DAILY NEWS: Outubro (16/10 - 22/10) - 42 Semana de 2022

Cyber Security and Information Security News - Daily Updates !! Weekly Review

22/10

7 Ways to Protect Your Email Account and Avoid Scams

A hacker who stole and sold Ed Sheeran songs for crypto gets prison time

Android adware apps in Google Play downloaded over 20 million times

Banks caution customers against scammers, cyber criminals

BitKeep Wallet Suffers $1M Exploit: What’s Next for Affected Users?

Carousell data breach: Info from 2.6 million accounts allegedly sold on Dark Web, hacking forums

Credit Card Scams and How to Avoid Them

Critical Flaw Reported in Move Virtual Machine Powering the Aptos Blockchain Network

Cybersecurity Awareness Month reminds Canadians to be diligent when it comes to protection against cyber criminals

Daixin Team targets health organizations with ransomware, US agencies warn

Data Breach At Wisconsin’s Largest Health Care Provider

Exploited Windows zero-day lets JavaScript files bypass security warnings

Gate.io users at risk as scammers fake giveaway on hacked Twitter account

Hackers Compromise the Twitter Account of GateIO to Promote a Phishing Scam

Here Are the Tips You Need to Stay Cyber-Safe

How to Use Public WiFi Safely on Any Device? [Tips & Tricks]

Iranian hacker group releases details about nuclear program

Is 2022 the “year of crypto hacks” as this attempt makes it to the “Hacktober” list

OldGremlin Hacker Group Expanded Toolkit With Dedicated Linux Ransomware

OlympusDAO Suffer $300K Exploit, White Hat Hacker Returns All Funds

Real estate sector data breach could be worse than Optus hack, digital rights advocates say

Some CHI Memorial systems are back online weeks after cyberattack

St. Amant Centre suffers data breach

Tech journalist warns after attack on Massy Group: TT at mercy of cyber criminals

Threat actors exploit critical flaw in VMware Workspace ONE Access to drop ransomware, miners

TommyLeaks and SchoolBoys: Two sides of the same ransomware gang

21/10

A Quick Look at the "Strengthening America's Cybersecurity" Initiative

Battery-draining Android apps with 20 million downloads pulled from the Google Play Store

BlackByte ransomware uses new data theft tool for double-extortion

Clearview AI gets third €20 million fine for illegal data collection

Cops Arrest Suspected Multimillion-Dollar Fraud Mastermind

Cyber attack on Metro

Cyber-Enabled Crimes Are Biggest Police Concerns

Cyber Security Bootcamp- Now Get Into Cyber Security Easily

Cyber Security Market Global Size Estimated to Reach USD 478.69 Billion by 2030 at a CAGR of 9.7%, Key Driven Factors - Adroit Market Research

CyberMonth: How to Promote a ‘Think Before U Click’ Culture

Data visualization: An invaluable tool in a defender’s arsenal

Emotet Botnet Distributing Self-Unlocking Password-Protected RAR Files to Drop Malware

EnergyAustralia latest to be hit by cyber-attack as details of hundreds of customers exposed

Global Automotive Cyber Security Market Report 2022: Increased Cloud Computing Implementation Presents Opportunities - ResearchAndMarkets.com

Google Unveils Open Source Project to Improve Software Supply Chain Security

Hackers exploit critical VMware flaw to drop ransomware, miners

Hackers Started Exploiting Critical "Text4Shell" Apache Commons Text Vulnerability

How phishing campaigns abuse Google Ad click tracking redirects

How Prepared is Bulgaria to Fight Cyber Attacks? Experts Weigh in

How supply chain threats will evolve in 2023

Lesson Learned: How SolarWinds Strengthened its Security Post-Incident

Medibank hack turned into a data breach: The attackers are demanding money

Microsoft Confirms Server Misconfiguration Led to 65,000+ Companies' Data Leak

Microsoft testing a Windows ‘PC Manager’ system optimizer app

Multiple Campaigns Exploit VMware Vulnerability to Deploy Crypto Miners and Ransomware

