Daily News - Setembro (15/09 - 21/09) - 38 Semana de 2024Cyber Security, Hacking, Privacy and Information Security News --- Daily Updates !! Weekly Resume...21/09Chinese National Charged in Major “Spear-Phishing” Espionage Campaign: What You Need to KnowCrypto lender Shezmu recovers hacked funds through negotiationDell Investigates Employee Data Leak Claims Made By HackersGlobal infostealer malware operation targets crypto users, gamersHacker behind Snowflake customer data breaches remains activeHacker Uses Telegram Chatbots to Leak Data of Star Health InsuranceHacktivist Group Twelve Targets Russian Entities with Destructive Cyber AttacksLinkedIn Halts AI Data Processing in UK Amid Privacy Concerns Raised by ICOMajor retail banks in Singapore to introduce Singpass Face Verification (SFV) to mitigate phishingMaryland Police Warn Gmail Users of Phishing Scam Demanding BitcoinMr Hamza Launches Campaign Against TurkeyNearly 8,000 claimants file high court case against Capita over 2023 cyber attackNew SambaSpy malware spread in phishing campaignOP KAERB: Europol dismantled phishing scheme targeting mobile usersPhilippines concerned over data breach risk at passport printer‘Ransomware threats more than doubling every year’Shezmu recovers hacked crypto funds by negotiating with the hackerSneaky scammers drain bank account in sinister phone phishing schemeStar Health Data Breach Exposes Millions of Customers’ InfoSupreme Court’s YouTube Channel Taken Down After Hack, XRP Scam Videos AppearThe dark side of AI democratization: You no longer need to be a hacker to hackThreat Actor Claims to Leak SpaceX Data Containing Emails, Hashes, and IPsUkraine Bans Telegram Use for Government and Military Personnel20/0911 Common Cyberattacks You Should Be Aware Of75% of Organisations Hit by Ransomware More Than OnceA Threat Actor Claims to Sell Data of Star Health Insurance, Compromising data of 31 Million CustomersAirline exec settles hack-for-hire case against law firm, pledging to ‘vigorously’ prosecute other alleged conspiratorsAscension Ransomware Attack Hurts Financial RecoveryAscension’s Financial Comeback Stalled by Costly Cyberattack, Resulting in $1.8 Billion LossAt least S$616,000 lost in 2024 amid spike in Singapore's parcel delivery phishing scamsAustralian Compass Group confirms second hackBingX Confirms Attack on Its Hot Wallets, Initiates Emergency PlanCalifornian school district says December cyber attack compromised students’ dataChrome Users Can Now Sync Passkeys Across Devices with New Google PIN FeatureClickbaity or genius? 'BF cheated on you' QR codes pop up across UKConfiguration flaw puts ServiceNow Knowledge Base articles at riskCritical Ivanti Cloud Appliance Vulnerability Exploited in Active CyberattacksCybercrooks strut away with haute couture Harvey Nichols dataCybersecurity Skills Gap Leaves Cloud Environments VulnerableData Breach Fallout: Disney Severs Ties after Slack Hack?DDoS overtakes ransomware as most active cyber threat in EuropeDell Allegedly Breached +10K Employee Information ExposedDell investigates data breach claims after hacker leaks employee infoDisney ditching Slack after massive July data breachDisney To Stop Using Salesforce's Slack After Data BreachENISA Threat Landscape 2024 identifies availability, ransomware, data attacks as key cybersecurity threatsEuropol Shuts Down Major Phishing Scheme Targeting Mobile Phone CredentialsFake shelter alerts and death threats: phishing attack targets IsraelisFederal Trade Commission (FTC) investigates video streaming and social media for data collectionGermany Shuts Down 47 Cryptocurrency Exchange Services Linked to CybercrimeGitLab Urges Organizations To Patch For Authentication Bypass VulnerabilityGoing for Gold: HSBC Approves Quantum-Safe Technology for Tokenized BullionsGoogle Password Manager PIN Feature Let Users Sync Passkeys Across DevicesHacker selling 7 TB of Star Health Insurance’s customer data using TelegramHackers exploit content creation platforms for phishing attacks, warn expertsHow Ransomhub Ransomware Uses EDRKillShifter to Disable EDR and Antivirus ProtectionsHow to Address Shortcomings in API SecurityHow to detect and stop bot activityIn a major cyber attack, hackers target WHO and British parliamentarians on XIndian Supreme Court under Cyber Attack as Hackers Hijack YouTube Channel to Promote XRPIranian APT UNC1860 Linked to MOIS Facilitates Cyber Intrusions in Middle EastIvanti Warns of CSA Vulnerability Actively Exploited in AttacksJoint EU, Americas Effort Dismantles iServer Phishing NetworkLaw Enforcement Dismantles Phishing Platform Used for Unlocking Stolen PhonesLinkedIn Halts AI Model Training in the UK Amid Privacy ConcernsmacOS Sequoia change breaks networking for VPN, antivirus softwareMicrosoft ends development of Windows Server Update Services (WSUS)Nextcloud Hub 9 released: New features, more security, updated performanceNew FTC report slams social media firms for harmful data useNew MacOS Malware Let Attackers