DAILY NEWS: Novembro - Dezembro (27/11 - 03/12) - 48 Semana de 2022
Cyber Security and Information Security News - Daily Updates !! Weekly Review

03/12
18% of Brazilians have had digital services hacked after password leaks, reveals research
A new Linux flaw can be chained with other two bugs to gain full root privileges
AIIMS Ransomware Attack Conspiracy Planned By Significant Forces: Rajeev Chandrasekhar
Chinese Hackers Suspected Behind AIIMS Delhi Cyber Attack
Cyber alert: NCC-CSIRT warns Nigerians on latest Phishing attack
Darknet markets generate millions in revenue selling stolen personal data
DNA - Cyber Attack: How important data is stolen and posted on Dark Web?
Ethical Hacker Discovers SiriusXM Ability to Unlock and Start Cars Ahead of the Evil Ones
Find out if they spy on your Android mobile
Five scams to watch out for on Facebook Marketplace
Google fixed the ninth actively exploited Chrome zeroday this year
Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability
Govt to have Cyber Security Analysts, CERT, Early Warning System; set up CoE, think tank
Hackers use new, fake crypto app to breach networks, steal cryptocurrency
How to choose between outsourced vs in-house cybersecurity
HSE brace for likely legal actions following cyber breach disclosures
Making cybersecurity awareness training a cornerstone of the curriculum
Malware Apps Signed with Compromised Android Platform Certificates
MediaTek, Samsung and LG certificates were used to validate malware on Android
Meta faces lawsuit for harvesting financial data from tax prep websites
Not the bargain they asked for: Cyber threats hound Filipino shoppers
Online Leak of Stolen Twitter Data Leads to the Discovery of a Greater Breach
Rackspace rocked by ‘security incident’ that has taken out some hosted Exchange services
San Diego Unified telling staff & students to change passwords following cybersecurity incident
Seminar on cyber security awareness held in schools in Nagpur
Why Do Crypto Companies Keep Getting Hacked?
02/12
After Discovery of Huge Data Breach, Twitter Alternative Hive Goes Offline
AIIMS Ransomware Attack: A Wake-Up Call For India
Australia among top countries affected by ransomware attacks
AWS builds a lake for multivendor security data sharing
Binance pauses withdrawals after hacker exploits Ankr and Hay tokens
Cuba Ransomware Actors Pocket $60m
Cuba Ransomware Extorted Over $60 Million in Ransom Fees from More than 100 Entities
Cyber Safety Review Board to probe Lapsus$ ransomware spree
Don’t ignore the security risks of limitless cloud data
Experts argue 'sludge' could muck up cyber attacks
FBI e CISA dizem que gangue de ransomware de Cuba extorquiu US$ 60 milhões de vítimas este ano
FBI issues warning to Norman parents after ransomware attack
Financial organizations more prone to accidental data leakage
Five Albanian state IT staff investigated over Iran hack
Five controls for OT cybersecurity
Five reasons why we can expect a major cyberattack on a healthcare organization in 2023
Hacker Makes Off With Millions After Minting Six Quadrillion of Ankr’s BNB Staking Tokens
Hackers and Phishing, Oh My! Easing Fintech Security Concerns
Hackers will get smarter in 2023, but cybersecurity talent will be harder to find: experts
Health insurer Accuro says 30,000 customers’ data potentially exposed in hack
How finance CISOs can revamp their cyber security strategy to protect against today’s cyber threats
How Ransomware Trends Will Drive Significant Data Management Changes In 2023
I am a Medibank customer. Am I affected by the cyber-attack? What can I do to protect myself?
LastPass admits to customer data breach caused by previous breach
Last Pass reports second data breach in three months
LastPass Suffers Second Major Data Breach in Four Months
More organisations in Africa threatened by Ransomware, Sophos reveals
'No-one wants our data, it's not important': Wrong
Russian regions attacked by new wiper posing as ransomware
Social Engineering Attacks: 3 Strategies to Mitigate Risk
Social Security numbers of Suffolk employees compromised during cyber attack
St. Michael Medical Center patient information at risk in ransomware data attack
Suffolk County government continues to reel from cyber attack
The top 10 hacks and cyber security threats of 2022
Trojan Steals Facebook Details from Over 300K Victims
Most government servers back on after cyber attack says Vanuatu PM
Watch Out! These Android Keyboard Apps With 2 Million Installs Can be Hacked Remotely
01/12
A year later, Log4Shell still lingers
AIIMS-Delhi Working On Cyber Security Policy With Investigating Agencies
Are you using word 'password' as your password?
Australia amongst top targeted countries for ransomware
‘Bluebugging’ gives hackers access to chats, contacts, and more; Keep yourself safe!