New partnership bolsters cybersecurity defences in Poland

New Phishing Campaign Targets Saudi Government Service Portal

O que se sabe sobre brasileiro preso por liderar grupo hacker internacional

OSCE supports establishment of Cybersecurity Centre of Excellence in Turkmenistan’s Institute of Telecommunications and Informatics

OldGremlin Ransomware Ups Ante Against Russian Targets

Ransomware Has Grown by 466% Since 2019: Report

St. Amant issues public alert after cyber attack

The companies most likely to lose your data

The Uber/Sullivan Conviction is NOT About Data Breaches

Thousands of Publicly Exposed API Tokens Could Threaten Software Integrity

Vítima se alia a hacker que lhe roubou R$ 120 milhões em criptos para processar operadora

Vulnerabilities in Cisco Identity Services Engine require your attention (CVE-2022-20822, CVE-2022-20959)

Wholesale giant METRO hit by IT outage after cyberattack

Why All Businesses Should Invest in Cybersecurity

Your guide to the dark web and how to safely access .onion websites

20/10

74% say connected cars and EV chargers need cybersecurity ratings

4 ways Target dynamically tracks the most alarming threats

Advocate Aurora Health reports data breach affecting up to 3 million patients

Antony Blinken’s Silicon Valley visit underscores US cybersecurity concerns

Australia’s No. 1 Health Insurer Confirms Massive Data Breach, Theft of Patient Details

Become a conscious technology user this cyber security month

Become a Master of Cyber Security With This CompTIA 2023 Super Bundle

Bilionário Bankman-Fried propõe limitar a US$ 5 milhões recompensa para hacker cripto

Black Friday: sucesso depende de ferramentas e ações contra ataques hackers no e-commerce

Brazilian Police Arrest Lapsus$ Suspect

Brazilian Police Arrest Suspected Member of Lapsus$ Hacking Group

Check Point Research analyzes the newly emerged Black Basta Ransomware, alerts organizations to adopt prevention best practices

Com a prefeitura sem sistemas desde o ataque hacker, Câmara do Rio cancela discussões sobre o orçamento de 2023

CSA Launches the SME Cybersecurity Excellence Award to Recognize Singapore Business’ Commitment to Cybersecurity

Cyber Security Works reveals 13 vulnerabilities have become newly associated with Ransomware

Cyber Skills Shortage is Caused by Analyst Burnout

Cybersecurity company finds home in rural Michigan

Cybersecurity supplement foreword

Cybersecurity Workforce Gap Grows by 26% in 2022

Data Breaches and Cyber Attacks Quarterly Review: Q3 2022

Double Down On Cybersecurity Protocols & Double Down Against Fraud

FBI Warns Students Against Loan Forgiveness Scammers

Google Launches GUAC Open Source Project to Secure Software Supply Chain

Google sued over biometric data collection without consent

Growth Opportunities in Cybersecurity Training Platforms, Vulnerability Management, Threat Detection, Remediation and Authentication Solutions - ResearchAndMarkets.com

Hackers ameaçam vazar dados de saúde de celebridades australianas

Hackers Using New Version of FurBall Android Malware to Spy on Iranian Citizens

Hacking group updates Furball Android spyware to evade detection

J.S. Held Expands Cyber Security & Investigation Services with the Acquisition of TBG Security

Medibank hack: Personal data stolen in new cyber attack

Microsoft Misconfiguration Exposes Customer Data

Most Irish businesses unprepared for cyber attack

National Cyber Security Awareness Month presentations scheduled

National cybersecurity strategy to debut within months, White House official says

NCSC Updates Early Warning Threat Intelligence

New Ursnif Variant Likely Shifting Focus to Ransomware and Data Theft

Not All Sandboxes Are for Children: How to Secure Your SaaS Sandbox

Nozomi Networks recognized for cloud security innovation in 2022 CyberSecurity Breakthrough Awards Program

OldGremlin Ransomware Targeted Over a Dozen Russian Entities in Multi-Million Scheme

Open banking API security: Best practices to ensure a safe journey

PF: hacker roubava dados de sites do governo para vender na internet

Ransomware is Being Used As a Precursor to Physical War: Ivanti

Ransomware preparedness: What are you doing wrong?

