DAILY NEWS: Outubro (16/10 - 22/10) - 42 Semana de 2022
Cyber Security and Information Security News - Daily Updates !! Weekly Review

22/10
7 Ways to Protect Your Email Account and Avoid Scams
A hacker who stole and sold Ed Sheeran songs for crypto gets prison time
Android adware apps in Google Play downloaded over 20 million times
Banks caution customers against scammers, cyber criminals
BitKeep Wallet Suffers $1M Exploit: What’s Next for Affected Users?
Carousell data breach: Info from 2.6 million accounts allegedly sold on Dark Web, hacking forums
Credit Card Scams and How to Avoid Them
Critical Flaw Reported in Move Virtual Machine Powering the Aptos Blockchain Network
Daixin Team targets health organizations with ransomware, US agencies warn
Data Breach At Wisconsin’s Largest Health Care Provider
Exploited Windows zero-day lets JavaScript files bypass security warnings
Gate.io users at risk as scammers fake giveaway on hacked Twitter account
Hackers Compromise the Twitter Account of GateIO to Promote a Phishing Scam
Here Are the Tips You Need to Stay Cyber-Safe
How to Use Public WiFi Safely on Any Device? [Tips & Tricks]
Iranian hacker group releases details about nuclear program
Is 2022 the “year of crypto hacks” as this attempt makes it to the “Hacktober” list
OldGremlin Hacker Group Expanded Toolkit With Dedicated Linux Ransomware
OlympusDAO Suffer $300K Exploit, White Hat Hacker Returns All Funds
Real estate sector data breach could be worse than Optus hack, digital rights advocates say
Some CHI Memorial systems are back online weeks after cyberattack
St. Amant Centre suffers data breach
Tech journalist warns after attack on Massy Group: TT at mercy of cyber criminals
Threat actors exploit critical flaw in VMware Workspace ONE Access to drop ransomware, miners
TommyLeaks and SchoolBoys: Two sides of the same ransomware gang
21/10
A Quick Look at the "Strengthening America's Cybersecurity" Initiative
Battery-draining Android apps with 20 million downloads pulled from the Google Play Store
BlackByte ransomware uses new data theft tool for double-extortion
Clearview AI gets third €20 million fine for illegal data collection
Cops Arrest Suspected Multimillion-Dollar Fraud Mastermind
Cyber-Enabled Crimes Are Biggest Police Concerns
Cyber Security Bootcamp- Now Get Into Cyber Security Easily
CyberMonth: How to Promote a ‘Think Before U Click’ Culture
Data visualization: An invaluable tool in a defender’s arsenal
Emotet Botnet Distributing Self-Unlocking Password-Protected RAR Files to Drop Malware
EnergyAustralia latest to be hit by cyber-attack as details of hundreds of customers exposed
Google Unveils Open Source Project to Improve Software Supply Chain Security
Hackers exploit critical VMware flaw to drop ransomware, miners
Hackers Started Exploiting Critical "Text4Shell" Apache Commons Text Vulnerability
How phishing campaigns abuse Google Ad click tracking redirects
How Prepared is Bulgaria to Fight Cyber Attacks? Experts Weigh in
How supply chain threats will evolve in 2023
Lesson Learned: How SolarWinds Strengthened its Security Post-Incident
Medibank hack turned into a data breach: The attackers are demanding money
Microsoft Confirms Server Misconfiguration Led to 65,000+ Companies' Data Leak
Microsoft testing a Windows ‘PC Manager’ system optimizer app
Multiple Campaigns Exploit VMware Vulnerability to Deploy Crypto Miners and Ransomware
New partnership bolsters cybersecurity defences in Poland
New Phishing Campaign Targets Saudi Government Service Portal
O que se sabe sobre brasileiro preso por liderar grupo hacker internacional
OldGremlin Ransomware Ups Ante Against Russian Targets
Ransomware Has Grown by 466% Since 2019: Report
St. Amant issues public alert after cyber attack
The companies most likely to lose your data
The Uber/Sullivan Conviction is NOT About Data Breaches
Thousands of Publicly Exposed API Tokens Could Threaten Software Integrity
Vítima se alia a hacker que lhe roubou R$ 120 milhões em criptos para processar operadora
Wholesale giant METRO hit by IT outage after cyberattack
Why All Businesses Should Invest in Cybersecurity
Your guide to the dark web and how to safely access .onion websites
20/10
74% say connected cars and EV chargers need cybersecurity ratings
4 ways Target dynamically tracks the most alarming threats
Advocate Aurora Health reports data breach affecting up to 3 million patients
Antony Blinken’s Silicon Valley visit underscores US cybersecurity concerns
