DAILY NEWS: Outubro (02/10 - 08/10) - 40 Semana de 2022

Felipe Prado
3 de out. de 2022
13 min de leitura

Atualizado: 9 de out. de 2022

Cyber Security and Information Security News - Daily Updates !! Weekly Review

08/10

296,000 Toyota customers affected by a data breach that went undetected since 2017

ADATA denies RansomHouse cyberattack, says leaked data from 2021 breach

Australian Firm Costa Group Suffers Phishing Attack

Binance-Linked Network Hacked, Over $570 Million in Losses Recorded

Brazil: the country’s second bank about to pay 50 Bitcoins in ransoms

Callback phishing attacks evolve their social engineering tactics

Cardiac Imaging Associates notifying patients of data breach

Crypto exchange Binance loses $100 million to hacker after benefiting from decline of Indian platforms

CSA Provides Common Vulnerability Exploited by China State-Sponsored Hackers – A Complete List

Cyber insurance: How it can protect small and medium businesses

Depois de ataque hacker, Record interrompe programação

Email Defenses Under Siege: Phishing Attacks Dramatically Improve

Empresário usa ataque hacker para desenvolver nova empresa de solução em cibersegurança

Ex diretor do Uber é condenado por pagar hackers com Bitcoin e esconder vazamento

Facebook warns against data breach: Here’s how to avoid it

Hackers Exploiting Unpatched RCE Flaw in Zimbra Collaboration Suite

Microsoft Issues Improved Mitigations for Unpatched Exchange Server Vulnerabilities

Prejudicada por ataque, Record muda Balanço Geral SP às pressas

Putin poised to launch deadly attacks targeting UK’s 'critical infrastructure'

Record tem suspeita de ataque hacker e paralisa programação ao vivo

Record TV sofre ataque hacker neste sábado (8)

Record TV tira jornal do ar às pressas e mudança na programação levanta suspeita de ataque hacker

Reputed Indian hackers target Pakistani embassies

Russia's All Military Satellites Hacked; Taken Offline By OneFist Hacker Group, Putin's Soldiers Fighting Blindly on Frontlines

SBT, Record e TV Cultura sofrem ataques de hackers

Suspeita de ataque hacker atinge sistemas da TV Record em três estados

The power and efficacy of the password

US Ports and Terminals Sustain Increased Cybersecurity Attacks

What Is Snowshoeing and Is It Dangerous?

07/10

2K confirms support site data breach, warns personal data is likely compromised

2K Games Informs Users That Their Stolen Data is Now for Sale Online

2K Games warns users their stolen data is now up for sale online

3 actions Latin American leaders must take to reduce risk of cyberattacks

3 ways enterprises can mitigate social engineering risks

5 cybersecurity threats to the financial sector

2022 Breach Notification Law Update: State and Federal Requirements Continue To Evolve

3,800 UW Medicine patients affected by 3rd-party data breach

$637,000 Awarded to Improve Recovery of Critical Systems After Cyber Attacks

All you need to know about ethical hacking

America's second-largest hospital chain CommonSpirit suffers a cyber attack

Another 90 Days – Another Password Change. Is This Really the Best Cybersecurity Practice Available?

Bank of Brasilia Attacked by Ransomware Demanding 50 BTC

Binance admite hack de R$ 3,2 bilhões e pede desculpas

BlackByte Ransomware Abuses Vulnerable Windows Driver to Disable Security Solutions

BlackByte Ransomware Gang Adds Sophisticated “Bring Your Own Driver” Technique to Bypass More Than 1,000 Drivers Used by Industry Wide Endpoint Detection and Response (EDR) Products

BNB Chain back online after suspension due to a cross-chain exploit

Brazil’s BRB Bank Pays 50 BTC After Being Targeted by a Ransomware Attack

BUDGET 2023: RM73 Million Allocated To Help Increase Cyber Security & Decrease Scam Cases

Businesses in Canada Warned Not to Overlook Cybersecurity As Recession Looms

Cancer Testing Lab Reports 2nd Major Breach Within 6 Months

Carlow based Stryve named Cyber Security Company of the Year

CHI Saint Joseph Health's parent company impacted by ransomware attack, NBC News reports

Class actions and higher penalties for breaches: what are the impacts of the Optus data breach on MSSPs?

