain they asked for: Cyber threats hound Filipino shoppers
Online Leak of Stolen Twitter Data Leads to the Discovery of a Greater Breach
Rackspace rocked by ‘security incident’ that has taken out some hosted Exchange services
San Diego Unified telling staff & students to change passwords following cybersecurity incident
Seminar on cyber security awareness held in schools in Nagpur
Why Do Crypto Companies Keep Getting Hacked?
02/12
After Discovery of Huge Data Breach, Twitter Alternative Hive Goes Offline
AIIMS Ransomware Attack: A Wake-Up Call For India
Australia among top countries affected by ransomware attacks
AWS builds a lake for multivendor security data sharing
Binance pauses withdrawals after hacker exploits Ankr and Hay tokens
Cuba Ransomware Actors Pocket $60m
Cuba Ransomware Extorted Over $60 Million in Ransom Fees from More than 100 Entities
Cyber Safety Review Board to probe Lapsus$ ransomware spree
Don’t ignore the security risks of limitless cloud data
Experts argue 'sludge' could muck up cyber attacks
FBI e CISA dizem que gangue de ransomware de Cuba extorquiu US$ 60 milhões de vítimas este ano
FBI issues warning to Norman parents after ransomware attack
Financial organizations more prone to accidental data leakage
Five Albanian state IT staff investigated over Iran hack
Five controls for OT cybersecurity
Five reasons why we can expect a major cyberattack on a healthcare organization in 2023
Hacker Makes Off With Millions After Minting Six Quadrillion of Ankr’s BNB Staking Tokens
Hackers and Phishing, Oh My! Easing Fintech Security Concerns
Hackers will get smarter in 2023, but cybersecurity talent will be harder to find: experts
Health insurer Accuro says 30,000 customers’ data potentially exposed in hack
How finance CISOs can revamp their cyber security strategy to protect against today’s cyber threats
How Ransomware Trends Will Drive Significant Data Management Changes In 2023
I am a Medibank customer. Am I affected by the cyber-attack? What can I do to protect myself?
LastPass admits to customer data breach caused by previous breach
Last Pass reports second data breach in three months
LastPass Suffers Second Major Data Breach in Four Months
More organisations in Africa threatened by Ransomware, Sophos reveals
'No-one wants our data, it's not important': Wrong
Russian regions attacked by new wiper posing as ransomware
Social Engineering Attacks: 3 Strategies to Mitigate Risk
Social Security numbers of Suffolk employees compromised during cyber attack
St. Michael Medical Center patient information at risk in ransomware data attack
Suffolk County government continues to reel from cyber attack
The top 10 hacks and cyber security threats of 2022
Trojan Steals Facebook Details from Over 300K Victims
Most government servers back on after cyber attack says Vanuatu PM
Watch Out! These Android Keyboard Apps With 2 Million Installs Can be Hacked Remotely
01/12
A year later, Log4Shell still lingers
AIIMS-Delhi Working On Cyber Security Policy With Investigating Agencies
Are you using word 'password' as your password?
Australia amongst top targeted countries for ransomware
‘Bluebugging’ gives hackers access to chats, contacts, and more; Keep yourself safe!
Cybersecurity engineering under the Federal Trade Commission
Cybersecurity: Why effective data security necessary in today’s competitive world
Eight Charged with $30m Unemployment Benefits Fraud
EU threatens to ban Twitter in all of Europe unless Elon Musk gets his act together
Federal defense contractors are not properly securing military secrets
FTX collapse will blunt activities of North Korea hackers, analyst says
Hackers Leak Another Set of Medibank Customer Data on the Dark Web
How Thinking Outside Silos Helps Risk Management and Cyber Threat Response
LastPass, GoTo announce security incident
LastPass reveals another security breach
LastPass Suffers Another Security Breach; Exposed Some Customers Information
Medibank hackers reportedly release all data on dark web
Medibank responds to hackers’ biggest data dump overnight
North Korea Hackers Using New "Dolphin" Backdoor to Spy on South Korean Targets
Online Systems Still Down After Cyber Attack, AIIMS Daily OPD Registrations Fall Substantially
Predatory loan mobile apps grab data, harass users and their contacts
Prestige Ransomware Attack Highlights Need to Update Cyber Security
Report: California gun data breach was unintentional
Researchers Accidentally Crash Cryptomining Botnet
Researchers 'Accidentally' Crash KmsdBot Cryptocurrency Mining Botnet Network
Researchers Disclose Critical RCE Vulnerability Affecting Quarkus Java Framework
Schoolyard Bully Trojan Apps Stole Facebook Credentials from Over 300,000 Android Users
Security pros feel threat detection and response workloads have increased
Social Media Platforms and Data Breaches: Are Your Secured?