Australia’s No. 1 Health Insurer Confirms Massive Data Breach, Theft of Patient Details
Become a conscious technology user this cyber security month
Become a Master of Cyber Security With This CompTIA 2023 Super Bundle
Bilionário Bankman-Fried propõe limitar a US$ 5 milhões recompensa para hacker cripto
Black Friday: sucesso depende de ferramentas e ações contra ataques hackers no e-commerce
Brazilian Police Arrest Lapsus$ Suspect
Brazilian Police Arrest Suspected Member of Lapsus$ Hacking Group
Cyber Security Works reveals 13 vulnerabilities have become newly associated with Ransomware
Cyber Skills Shortage is Caused by Analyst Burnout
Cybersecurity company finds home in rural Michigan
Cybersecurity supplement foreword
Cybersecurity Workforce Gap Grows by 26% in 2022
Data Breaches and Cyber Attacks Quarterly Review: Q3 2022
Double Down On Cybersecurity Protocols & Double Down Against Fraud
FBI Warns Students Against Loan Forgiveness Scammers
Google Launches GUAC Open Source Project to Secure Software Supply Chain
Google sued over biometric data collection without consent
Hackers ameaçam vazar dados de saúde de celebridades australianas
Hackers Using New Version of FurBall Android Malware to Spy on Iranian Citizens
Hacking group updates Furball Android spyware to evade detection
J.S. Held Expands Cyber Security & Investigation Services with the Acquisition of TBG Security
Medibank hack: Personal data stolen in new cyber attack
Microsoft Misconfiguration Exposes Customer Data
Most Irish businesses unprepared for cyber attack
National Cyber Security Awareness Month presentations scheduled
National cybersecurity strategy to debut within months, White House official says
NCSC Updates Early Warning Threat Intelligence
New Ursnif Variant Likely Shifting Focus to Ransomware and Data Theft
Not All Sandboxes Are for Children: How to Secure Your SaaS Sandbox
OldGremlin Ransomware Targeted Over a Dozen Russian Entities in Multi-Million Scheme
Open banking API security: Best practices to ensure a safe journey
PF: hacker roubava dados de sites do governo para vender na internet
Ransomware is Being Used As a Precursor to Physical War: Ivanti
Ransomware preparedness: What are you doing wrong?
Report Says Many Boards Fear Cyber Attack, But Haven’t Addressed Cybersecurity
Singapore Creates Counter Ransomware Task Force to Tackle Threats
Singapore extends cyber security labelling scheme to medical devices
Singapore, Germany to mutually recognise IoT cybersecurity labels
The most dangerous connected devices
The State Of Cyber Security In Schools
Tech Talk: How To Fortify Cybersecurity Practices and Democratize IT Functions
These 16 Clicker Malware Infected Android Apps Were Downloaded Over 20 Million Times
University of Guelph says “limited information” accessed during Sept. cyber attack
Want to be a CISO? Being technical is just one of the requirements
What are the cheapest VPNs that actually still work and protect your data?
Why chasing risk assessments will have you chasing your tail
Why is cybersecurity vital for small businesses?
Women in Australia’s Cyber Security Industry Growing
Women’s employment in the cyber security industry is now growing faster in comparison to men
19/10
A Quick Guide for Small Cybersecurity Teams Looking to Invest in Cyber Insurance
Apache Commons Text RCE flaw — Keep calm and patch away
Apache Commons Text flaw is not a repeat of Log4Shell (CVE-2022-42889)
Após ataque hacker, Unimed Belém tem problemas no sistema
Brazil arrests suspect linked to the Lapsus$ hacking group
Chinese Hackers Targeting Online Casinos with GamePlayerFramework Malware
CIS Benchmarks: Community driven security guidelines
CISA Warns of Critical Flaws Affecting Industrial Appliances from Advantech and Hitachi
CISOs, rejoice! Security spending is increasing
CyberMonth: ENISA Celebrates 10 Years of European Cybersecurity Month with New, Proactive Slogan
Deadbolt Ransomware Extorts Vendors and Customers
Digital Natives Are Undermining Corporate Security - Report
Experts Warn of Stealthy PowerShell Backdoor Disguising as Windows Update
Fines are not enough! Data breach victims want better security
GTA VI | Nova imagem do documento vazado pelo hacker preso surge
Hackers use new stealthy PowerShell backdoor to target 60+ victims
How to enable end-to-end encryption for Facebook Messenger chats
How to secure microservices using authorization
iDealwine suffers a data breach
Microsoft announces enterprise DDoS protection for SMBs
Microsoft Azure SFX bug let hackers hijack Service Fabric clusters