Cybersecurity engineering under the Federal Trade Commission
Cybersecurity: Why effective data security necessary in today’s competitive world
Eight Charged with $30m Unemployment Benefits Fraud
EU threatens to ban Twitter in all of Europe unless Elon Musk gets his act together
Federal defense contractors are not properly securing military secrets
FTX collapse will blunt activities of North Korea hackers, analyst says
Hackers Leak Another Set of Medibank Customer Data on the Dark Web
How Thinking Outside Silos Helps Risk Management and Cyber Threat Response
LastPass, GoTo announce security incident
LastPass reveals another security breach
LastPass Suffers Another Security Breach; Exposed Some Customers Information
Medibank hackers reportedly release all data on dark web
Medibank responds to hackers’ biggest data dump overnight
North Korea Hackers Using New "Dolphin" Backdoor to Spy on South Korean Targets
Online Systems Still Down After Cyber Attack, AIIMS Daily OPD Registrations Fall Substantially
Predatory loan mobile apps grab data, harass users and their contacts
Prestige Ransomware Attack Highlights Need to Update Cyber Security
Report: California gun data breach was unintentional
Researchers Accidentally Crash Cryptomining Botnet
Researchers 'Accidentally' Crash KmsdBot Cryptocurrency Mining Botnet Network
Researchers Disclose Critical RCE Vulnerability Affecting Quarkus Java Framework
Schoolyard Bully Trojan Apps Stole Facebook Credentials from Over 300,000 Android Users
Security pros feel threat detection and response workloads have increased
Social Media Platforms and Data Breaches: Are Your Secured?
Treasurer's Office back online; cyber attack under investigation
UK Extends NIS Regulations to IT Managed Service Providers
Using TWS or Bluetooth devices? Here's how you can safeguard yourself from Bluetooth hacking
Vatican hit by suspected cyber attack days after Pope criticises Russia
What Developers Need to Fight the Battle Against Common Vulnerabilities
Why are K-12 educational institutions reluctant to report cyber incidents?
30/11
3 New Vulnerabilities Affect OT Products from German Companies Festo and CODESYS
33% of attacks in the cloud leverage credential access
Android and iOS apps with 15 million installs extort loan seekers
Australia Passes Bill to Fine Companies up to $50 Million for Data Breaches
Businesses Increasing Cyber Spend Without Clear Strategy, Fastly Finds
China-linked UNC4191 APT relies on USB Devices in attacks against entities in the Philippines
Chinese Cyber Espionage Hackers Using USB Devices to Target Entities in Philippines
CISOs’ priorities for the coming year
Crafty threat actor uses 'aged' domains to evade security platforms
Cyber Security DE:CODED – Security opportunities for Managed Service Providers
Cyber security | UK Regulatory Outlook November 2022
Cybersecurity laws to be updated to boost UK protection from cyber attacks
ENC Security, the encryption provider for Sony and Lexar, leaked sensitive data for over a year
French Electricity Provider Fined for Storing Users' Passwords with Weak MD5 Algorithm
Guatemala’s Foreign Ministry investigating ransomware attack
How to find hidden data breaches and uncover threats in your supply chain
Identifying key areas for fraud risk during the recession
IoT device origin matters more than ever
Israel hosts conference on homeland and cyber security
Keralty ransomware attack impacts Colombia's health care system
LastPass suffers another data breach, customer data leaked
Let's Encrypt Issues Three Billionth Certificate
Majority of US Defense Contractors Not Meeting Basic Cybersecurity Requirements
Most Small Biz IaaS Users Seeing Surge in Attacks
National Computer Security Day Interview: Modernizing Cybersecurity Career Paths
New "Icefall" Bugs Include Critical DoS Flaw
Report warns of more devastating cyberattacks in 2023
Researchers Find a Way Malicious NPM Libraries Can Evade Vulnerability Detection
Singapore releases blueprint to combat ransomware attacks
Site do Vaticano sai do ar e levanta suspeita de ataque hacker
South Staffs Water customer data leaked after ransomware attack
The Global DDoS Threat Landscape – November 2022
The impact of lay-offs on your organization’s cyber resilience
This cruel email-hacking gang aims to tug on your heartstrings and steal your cash
This Malicious App Abused Hacked Devices to Create Fake Accounts on Multiple Platforms
TikTok Invisible Body Challenge Trend Abused to Drop Malware
Unregistered work devices heighten PH firms’ cyber risks
What is Ransom Cartel? A ransomware gang focused on reputational damage
WinGD secures DNV’s cyber security type approval for its engine control system
29/11
7 Cyber Security Tips for SMBs
80% of nation’s firms hit by ransomware
As phishing volumes increase, experts pin hope on AI and trained employees as a last line of defense
Christmas a special time for cyber criminals - Check Point
CISA adds Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities Catalog
CISA Warns of Actively Exploited Critical Oracle Fusion Middleware Vulnerability
CISOs in investment firms help fast-track cybersecurity startups
Current, former patients of Wright and Filippis may have been impacted by data breach
Cyber security firm Kocho opens Cardiff office in an investment that will create 40 new jobs
Cybersecurity: How to do More for Less
Cybersecurity in 2022: 6 Key Trends That Defined the Year
Cybercriminals are cashing in on FIFA World Cup-themed cyberattacks
Cybersecurity: Deliveroo's three lines of defence
Durham school board faces cyber attack
Energy bills support scam warning as fake texts urge people to apply for £400 discount
EU Council adopts the NIS2 directive
Experts Find 16,000+ Scam FIFA World Cup Domains
Facebook owner Meta fined by Irish watchdog for data breach
Hackers Using Trending TikTok 'Invisible Challenge' to Spread Malware
Hacking of AIIMS server raises serious questions about cyber security in country: Congress
How an effective fraud prevention strategy can force fraudsters to invest more in their attacks
How Qualys has redefined cyber security at scale
How to Adapt to Tightening Security Budgets
Ireland’s DPC Fines Meta €265m Following Large-Scale Data Leak
Irish Regulator Fines Facebook $277 Million for Leak of Half a Billion Users' Data
Irish regulator fines Meta 265 million euros over data breach
Is Dark Web Monitoring Vital? How does it work?