Control The Device RemotelyOne-third of the US population’s background info is now publicOperation Kaerb, Masterminds Behind iserver Phishing-As-A-Service Platform ArrestedPasswordless AND Keyless: The Future of (Privileged) Access ManagementRising identity security risks: Why organizations must act nowSchools threatened by hackers in cyber attackStriking the balance between cybersecurity and operational efficiencySuspects in $230 million bitcoin social engineering scheme arrestedTeamTNT Hackers Attacking VPS Servers Running CentOSThe Vanilla Tempest cybercrime gang used INC ransomware for the first time in attacks on the healthcare sectorTor Project responded to claims that law enforcement can de-anonymize Tor usersUkraine bans Telegram on military, govt devices over security risksUNC1860 Hackers Use Specialized Tools & Backdoors To Penetrate Victims’ NetworksUNC1860 provides Iran-linked APTs with access to Middle Eastern networksUpgrading to MacOS Sequoia? Here's why you may want to hold offUS Cyberspace Solarium Commission Outlines Ten New Cyber Policy PrioritiesUS DoJ charged two men with stealing and laundering $230 Million worth of cryptocurrencyWalmart customers accused of drug trafficking in a Google Ads scamWant to know how the bad guys attack AI systems? MITRE’S ATLAS can show youWhere's your BitLocker recovery key? How to save a copy before the next Windows meltdownWindows Server 2025 previews security updates without restarts19/095 New Vulnerabilities Added to CISA’s Known Exploited List: Urgent Action Required6 Million Taxpayer IDs, Including President's, Allegedly Leaked and Sold for $10,00010 Critical Indicators Your Company is Vulnerable to Cyberattacks52% of consumers have an increased fear of becoming a fraud victim8000 Claimants Sue Outsourcing Giant Capita Over 2023 Data BreachA Threat Actor Claims to Sell Police Complaints from 52 Police Stations in RawalpindiAembit Unveils 2024 Survey Report Highlighting Major Gaps in Securing Non-Human IdentitiesAI governance can’t be left to the vested interestsAlleged Data Breach Hits Egyptian Restaurant Chain BazookaAttention Travelers! Beware of Booking.com Themed Phishing AttacksBehind a data breach: the cost of cybersecurity incidents for Australian businessesBeneath the surface - exploring the hidden costs of a cyber attackBetter Department of Justice (DOJ), FBI anti-ransomware efforts soughtCan the US safeguard user data from Meta’s AI training?Cashless toll payments end with massive data leakChinese marketplace Temu denies breach after hacker claims major customer data heistClever 'GitHub Scanner' campaign abusing repos to push malwareCombined Hardware-Cyber Attack Annihilate Hezbollah Command NetworkCompanies skip security hardening in rush to adopt AICriminal phishing network resulting in over 480 000 victims worldwide busted in Spain and Latin AmericaCryptojacking Gang TeamTNT Makes a ComebackCyber Attack on Security Firm Dr.Web Forces Servers DisconnectionCyberattacks Plague the Health Industry. Critics Call Feds’ Response Feeble and FracturedCyberVolk Threatens Universities with Deleting Their DataData disposal and cyber hygiene: Building a culture of security within your organizationData from Major Chinese Oil Company Allegedly Leaked on Dark WebDecentraland’s X Account Hacked: Scammers Use Phishing Links to Target 607,000 FollowersDeepfakes break through as business threatDifferential privacy in AI: A solution creating more problems for developers?Earth Baxia Uses Spear-Phishing and GeoServer Exploit to Target APACEssential metrics for effective security program assessmentFailed crypto scammers nominated for 'most incompetent hacker' awardFake CAPTCHA Verification Pages Spreading Lumma Stealer MalwareFBI Dismantles Chinese-Linked Botnet of 260,000 IoT DevicesFBI forced Flax Typhoon to abandon its botnetFCC $200m Cyber Grant Pilot Opens Applications for Schools and LibrariesFedbank Financial Services clarifies on ransomware attack rumors: No breach of IT infrastructureFireworks Software Notifies 27k Individuals of Recent Data BreachFox Kitten’s Hidden Infrastructure & New IOCs UncoveredFTC exposes massive surveillance of kids, teens by social media giantsFTC report exposes massive data collection by social media brands - how to protect yourselfGermany seizes 47 crypto exchanges used by ransomware gangsGitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE EditionsGlobal Phishing Network Busted in Major Cross-Continent OperationGlobal Police Operation Dismantles 'Ghost' Encrypted Communication Platform Google Chrome just made it even easier to use passkeys across all your devicesGoogle Password Manager now automatically syncs your passkeysHacker Claims “Minor” Data Breach at DELL; Leaks Over 10,000 Employee DetailsHackers are seeking $6 million for files stolen in a cyberattack on Seattle airport operatorHackers Exploit Default Credentials in FOUNDATION Software to Breach Construction FirmsHackers Using Supershell Malware To Attack Linux