Microsoft data breach exposes customers’ contact info, emails
Moola Market Reveals $9m Crypto Exploit
NSA Cybersecurity Director's Six Takeaways From the War in Ukraine
Passwords still dominate, and are causing headaches for everyone
PF prende brasileiro suspeito de integrar organização criminosa internacional
PF prende suspeito de atuar em ataque hacker ao site do Ministério da Saúde
Researchers Detail Azure SFX Flaw That Could've Allowed Attackers to Gain Admin Access
Secure portable operating system Tails 5.5 released
Singapore wants citizens to arm up, take accountability for personal cyber hygiene
Software Supply Chain Attacks Soar 742% in Three Years
The future of MFA is passwordless
This latest Firefox update makes it easier to protect your privacy online
Upgrade your security awareness efforts: Here’s how to start
18/10
7 critical steps to defend the healthcare sector against cyber threats
AI can help you optimize your supply chain
BitKeep Wallet Drained of $1M After Hacker Exploits Swap Feature
Car theft ring used software to steal hundreds of vehicles without the physical key fob, say police
Carteira criada na BNB perde R$ 5,2 milhões em ataque hacker
CHI St. Luke’s restoring patient portals after cyberattack in early October
China-linked APT41 group targets Hong Kong with Spyder Loader
Chinese 'Spyder Loader' Malware Spotted Targeting Organizations in Hong Kong
Critical RCE Vulnerability Discovered in Popular Cobalt Strike Hacking Software
Critical Remote Code Execution issue impacts popular post-exploitation toolkit Cobalt Strike
Сryptocurrency and Ransomware — The Ultimate Friendship
CVE-2022-28762: Zoom for macOS contains a debugging port misconfiguration
Cyber Attack On Vinomofo Compromises Information Of 500,000 Customers
Cybersecurity spending on pace to surpass $260B by 2026
Deepfakes: What they are and how to spot them
DuckDuckGo for Mac enters public beta, now available to everyone
Elon, Bots, and Rampant Fraud on the Web
Enlighten Designs confirms May ransomware hack
European Police Arrest a Gang That Hacked Wireless Key Fobs to Steal Cars
European Police Catch Suspected Car Hackers
For auto dealerships, cybersecurity is more essential than ever
Germany’s cyber security chief sacked over alleged Russia links
Hacker rouba tokens BNB de plataforma e envia criptomoedas para serviço proibido pelos EUA
Hacker invade contas de suas colegas da Universidade de Porto Rico
Hackers Attacked the Website of the Bulgarian National Radio
Hackers compromised Hong Kong govt agency network for a year
Hackers target Asian casinos in lengthy cyberespionage campaign
HelpSystems Patch Falls Short, RCE Vulnerability in Cobalt Strike Remains
How CISA Helps SMBs Address the Security Talent Gap
Imagine surviving a wiper attack only for ransomware to scramble your restored files
Introducing Our 8th Annual State of the Software Supply Chain Report
Keyless car hackers arrested for grand theft auto
Law enforcement arrested 31 suspects for stealing cars by hacking key fobs
Mango Markets Hacker Outs Himself, Returns $67M
Microsoft Edge Rolls Out Typo Protection Feature To Fight Phishing and Scams
More Than 90% of IT Decision Makers Struggle to Evaluate Security Products
More than 123,000 people impacted by Tucson data breach
New Chinese APT Hacker Attack IT & Telecom Sectors with Signed Malware
New text2shell RCE vulnerability in Apache Common Texts CVE-2022-42889
O clima terrível nos corredores da Record sob ataque hacker
Online wine seller Vinomofo hit by data breach
Over 17000 Fortinet devices exposed online are very likely vulnerable to CVE-2022-40684
Police breaks up criminal ring that hacked keyless systems to steal cars
Prepare your organisation against cyber attacks
Pro-Russia Hackers DDoS Bulgarian Government
Researchers find 633% increase in cyber-attacks aimed at open source repositories
Rising cyber attacks threaten digital progress
Spyder Loader Malware Deployed Against Hong Kong Organizations
Text message verification flaws in your Windows Active Directory
The Five Ws of Cryptocurrency Fraud — and How We Can Stop It
The Future is Autonomous Data Protection
The string of scams targeting Optus customers following data breach
Unleashing IoT Capabilities in a Secure Environment
Verizon notifies prepaid customers their accounts were breached
Vinomofo data breach: 500,000 customers at risk after wine dealer hit by cyber-attack
Zoom Patches High-Severity Flaw in macOS Client
What is Cyber Security Awareness and Why is it Important?