Colorado.gov Back Online After Cyber Attack

Columbia River Mental Health Services Reports Data Breach Following Year-Long Period of Unauthorized Access

Cyber Attack Suspected in Hartnell College Network Outage

Cybersecurity breach only involved card data, says iPay88

Cybersecurity Risk and Consequences in Collaborative Robots

Data Breach Alert: Safeguard your personal data by securing browsing experience with THESE 4 simple tips

Data Security Incident Exposes PHI For Over 1K Zomo Health Members

DDoS Attacks Exceeded Six Million in First Half of 2022

Did GTA 6 Hacker Receive 2.2 Bitcoin’s to Leak the Game Source Code?

Educating Users About 'Phishable' Multifactor Authentication

ESET Threat Report T2 2022: RDP Attacks See Further Drop; India Among Countries with Highest Number of Android Trojan Detections

Experts Remain Divided on N.C. Ransomware Payment Ban

Facebook Detects 400 Android and iOS Apps Stealing Users Log-in Credentials

Facebook users warned: You may have downloaded these password-stealing Android and iOS apps

Ferrari denies breach following 7GB of data posted online

Fortinet warns admins to patch critical auth bypass bug immediately

Hacker Steals Over $570m from Binance Bridge

Hacker stole $566 million worth of Binance Coins from Binance Bridge

Hackers Can Use 'App Mode' in Chromium Browsers' for Stealth Phishing Attacks

High-powered committee meeting on cybersecurity, electronic security of Govt offices held in Islamabad

Inaugural Arab International cybersecurity summit to spotlight Bahrain’s multi-sector cyber infrastructure approach

Irish Girl Guides Develop their Cyber Powers During Cyber Security Awareness Month

LilithBot Malware, a new MaaS offered by the Eternity Group

LofyGang Distributed ~200 Malicious NPM Packages to Steal Credit Card Data

LofyGang hackers built a credential-stealing enterprise on Discord, NPM

Meta Sues Chinese Devs Over WhatsApp Malware Plot

MPs to probe connected tech cybersecurity threat

NITDA raises awareness over cyber security

NSA, FBI warning: Beware these 20 software flaws most used by hackers

October 2022 Patch Tuesday forecast: Looking for treats, not more tricks

October is Cyber Security month

Payroll, Binance sob ataque hacker, Credit Suisse que recompra dívida e o que mais move o mercado

People with data stolen in HSE cyber attack not yet notified

Process Monitoring: Detect Malicious Behavior in Your Containers

RansomEXX Claims Credit, Ferrari Denies Data Leak

Shadow APIs hit with 5 billion malicious requests

Tackling the weaknesses of smart buildings’ technology

The essentials of GRC and cybersecurity — How they empower each other

US Warns of Foreign Disinfo Ops Ahead of Midterms

What $1B in cybersecurity funding can mean for US state, local governments

Why Zero-Trust in Video Conferencing is Crucial

06/10

5 tips for cybersecurity insurance compliance

5G and IoT for Intelligent Connectivity

19-Year-Old man arrested for misusing leaked record from Optus Breach

19-Year-Old Teen Arrested for Using Leaked Optus Breach Data in SMS Scam

Android Spyware 'RatMilad' Targets Enterprise Devices in Iran

APIs are quickly becoming the most popular attack vector

BlackByte Ransomware Abuses Legitimate Driver to Disable Security Protections

Cisco fixed two high-severity bugs in Communications, Networking Products

City of Tucson Data Breach impacted 123,500 individuals

Cyber security is turning more into fastest detection and response, says GBM’s Hani Nofal