Report Says Many Boards Fear Cyber Attack, But Haven’t Addressed Cybersecurity

Singapore Creates Counter Ransomware Task Force to Tackle Threats

Singapore extends cyber security labelling scheme to medical devices

Singapore, Germany to mutually recognise IoT cybersecurity labels

The most dangerous connected devices

The State Of Cyber Security In Schools

Tech Talk: How To Fortify Cybersecurity Practices and Democratize IT Functions

These 16 Clicker Malware Infected Android Apps Were Downloaded Over 20 Million Times

United States Financial Services Cyber Security Market to Gather about USD 8 Billion by 2031 and to Grow at ~6% CAGR during 2022-2031; Growing Internet Users and Rising Cyber Security Concerns to Elevate Growth–Kenneth Research

University of Guelph says “limited information” accessed during Sept. cyber attack

Want to be a CISO? Being technical is just one of the requirements

What are the cheapest VPNs that actually still work and protect your data?

Why chasing risk assessments will have you chasing your tail

Why is cybersecurity vital for small businesses?

Women in Australia’s Cyber Security Industry Growing

Women’s employment in the cyber security industry is now growing faster in comparison to men

19/10

A Quick Guide for Small Cybersecurity Teams Looking to Invest in Cyber Insurance

Apache Commons Text RCE flaw — Keep calm and patch away

Apache Commons Text flaw is not a repeat of Log4Shell (CVE-2022-42889)

Após ataque hacker, Unimed Belém tem problemas no sistema

Brazil arrests suspect linked to the Lapsus$ hacking group

Chinese Hackers Targeting Online Casinos with GamePlayerFramework Malware

CIS Benchmarks: Community driven security guidelines

CISA Warns of Critical Flaws Affecting Industrial Appliances from Advantech and Hitachi

CISOs, rejoice! Security spending is increasing

CyberMonth: ENISA Celebrates 10 Years of European Cybersecurity Month with New, Proactive Slogan

Deadbolt Ransomware Extorts Vendors and Customers

Digital Natives Are Undermining Corporate Security - Report

Experts Warn of Stealthy PowerShell Backdoor Disguising as Windows Update

Fines are not enough! Data breach victims want better security

GTA VI | Nova imagem do documento vazado pelo hacker preso surge

Hackers use new stealthy PowerShell backdoor to target 60+ victims

How to enable end-to-end encryption for Facebook Messenger chats

How to secure microservices using authorization

iDealwine suffers a data breach

Microsoft announces enterprise DDoS protection for SMBs

Microsoft Azure SFX bug let hackers hijack Service Fabric clusters

Microsoft data breach exposes customers’ contact info, emails

Moola Market Reveals $9m Crypto Exploit

NSA Cybersecurity Director's Six Takeaways From the War in Ukraine

Passwords still dominate, and are causing headaches for everyone

PF prende brasileiro suspeito de integrar organização criminosa internacional

PF prende suspeito de atuar em ataque hacker ao site do Ministério da Saúde

Researchers Detail Azure SFX Flaw That Could've Allowed Attackers to Gain Admin Access

Secure portable operating system Tails 5.5 released

Singapore wants citizens to arm up, take accountability for personal cyber hygiene

Software Supply Chain Attacks Soar 742% in Three Years

Suspeito de participação em ataque hacker ao Ministério da Saúde e outros órgãos do governo federal é preso na Bahia

The future of MFA is passwordless

This latest Firefox update makes it easier to protect your privacy online

Upgrade your security awareness efforts: Here’s how to start

William Siri – Ataque Hacker à Prefeitura: A segurança de dados públicos precisa ser uma política de Estado

18/10

7 critical steps to defend the healthcare sector against cyber threats

AI can help you optimize your supply chain

BitKeep Wallet Drained of $1M After Hacker Exploits Swap Feature

Car theft ring used software to steal hundreds of vehicles without the physical key fob, say police

Carteira criada na BNB perde R$ 5,2 milhões em ataque hacker

CHI St. Luke’s restoring patient portals after cyberattack in early October

China-linked APT41 group targets Hong Kong with Spyder Loader

Chinese 'Spyder Loader' Malware Spotted Targeting Organizations in Hong Kong

Critical RCE Vulnerability Discovered in Popular Cobalt Strike Hacking Software

Critical Remote Code Execution issue impacts popular post-exploitation toolkit Cobalt Strike