Why Zero Trust and Identity and Access Management are Essential to Enterprise Security
Wine Merchant Among Aussie Firms Breached, Exposing Millions
17/10
$3 BILLION in DeFi Hacks in 2022—So Far
3 mistakes organizations make when trying to manage data securely
45,654 VMware ESXi servers reached End of Life on Oct. 15
Amazon Customers Receive Smishing Warning After Receiving Fake Texts
Australian insurance firm Medibank confirms ransomware attack
Black Basta Ransomware Hackers Infiltrates Networks via Qakbot to Deploy Brute Ratel C4
Boca sofre ataque hacker e perde sua conta no YouTube! Saiba o que ficou no lugar!
Building resilience to cyber-attacks – before it’s too late
Bulgaria hit by a cyber attack originating from Russia
CERT-In Certification: What You Need to Know
CISA releases RedEye open-source analytic tool
Connecting to public Wi-Fi: Here's how to protect your data and your device
Cyber alliances will push geopolitics in a new direction
Cybersecurity Awareness Month: Eight Security Insights That You Should Know
Economic uncertainty is increasing cybersecurity risks
Fake News, New Malware Drive Recent Attacks
GAO: Feds Could Improve Collaboration on Ransomware
Global Cops Arrest Dozens Linked to Financial Crime Gang
Grupo hacker norte-coreano tem novo alvo e mira empresas cripto do Japão
Hackers divulgam material sigiloso da Record na web; veja cópias
Hackers vazam até passaporte de apresentadora da Record após invasão
Hackney Council Ransomware Attack Cost £12m+
How Firms Can Prepare for Ransomware Attacks
How to recover data from an old laptop if you've forgotten the password
Linux dodges serious Wi-Fi security exploits
Interpol arrested 75 members of the cybercrime ring Black Axe
INTERPOL-led Operation Takes Down 'Black Axe' Cyber Crime Organization
Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted
Malware dev claims to sell new BlackLotus Windows UEFI bootkit
Microsoft warns over unusual ransomware attacks
MyDeal data breach impacts 2.2M users, stolen data for sale online
New Mexico Licensing Department Subject of Cyber Attack
New Prestige Ransomware Targeting Polish and Ukrainian Organizations
New security concerns for the open-source software supply chain
New UEFI rootkit Black Lotus offered for sale at $5,000
Open Source Best Practices: Key Documents to Help Welcome New Contributors to Your Project
Outubro registra maior número de roubos de hackers com criptomoedas em 2022
Police dismantles criminal ring that hacked keyless cars
Police tricked a ransomware gang into handing over its decryption keys. Here's how they did it
'Prestige' Ransomware Group Targets Organizations in Ukraine and Poland
Ransom Cartel Linked to Russia-Based REvil Ransomware Group
Ransomware attack halts circulation of some German newspapers
Researchers Say Microsoft Office 365 Uses Broken Email Encryption to Secure Messages
Retail giant Woolworths discloses data breach of MyDeal online marketplace
Security stack consolidation helps CISOs lower cybersecurity spending
Sem resgate, hackers vazam gastos da Record e documentos de Ana Hickmann
Spanish Police Bust Region's "Biggest Narco Bank"
Top outcomes organizations want from their security investments
Zimbra Releases Patch for Actively Exploited Vulnerability in its Collaboration Suite
Why Crypto Winter is No Excuse to Let Your Cyber Defenses Falter
Windows Mark of the Web bypass zero-day gets unofficial patch
16/10
A new, more advanced hacker community is costing 100s of Indians their Instagram accounts
Australia prepares for Electric Vehicle cyber risk
CommonSpirit Hospital Chain Grappling With Ransomware Attack
Dutch police recover over 150 ransomware decryption keys
Experts issue urgent warning to anyone with an Amazon account
How a Hacker Got Paid $50 Million for Exploiting a DeFi Protocol
India's largest power producer confirms cyberattack on its IT infrastructure
Japan police warn of cyberattacks by North Korea's infamous Lazarus hackers
Lloyds Bank issues scam warning as £1.5million lost to fake WhatsApp texts - 'It's a lie!'
New PHP information-stealing malware targets Facebook accounts
New ransomware attack used against Ukraine, Poland: Microsoft
New PHP information-stealing malware targets Facebook accounts
Record TV sofre nova invasão hacker
Snap Employee Data Exposed Following Data Breach at Document Firm Elevate: All Details
The Ultimate Guide for Securing Your Home Network
Venus Ransomware targets publicly exposed Remote Desktop services
Zoetop to pay $1.9 million in damages following 2018 data breach
What Is the Discord Name and Shame Scam? How to Avoid It
Woolworths subsidiary MyDeal suffers data breach, 2.2m users affected