Cybersecurity for Railway Is a Minimum, Not a Plus

Cybersecurity leaders are having a hard time keeping companies secure, and there's no easy solution

Cybersecurity, the fight against the hazards of the new digital age

Details Released for Recently Patched new macOS Archive Utility Vulnerability

“Egypt Leaks” – Hacktivists are Leaking Financial Data

E-mobility security: Juice receives ISO certification for charging station cyber security

Empresa de segurança lança ferramenta que libera arquivos do ransomware Hades

Eternity Group Hackers Offering New LilithBot Malware as a Service to Cybercriminals

Fine-tuning Germany’s cybersecurity strategy

Former Uber CSO convicted for concealing data breach, theft from the authorities

Former Uber Security Chief Found Guilty of Data Breach Coverup

GAO: Feds struggle to collaborate when ransomware strikes local governments

Hacker desbloqueia Playstation 5 e posta vídeo nas redes

How To Make Your Cloud Transformation Recession-Proof

IBM: Ransomware attacks take psychological toll on incident responders

i-PRO shares IoT pillars of cybersecurity for cybersecurity awareness month

Indigenous health organisation probes possible cyber attack

IOTW: Capital One hacker given probation following cyber attack

Learning from real life situations

Linux Kernel 5.19.12 bug could damage Intel laptop displays

Lloyd’s Probes Possible Cyber Attack

New SonicWall Survey Data Reveals 91% of Organizations Fear Ransomware Attacks in 2022

Penetration Testing – What’s New in the PCI DSS v4.0

Pesquisa da SonicWall mostra preocupação crescente a ataques cibernéticos

Police arrest teen for using leaked Optus data to extort victims

Public Network Access to Azure Resources Is Too Easy to Configure

Ransomware-as-a-Service: The Cloud Model Escalates Ransomware Attacks

Ransomware defence could keep the lights on for millions

Ransomware Pummeling Cash-Strapped US Schools

RDP Attacks Decline 89% in Eight Months

Retailer Easylife Fined £1.5m for Data Protection Breaches

Sectigo Wins 2022 CyberSecurity Breakthrough Award for Overall Encryption Solution Provider of the Year

Site do TCE continua fora do ar depois de ataque hacker

Study shows 91% of organisations fear ransomware attacks

The gap between security and privacy, and what it will take to bridge it

The Ultimate SaaS Security Posture Management Checklist, 2023 Edition

This sneaky ransomware attack tries to switch off your security software

This year’s biggest cyber threats

Two New Exchange Zero-Days Raise Questions About Microsoft Security

Uber's Former Security Chief Convicted of 2016 Data Breach Cover-Up

Unearth offboarding risks before your employees say goodbye

US Healthcare Giant CommonSpirit Hit by Possible Ransomware

US ports and terminals targets of increased cyber security attacks

Visa Sees Digital Payment Threats Evolving Post-Pandemic

What is Vulnerability Analysis, and How Does It Work?

Windows 11 22H2 breaks provisioning with 0x800700b7 errors

05/10

7 cybersecurity audiobooks you should listen to this year

477 cases of PayNow phishing scams in 2021, victims lost $3,400 each: Tharman

A new era: Three ways to secure your home office

Another cyber attack in Australia with hackers gaining access to tax file numbers, bank account information and medical checks - just days after the massive Optus hack

API authentication failures demonstrate the need for zero trust

Assessing the state of the internet to make smart security decisions

Aussie defence figures caught up in Shangri-La data breach

Average company with data in the cloud faces $28 million in data-breach risk

Black Friday 'red flag' warning to all bargain hunters

Canadian Netwalker Ransomware Affiliate Sentenced to 20 Years in U.S. Prison

CIS Controls v8: Safeguards to mitigate the most prevalent cyber-attacks

CISA orders federal agencies to regularly perform IT asset discovery, vulnerability enumeration