Сryptocurrency and Ransomware — The Ultimate Friendship

CVE-2022-28762: Zoom for macOS contains a debugging port misconfiguration

Cyber Attack On Vinomofo Compromises Information Of 500,000 Customers

Cybersecurity spending on pace to surpass $260B by 2026

Deepfakes: What they are and how to spot them

DuckDuckGo for Mac enters public beta, now available to everyone

Elon, Bots, and Rampant Fraud on the Web

Enlighten Designs confirms May ransomware hack

European Police Arrest a Gang That Hacked Wireless Key Fobs to Steal Cars

European Police Catch Suspected Car Hackers

For auto dealerships, cybersecurity is more essential than ever

Germany’s cyber security chief sacked over alleged Russia links

Hacker rouba tokens BNB de plataforma e envia criptomoedas para serviço proibido pelos EUA

Hacker invade contas de suas colegas da Universidade de Porto Rico

Hackers Attacked the Website of the Bulgarian National Radio

Hackers compromised Hong Kong govt agency network for a year

Hackers target Asian casinos in lengthy cyberespionage campaign

HelpSystems Patch Falls Short, RCE Vulnerability in Cobalt Strike Remains

How CISA Helps SMBs Address the Security Talent Gap

Imagine surviving a wiper attack only for ransomware to scramble your restored files

Introducing Our 8th Annual State of the Software Supply Chain Report

Keyless car hackers arrested for grand theft auto

Law enforcement arrested 31 suspects for stealing cars by hacking key fobs

Mango Markets Hacker Outs Himself, Returns $67M

Microsoft Edge Rolls Out Typo Protection Feature To Fight Phishing and Scams

More Than 90% of IT Decision Makers Struggle to Evaluate Security Products

More than 123,000 people impacted by Tucson data breach

New Chinese APT Hacker Attack IT & Telecom Sectors with Signed Malware

New IBM Study Finds Cybersecurity Incident Responders Have Strong Sense of Service as Threats Cross Over to Physical World

New text2shell RCE vulnerability in Apache Common Texts CVE-2022-42889

O clima terrível nos corredores da Record sob ataque hacker

Online wine seller Vinomofo hit by data breach

Over 17000 Fortinet devices exposed online are very likely vulnerable to CVE-2022-40684

Police breaks up criminal ring that hacked keyless systems to steal cars

Prepare your organisation against cyber attacks

Pro-Russia Hackers DDoS Bulgarian Government

Researchers find 633% increase in cyber-attacks aimed at open source repositories

Rising cyber attacks threaten digital progress

Spyder Loader Malware Deployed Against Hong Kong Organizations

Text message verification flaws in your Windows Active Directory

The Five Ws of Cryptocurrency Fraud — and How We Can Stop It

The Future is Autonomous Data Protection

The string of scams targeting Optus customers following data breach

Unleashing IoT Capabilities in a Secure Environment

Verizon notifies prepaid customers their accounts were breached

Vinomofo data breach: 500,000 customers at risk after wine dealer hit by cyber-attack

Zoom Patches High-Severity Flaw in macOS Client

What is Cyber Security Awareness and Why is it Important?

Why Zero Trust and Identity and Access Management are Essential to Enterprise Security

Wine Merchant Among Aussie Firms Breached, Exposing Millions

17/10

$3 BILLION in DeFi Hacks in 2022—So Far

3 mistakes organizations make when trying to manage data securely

45,654 VMware ESXi servers reached End of Life on Oct. 15

Amazon Customers Receive Smishing Warning After Receiving Fake Texts

Australian insurance firm Medibank confirms ransomware attack

Black Basta Ransomware Hackers Infiltrates Networks via Qakbot to Deploy Brute Ratel C4

Boca sofre ataque hacker e perde sua conta no YouTube! Saiba o que ficou no lugar!