Microsoft Defender boosts default protection for all enterprise users
Moving Away From a ‘Checklist’ Approach to Federal Compliance in Cloud Security
Naked TikTok Girls = Malware Mayhem
New Flaw in Acer Laptops Could Let Attackers Disable Secure Boot Protection
Open Systems acquires UK managed cyber security outfit Tiberium
Paço de Ribeirão Pires não terá atendimento após ataque hacker
PII May Have Been Stolen in Virginia County Ransomware Attack
Police Shutter 13,000 Sites in Piracy Crackdown
Pre-auth RCE in Oracle Fusion Middleware exploited in the wild (CVE-2021-35587)
Ragnar Locker gang steals vast amounts of personal data from Belgian Police servers
Ragnar Locker Ransomware Accidentally Attacked Belgian Police
Ransomware detection with Wazuh SIEM and XDR platform
Sandworm gang launches Monster ransomware attacks on Ukraine
South Staffs Water reveals bank account details targeted in cyber attack
Spanish police dismantle operation that made €12M via investment scams
The cybersecurity trends organizations will soon be dealing with
The top 200 most common passwords in 2022 are bad, mkay?
Third-Party Data Breach Impacts 119 Pediatric Practices, 2.2M Patients
Tips for Gamifying Your Cybersecurity Awareness Training Program
Top Three Things Organizations Need to Stay Secure in 2023
Twitter API Vulnerability Led to the Breach of Millions of User Data Records
UK Parliament launches inquiry into national security strategy around ransomware
US Census Bureau Head Fends Off Critics of 'Differential Privacy' Tool
Users Are Receiving More Unwanted Emails Than Ever, and It’s Causing Phishing Attacks
Vanuatu officials turn to phone books and typewriters, one month after cyber attack
Vice Society ransomware gang targets Cincinnati State College, disrupts operations
VicOne Publishes 2022 Automotive Cybersecurity Report
Web App and API Attacks Surge 257% in Financial Services
28/11
3 practical tips to stay cyber secure during FIFA World Cup Qatar
6 things you can do right now to protect your business data
7 free cybersecurity resources you need to bookmark
A breakdown of the Cyber Risk Index
Account Takeover & Compromised Accounts: Protecting Your Business From ATO Attacks
African Police Bust $800K Fraud Schemes
Australia beefs up scrutiny of Medibank following data breach
Balancing cybersecurity costs and business protection
Belgian Police Under Fire After Major Ransomware Leak
Binance CEO Shares Six Most Popular Crypto Scam Methods of 2022
Cabinet Office alerted to data breach – and fails to respond for 10 days
Canadian food giant refuses to pay ransom after gang threatens data leak
Cloud security starts with zero trust
Community Health Network Notifies 1.5M of Data Breach Stemming From Tracking Tech
Contas vazadas do Twitter foram compartilhadas gratuitamente em fórum hacker
Coordinated law enforcement operation against cyber crime yields over £107m in seized assets
Cybersecurity Threats Need Fresh Data Recovery Strategies
Data Protection Commission (DPC) issues Meta with €265m fine over data scraping breach
DDoS Attacks in 2022: Trends and Obstacles Amid Worldwide Political Crisis
Eagle Bank data breach compromises Social Security numbers, financial account numbers, more
Elon Musk Confirms Twitter 2.0 will Bring End-to-End Encryption to Direct Messages
Financial fraud legislation aims to combat real estate money laundering
Govt awards $25m in grants from cybersecurity skills fund
Hacker attempts to sell data of 500m WhatsApp users on dark web
Hacker Leaks 5.3M Twitter Accounts as Claims of Larger Breach Surface
Has A ‘Hacker’ With Your Password Really Recorded You Watching Porn?