Cyber Security & Recruitment: The two biggest risks to your business in 2022

Dissect: Open-source framework for collecting, analyzing forensic data

ESET Threat Report T2 2022

Experts Warn of New RatMilad Android Spyware Targeting Enterprise Devices

FBI, CISA, and NSA Reveal How Hackers Targeted a Defense Industrial Base Organization

Ferrari denies attack after F1 sponsor switch

Golpe: Novo vírus rouba de dados de cartões a contas em redes sociais. Veja como se proteger

Hundreds of students have personal emails exposed in data breach at University of Limerick

Inmate healthcare provider hit by data thieves, affecting 54K Ga. inmates

IriusRisk raises $28.7m as demand for cyber security bucks the downturn

Ladrão que rouba ladrão: grupo hacker invade sites que roubam criptomoedas

Landmark US-UK Data Access Agreement Begins

LifeBridge Health Settles Healthcare Data Breach Lawsuit for $9.5M

Lloyd's of London investigates possible cyber attack

Major cyber security conference in Cork

Microsoft updates mitigation for ProxyNotShell Exchange zero days

Mitigation for Exchange Zero-Days Bypassed! Microsoft Issues New Workarounds

New Android malware 'RatMilad' can steal your data, record audio

New Initiative Aims to Strengthen UK's Nuclear Cybersecurity Posture

OnionPoison: malicious Tor Browser installer served through a popular Chinese YouTube channel

Optus halts all marketing ad spend amidst ongoing cyber attack

Overwatch 2 players queue for hours amidst cyber attack

Phishing Campaigns Target Major Fast Food Chains in Saudi Arabia, UAE, Singapore

Poole security firm TDSi receive National Cyber Security Centre accreditation

Protecting yourself from identity fraud

Qakbot: Analysing a Modern-Day Banking Trojan

Ransomware gang Vice Society publishes stolen database after LAUSD refuses to pay a ransom

Ransomware Group Bypasses "Enormous" Range of EDR Tools

Ransomware: This is how half of attacks begin, and this is how you can stop them

Small firms warned to prepare for potential cyber attacks

Seven steps security awareness professionals can take to ensure vital leadership support

Shadow IT: Fear it or embrace it?

Sick of data leaks, Indonesians are siding with a hacker who exposed 1.3 billion SIM card details

Telstra Telecom Suffers Data Breach Potentially Exposing Employee Information

To avoid insider threats, try empathy

Want More Secure Software? Start Recognizing Security-Skilled Developers

What is multi-factor authentication, and how should I be using it?

04/10

8 strange ways employees can (accidently) expose data

10 mindblowing facts and statistics about ransomware attacks

A quarter of companies globally have suffered a data breach that cost them more than US $1 million in the past three years

Após ataque hacker, site do TCE fica indisponível por tempo indeterminado

Back to Basics: Cybersecurity's Weakest Link

BEC Scammer Gets 25-Year Jail Sentence for Stealing Over $9.5 Million

BlackByte Ransomware Gang Adds Sophisticated “Bring Your Own Driver” Technique to Bypass More Than 1,000 Drivers Used by Industry Wide Endpoint Detection and Response (EDR) Products, Sophos Finds

Bug Exploitation Now Top Ransomware Access Vector

Cheerscrypt ransomware linked to a Chinese hacking group

CISA Directive Improves Asset Visibility, Vulnerability Detection on Federal Networks

CISA Orders Federal Agencies to Regularly Track Network Assets and Vulnerabilities

Cyber attack bill could top £1 million

Cyber attack on health provider Pinnacle a 'wake up call'

Cyber attack targets North Island GP network

Cybersecurity awareness tips from Microsoft to empower your team to #BeCyberSmart

Detetive cripto desvenda mistério sobre hack contra o artista NFT mais famoso do mundo

FBI warns of "Pig Butchering" cryptocurrency investment schemes

Ferrari falls victim to ransomware attack; 7GB of its internal documents made public

Ferrari says internal documents online, but no evidence of cyber attack

Hacker exige valor milionário após sequestro de arquivos em afiliada da Globo

Hacker russo é preso por supostamente invadir software de exame universitário

Hackers are breaching scam sites to hijack crypto transactions

Hackers leak 500GB of data stolen during ransomware attack

How Does Threat Exposure Management Optimize Security Posture?