Building resilience to cyber-attacks – before it’s too late

Bulgaria hit by a cyber attack originating from Russia

CERT-In Certification: What You Need to Know

CISA releases RedEye open-source analytic tool

Connecting to public Wi-Fi: Here's how to protect your data and your device

Cyber alliances will push geopolitics in a new direction

Cybersecurity Awareness Month: Eight Security Insights That You Should Know

Economic uncertainty is increasing cybersecurity risks

Fake News, New Malware Drive Recent Attacks

GAO: Feds Could Improve Collaboration on Ransomware

Global Cops Arrest Dozens Linked to Financial Crime Gang

Grupo hacker norte-coreano tem novo alvo e mira empresas cripto do Japão

Hackers divulgam material sigiloso da Record na web; veja cópias

Hackers vazam até passaporte de apresentadora da Record após invasão

Hackney Council Ransomware Attack Cost £12m+

How Firms Can Prepare for Ransomware Attacks

How to recover data from an old laptop if you've forgotten the password

Linux dodges serious Wi-Fi security exploits

‘Hacktober’: mesmo com recorde de ataques hackers, criptomoedas sobem no começo da semana; bitcoin (BTC) segue na faixa de US$ 19 mil

Interpol arrested 75 members of the cybercrime ring Black Axe

INTERPOL-led Operation Takes Down 'Black Axe' Cyber Crime Organization

Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted

Malware dev claims to sell new BlackLotus Windows UEFI bootkit

Microsoft warns over unusual ransomware attacks

Most Australian executives wary of announcing cyber attacks and online strategies amid increased demand for transparency

MyDeal data breach impacts 2.2M users, stolen data for sale online

New Mexico Licensing Department Subject of Cyber Attack

New Prestige Ransomware Targeting Polish and Ukrainian Organizations

New security concerns for the open-source software supply chain

New UEFI rootkit Black Lotus offered for sale at $5,000

Open Source Best Practices: Key Documents to Help Welcome New Contributors to Your Project

Outubro registra maior número de roubos de hackers com criptomoedas em 2022

Police dismantles criminal ring that hacked keyless cars

Police tricked a ransomware gang into handing over its decryption keys. Here's how they did it

'Prestige' Ransomware Group Targets Organizations in Ukraine and Poland

Ransom Cartel Linked to Russia-Based REvil Ransomware Group

Ransomware attack halts circulation of some German newspapers

Researchers Say Microsoft Office 365 Uses Broken Email Encryption to Secure Messages

Retail giant Woolworths discloses data breach of MyDeal online marketplace

Security stack consolidation helps CISOs lower cybersecurity spending

Sem resgate, hackers vazam gastos da Record e documentos de Ana Hickmann

Spanish Police Bust Region's "Biggest Narco Bank"

Top outcomes organizations want from their security investments

Zimbra Releases Patch for Actively Exploited Vulnerability in its Collaboration Suite

Why Crypto Winter is No Excuse to Let Your Cyber Defenses Falter

Windows Mark of the Web bypass zero-day gets unofficial patch

16/10

A new, more advanced hacker community is costing 100s of Indians their Instagram accounts

Australia prepares for Electric Vehicle cyber risk

CommonSpirit Hospital Chain Grappling With Ransomware Attack

Dutch police recover over 150 ransomware decryption keys

Experts issue urgent warning to anyone with an Amazon account

How a Hacker Got Paid $50 Million for Exploiting a DeFi Protocol

India's largest power producer confirms cyberattack on its IT infrastructure

Japan police warn of cyberattacks by North Korea's infamous Lazarus hackers

Lloyds Bank issues scam warning as £1.5million lost to fake WhatsApp texts - 'It's a lie!'

New PHP information-stealing malware targets Facebook accounts

New ransomware attack used against Ukraine, Poland: Microsoft

New PHP information-stealing malware targets Facebook accounts

Record TV sofre nova invasão hacker

Scammers 'taking advantage' of struggling Cambs residents during cost of living crisis with fake refund texts

Snap Employee Data Exposed Following Data Breach at Document Firm Elevate: All Details

The Ultimate Guide for Securing Your Home Network

Venus Ransomware targets publicly exposed Remote Desktop services

Zoetop to pay $1.9 million in damages following 2018 data breach

What Is the Discord Name and Shame Scam? How to Avoid It

Woolworths subsidiary MyDeal suffers data breach, 2.2m users affected

DAILY NEWS: Outubro (09/10 - 15/10) - 41 Semana de 2022