Here is why you should have Cobalt Strike detection in place
How fraudsters are committing malvertising by targeting VPN users
How the dynamics of phishing attacks are changing
How to address healthcare’s unique cybersecurity challenges
How to Break Into a Cybersecurity Career – Rob Fuller (Mubix)
How to Maintain Strong Cybersecurity in the Face of Economic Headwinds
How to Protect Yourself After an Alleged WhatsApp Data Breach
IKEA posted on ransomware gang’s leak site
Indian Hospital Hit with Bitcoin Ransomware Attack
Ireland fines Facebook owner €265 million over data breach
LR awards cyber security capability to BWMS systems
Many Global 2000 companies lack proper domain security
Meta fined €265M for not protecting Facebook users' data from scrapers
Millions of Twitter Accounts Potentially Compromised
Netskope predicts trends for cyber security in the Middle East in 2023 and beyond
NHS Highland apologises to patients affected by data breach
Over a Dozen New BMC Firmware Flaws Expose OT and IoT Devices to Remote Attacks
Over a million user accounts ‘stolen’ in South Africa
Phishing Campaign Impersonating UAE Ministry of Human Resources Grows
Protecting from Ransomware requires a thorough backup and recovery strategy
Ransomware: Practical tips to improve resiliency
RansomBoggs Ransomware hit several Ukrainian entities, experts attribute it to Russia
Researchers Detail AppSync Cross-Tenant Vulnerability in Amazon Web Services
Retailers hard hit by data breaches, analysis of ICO figures suggests
Russian Sandworm Hackers Linked to New Ransomware Blitz
SANS Institute wins Best Cybersecurity Training Provider of the Year at Future Security Awards 2022
Securing the healthcare sector from the cyberthreats
Students encouraged to follow careers in cyber security and tech
The 5 Cornerstones for an Effective Cyber Security Awareness Training
The Developing Connection Between Cryptocurrency and Cybercrime
TikTok ‘Invisible Body’ challenge exploited to push malware
Top 5 confidential computing uses in healthcare
Twitter data breach far worse than initially reported
Vice Society Claims Ransomware Attack Against Cincinnati State College
Zero trust to dominate cyber security in 2023
What Can Scammers Do With Your Phone Number | 4 Ways to Protect Yourself
What is an Identity Verification Service and How Does it Work?
WhatsApp denies 500 mn users’ data leak
Worms of Wisdom: How WannaCry Shapes Cybersecurity Today
27/11
5.4 million Twitter users' stolen data leaked online — more shared privately
500 mn users, including from India, at risk in WhatsApp data breach: Report
African firms’ hacked data sold for $2,100
Canada to boost defence, cyber security in Indo-Pacific policy, focus on 'disruptive' China
Coinsquare Suffers Data Breach, but Here is An Update
Cyber attacks 'crippled Scots NHS systems' with patient records stored on pieces of paper
Data of 500 million WhatsApp users leaked online, here is what we know
Fears millions of confidential NHS patient files could be LEAKED after huge cyber attack
Five Tips to Protect Yourself from Phishing Scams
Google warns Gmail users over 'extreme' rise in scams - how to stay safe online
Hacker vende números de WhatsApp de quase 500 milhões de utilizadores
Hospitals at a High Risk of Cyberattacks – Digital Health at Stake
How Women can Succeed in Cybersecurity
Iran’s Fars News Agency website hacked as part of anti-govt protests
JK digital vision document, cyber security policy launched
Keep the Hackers Out: How Trucking Companies Can Up Their Cybersecurity Game
LG Sinha launches Cyber Security Policy and Digital initiatives for J&K
LG Sinha unveils ‘J&K Cyber Security Policy’ at 25th National Conference on e-Governance
New wave of phishing attempts is making its rounds
Over 3.8m Bangladeshi WhatsApp users` data stolen
Paralysed AIIMS virtual system ready to be restored post malware attack
Philippines urged to strengthen cybersecurity infrastructure
Ragnar Locker Ransomware Leaked the Belgium Police’s Data
Salam showcases state-of-the-art cybersecurity technologies at Black Hat MEA 2022
Survey shows almost half of social media users got exploited in terms of online shopping scams
Watch Emirati inventor who leads Dubai’s cybersecurity strategy
WhatsApp data leak: 500 million user records for sale includes Greeks and Cypriots
WhatsApp Data Of Around 500 Million Users Put Up For Sale: Report
Why data protection goes beyond security: The importance of a robust data protection regime