HTTP request smuggling vulnerability in Node.js (CVE-2022-35256)

Incident responders increasingly seek out mental health assistance

Invasões de hackers a perfis nas redes sociais aumentam no TO e especialista da dicas para evitar ataques

Is mandatory password expiration helping or hurting your password security?

Kardashian Charged by SEC After Crypto Post

Lazarus APT employed an exploit in a Dell firmware driver in recent attacks

LeakBase stole over 16m citizen records from India's sovereign digital platform

Linux Cheerscrypt ransomware is linked to Chinese DEV-0401 APT group

Malicious Tor Browser Installers Spread Via Darknet Video on YouTube

New Report from Proofpoint and Cybersecurity at MIT Sloan Reveals Almost Half of Board Members Globally Feel Unprepared for a Cyber Attack, Despite Viewing Cybersecurity as a High Priority

NFT Artist Beeple’s Discord URLs Hacked In A Phishing Attempt

Ontario privacy commissioner ‘reviewing’ data breach at U of G

Optus confirms 2.1 million ID numbers exposed in data breach

Optus Confirms Hack Exposed Data of Nearly 2.1 Million Australians

Over 70% of Taiwan businesses report ransomware attacks in supply chain

People who had data stolen in HSE cyber attack yet to be informed

Phishing campaigns target KFC, McDonald's customers in Saudi Arabia, UAE, Singapore

Pinnacle Health not sure how many people affected by cyber attack

Pinnacle Midlands Health boss urges vigilance in wake of cyber attack

PlayStation 5 é desbloqueado por hacker!

Popular YouTube Channel Caught Distributing Malicious Tor Browser Installer

Protecting business data from cyber threats

ProxyNotShell – the New Proxy Hell?

Ransomware 3.0: The Next Frontier

Researchers Report Supply Chain Vulnerability in Packagist PHP Repository

Russia-linked cyber attack could cost Gloucester City Council £1m

Russian Hacker Arrested in India for Reportedly Helping Students Cheat in JEE-Main Exam

Russian Hackers Take Aim at Kremlin Targets: Report

Secureworks State of the Threat Report 2022: 52% of ransomware incidents over the past year started with compromise of unpatched remote services

Singapore warns of new variants of phishing scams offering tax refunds and involving tax evasion

Site e sistemas do Tribunal de Contas do Estado do Rio Grande de Sul seguem fora do ar após ataque hacker

Social Media, Government and Media & Entertainment Companies Least Trusted by Consumers to Keep Personal Data Secure

Telstra caught up in data breach after personal details of more than 30,000 former and current staff leaked

Telstra suffers 'sizeable' data breach, mandates two-step security upgrade

These are officially the worst malware strains of the year

This sneaky fraud attack looks like an email forwarded by your boss

Tiranë: Vulnerable to Cyber Attacks

US Ports and Terminals Sustain Increased Cybersecurity Attacks

Victims of these online crooks lacked a key security feature. Don't make the same mistake

What are the different types of ransomware?

What should investing in cybersecurity look like for a technology organization?

When transparency is also obscurity: The conundrum that is open-source security

Why digital trust is the bedrock of business relationships

03/10

5 things to look for in your next ransomware protection solution

37% of Businesses Lose Almost £90k per Cyber-attack

Are small businesses prepared to defend against cyberattacks?