Treasurer's Office back online; cyber attack under investigation
UK Extends NIS Regulations to IT Managed Service Providers
Using TWS or Bluetooth devices? Here's how you can safeguard yourself from Bluetooth hacking
Vatican hit by suspected cyber attack days after Pope criticises Russia
What Developers Need to Fight the Battle Against Common Vulnerabilities
Why are K-12 educational institutions reluctant to report cyber incidents?
30/11
3 New Vulnerabilities Affect OT Products from German Companies Festo and CODESYS
33% of attacks in the cloud leverage credential access
Android and iOS apps with 15 million installs extort loan seekers
Australia Passes Bill to Fine Companies up to $50 Million for Data Breaches
Businesses Increasing Cyber Spend Without Clear Strategy, Fastly Finds
China-linked UNC4191 APT relies on USB Devices in attacks against entities in the Philippines
Chinese Cyber Espionage Hackers Using USB Devices to Target Entities in Philippines
CISOs’ priorities for the coming year
Crafty threat actor uses 'aged' domains to evade security platforms
Cyber Security DE:CODED – Security opportunities for Managed Service Providers
Cyber security | UK Regulatory Outlook November 2022
Cybersecurity laws to be updated to boost UK protection from cyber attacks
ENC Security, the encryption provider for Sony and Lexar, leaked sensitive data for over a year
French Electricity Provider Fined for Storing Users' Passwords with Weak MD5 Algorithm
Guatemala’s Foreign Ministry investigating ransomware attack
How to find hidden data breaches and uncover threats in your supply chain
Identifying key areas for fraud risk during the recession
IoT device origin matters more than ever
Israel hosts conference on homeland and cyber security
Keralty ransomware attack impacts Colombia's health care system
LastPass suffers another data breach, customer data leaked
Let's Encrypt Issues Three Billionth Certificate
Majority of US Defense Contractors Not Meeting Basic Cybersecurity Requirements
Most Small Biz IaaS Users Seeing Surge in Attacks
National Computer Security Day Interview: Modernizing Cybersecurity Career Paths
New "Icefall" Bugs Include Critical DoS Flaw
Report warns of more devastating cyberattacks in 2023
Researchers Find a Way Malicious NPM Libraries Can Evade Vulnerability Detection
Singapore releases blueprint to combat ransomware attacks
Site do Vaticano sai do ar e levanta suspeita de ataque hacker
South Staffs Water customer data leaked after ransomware attack
The Global DDoS Threat Landscape – November 2022
The impact of lay-offs on your organization’s cyber resilience
This cruel email-hacking gang aims to tug on your heartstrings and steal your cash
This Malicious App Abused Hacked Devices to Create Fake Accounts on Multiple Platforms
TikTok Invisible Body Challenge Trend Abused to Drop Malware
Unregistered work devices heighten PH firms’ cyber risks
What is Ransom Cartel? A ransomware gang focused on reputational damage
WinGD secures DNV’s cyber security type approval for its engine control system
29/11
7 Cyber Security Tips for SMBs
80% of nation’s firms hit by ransomware
As phishing volumes increase, experts pin hope on AI and trained employees as a last line of defense
Christmas a special time for cyber criminals - Check Point
CISA adds Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities Catalog
CISA Warns of Actively Exploited Critical Oracle Fusion Middleware Vulnerability
CISOs in investment firms help fast-track cybersecurity startups
Current, former patients of Wright and Filippis may have been impacted by data breach
Cyber security firm Kocho opens Cardiff office in an investment that will create 40 new jobs
Cybersecurity: How to do More for Less
Cybersecurity in 2022: 6 Key Trends That Defined the Year
Cybercriminals are cashing in on FIFA World Cup-themed cyberattacks
Cybersecurity: Deliveroo's three lines of defence
Durham school board faces cyber attack
Energy bills support scam warning as fake texts urge people to apply for £400 discount
EU Council adopts the NIS2 directive
Experts Find 16,000+ Scam FIFA World Cup Domains
Facebook owner Meta fined by Irish watchdog for data breach
Hackers Using Trending TikTok 'Invisible Challenge' to Spread Malware
Hacking of AIIMS server raises serious questions about cyber security in country: Congress
How an effective fraud prevention strategy can force fraudsters to invest more in their attacks
How Qualys has redefined cyber security at scale
How to Adapt to Tightening Security Budgets
Ireland’s DPC Fines Meta €265m Following Large-Scale Data Leak
Irish Regulator Fines Facebook $277 Million for Leak of Half a Billion Users' Data
Irish regulator fines Meta 265 million euros over data breach
Is Dark Web Monitoring Vital? How does it work?
Microsoft Defender boosts default protection for all enterprise users
Moving Away From a ‘Checklist’ Approach to Federal Compliance in Cloud Security
Naked TikTok Girls = Malware Mayhem
New Flaw in Acer Laptops Could Let Attackers Disable Secure Boot Protection