Comm100 Chat Provider Hijacked to Spread Malware in Supply Chain Attack

Data Breach Should Be A Massive Wakeup Call For Australia’s Data Guardians, Experts Say

Data privacy is a challenge. Tech leaders have the solution

Decentralized IT Clouds Security Team’s Ability to Spot Risks

Detecting fileless malware infections is becoming easier

Ex-NSA Employee Charged For Trying to Sell US Secrets

Ferrari says internal documents online, but no evidence of cyber attack

Government organisations at higher encryption risk from ransomware

Ex-NSA Employee Arrested for Trying to Sell U.S. Secrets to a Foreign Government

Hackers Exploiting Dell Driver Vulnerability to Deploy Rootkit on Targeted Computers

How COVID-19 has made small businesses more vulnerable to cyberattacks

How Ransomware Is Causing Chaos in American Schools

ICO Fines Four "Predatory" Privacy-Invading Firms

Lazarus Group Exploits Dell Driver Vulnerability to Bypass Windows Security

List of Data Breaches and Cyber Attacks in September 2022 – 35.6 Million Records Breached

Live support service hacked to spread malware in supply chain attack

Lockbit 3.0 Ransomware Gang Emerges as Leading Threat Actor

LA Unified School District: Hackers Have Posted Stolen Data Online

Microsoft: New Exchange Server zero-days already used in attacks, expect more to come

Microsoft Exchange server zero-day mitigation can be bypassed

Most organisations attacked had data encrypted — Survey

OpenText Report Identifies Nastiest Malware for 2022

Optus reveals at least 2.1 million ID numbers exposed in massive data breach

Password month? How we can make CSAM work for everyone

Passwords are flawed, but it's likely we'll be using them for decades. Here's why you should review yours

Phishing Campaigns Target KFC, McDonald's in Saudi Arabia, UAE, Singapore

Researchers Link Cheerscrypt Linux-Based Ransomware to Chinese Hackers

Russian retail chain 'DNS' confirms hack after data leaked online

Singtel assesses potential cost of Optus Australian data breach

Site do partido de Bolsonaro sai do ar após ataque hacker

Sygnia First to Link Two Ransomware Groups to Larger Chinese Threat Actor, Dubbed ‘Emperor Dragonfly’

Transit Swap Hacker Returns 70% of Stolen Funds

Web browser app mode can be abused to make desktop phishing pages

02/10

5 Windows security settings you should change now to protect your laptop

According To The Latest Survey, VPNs Are The New Door To Cyberhacking

BlackCat ransomware gang claims to have hacked US defense contractor NJVC

‘Drawbridge needs to come down’: Government says Optus must show more transparency

Energy bills support scheme: Scam texts warning as fraudsters target £400 support for households

German police identified a gang that stole €4 million via phishing attacks

Hacker Exploits $21M Vulnerability in Transit Swap

Hackers claim to reveal identities of cops who arrested Mahsa Amini

Hackers Release L.A. School District Data Over Failure To Pay Ransom, Officials Say

How cyber governance and disclosures are closing the gaps in 2022

Iran: Hackers Reveal Alleged Identities Of Amini's Arrest Team

Los Angeles Unified School District (LAUSD) Creates Hotline After Stolen Data Posted by Ransomware Group

New DDoS Malware ‘Chaos’ Hits Linux and Windows Devices

Optus grilled for not being forthcoming over data breach

Russians dodging mobilization behind flourishing scam market

Scamwatch advises data breach victims to take action to protect themselves

T-Mobile $350 Million Data Breach Settlement: Here's How Much Money Could You Qualify For

Tech-savvy teens and state-sponsored hacks: Notorious cyberattacks in history

The Top 5 Cloud Vulnerabilities You Should Know Of

What Is Shodan and How Can It Improve Your Online Security?

DAILY NEWS: Outubro (02/10 - 08/10) - 40 Semana de 2022

Cyber Security and Information Security News - Daily Updates !! Weekly Review

08/10

07/10

06/10

05/10

04/10

03/10

02/10

DAILY NEWS: Setembro (25/09 - 01/10) - 39 Semana de 2022

Comments

Procurar por Tags

Pelo Mundo Afora...