SSH ServersHandala Hacktivist Group Claims Breach of Two Israeli Defense-Related CompaniesHealthcare's Diagnosis is Critical: The Cure is Cybersecurity HygieneHow digital wallets work, and best practices to use them safelyHow to reduce cyber risk during employee onboardingIndonesia’s tax agency probes alleged data breach affecting Jokowi, 6 million taxpayersInfostealers Cause Surge in Ransomware Attacks, Just One in Three Recover DataInsecure APIs and Bot Attacks Cost Global Firms $186bnInternational law enforcement operation dismantled criminal communication platform GhostIran’s Passive Backdoors Lurk in Middle Eastern NetworksIs Tor really safe? Law enforcement surveilling and unmasking users on the dark web Ivanti warns of another critical CSA flaw exploited in attacksIvanti warns of a new actively exploited Cloud Services Appliance (CSA) flawLockbit says it has hit eFile.com, againMicrosoft Warns of New INC Ransomware Targeting U.S. Healthcare SectorMicrosoft Warns Of Vanilla Tempest Hackers Attacking Healthcare SectorsMt. Carmel Behavioral Healthcare suffers data breach, exposing sensitive patient informationNew Brazilian-Linked SambaSpy Malware Targets Italian Users via Phishing EmailsNew Raptor Train Botnet Hacked 200,000+ Devices WorldWideNew TeamTNT Cryptojacking Campaign Targets CentOS Servers with RootkitOpen Source C2 Frameworks Used In Red Teaming Vulnerable To RCE AttacksPagers used in Hezbollah attacks: who still uses them and why?Patch this critical Safeguard for Privileged Passwords auth bypass flaw (CVE-2024-45488)Picus Security, founded by 3 Turkish mathematicians, raises $45M after simulating 1B cyber attacksPolice dismantles phone unlocking ring linked to 483,000 victimsRansomHub Ransomware Targets 210 Victims Since February 2024Repsol suffers a cyber attack on its customer databaseRichland County says 2023 data breach impacted more than 75,000 county residentsSambaSpy Attacking Windows Users With Weaponized PDF Files Security leaders consider banning AI coding due to security risksSIEM for Small and Medium-Sized Enterprises: What you need to knowSuspicious teaser: Kaspersky warns that scammers hide phishing links behind imagesTemu denies 87m record data breach claimsThe NSA advises you to turn off your phone once a week - here's whyThreat Actors Weaponized Splinter Post-Exploitation Red Team Tool DiscoveredTor says it’s "still safe" amid reports of police deanonymizing usersUN panel says AI needs regulation, cannot be left to market forcesUnexplained ‘Noise Storms’ flood the Internet, puzzle expertsU.S. CISA adds Microsoft Windows, Apache HugeGraph-Server, Oracle JDeveloper, Oracle WebLogic Server, and Microsoft SQL Server bugs to its Known Exploited Vulnerabilities catalogUS Sanctions Intellexa Spyware Network Over Threat to National Security U.S. Taxpayer Data at Risk? LockBit Ransomware Claims Attack on IRS-Authorized eFileWestern Agencies Warn Risk from Chinese-Controlled BotnetWhat is Botnet? How it Works, Definition & TypesWherever There's Ransomware, There's Service Account Compromise. Are You Protected?Why Cynet’s All-in-One Platform Is a Game-Changer for MSPsWhy the NCSC Cyber Assessment Framework is Important to the UK Public SectorWindows users targeted with fake human verification pages delivering malware18/0923andMe to pay $30 million to settle class action lawsuit over October data breach75 percent of organizations affected more than once by ransomwareA Threat Actor Alleged Data Breach of RelevvoAlly Bank May Have Compromised Your Personal Data in an April Data BreachAT&T Reaches $13 Million FCC Settlement Over Massive 2023 Data BreachAtrium Health data breach: Phishing attack exposes sensitive consumer informationAustralia Arrests Mastermind Behind Global Crime App, GhostBharat Petroleum Database Allegedly Breached 148M Records for Sale on Dark WebCensys Uncovers Hidden Infrastructure of Iranian Fox Kitten GroupChinese botnet infects 260,000 SOHO routers, IP cameras with malwareChrome extension hides malware to steal crypto: new operation uncoveredChrome Introduces One-Time Permissions and Enhanced Safety Check for Safer BrowsingCritical Infrastructure at Risk From Email Security BreachesCritical VMware vCenter Server bugs fixed (CVE-2024-38812)CrowdSec: Open-source security solution offering crowdsourced protectionDeadly cyber attack in Lebanon reveals the new face of warfareDetecting vulnerable code in software dependencies is more complex than it seemsFBI warns about China-controlled botnet affecting thousands of AmericansFCC reaches $13 million settlement with AT&T over 2023 data breach involving third-party vendorGermany seizes leak site of ‘Vanir’ ransomware operationGhost: Criminal communication platform compromised, dismantled by international law enforcementGitLab releases fix for critical SAML authentication bypass flawGlobal Crime Hit as Europol Shuts Down Encrypted Chat App GhostGSMA Plans End-to-End Encryption for Cross-Platform RCS MessagingHacker targets NASA, faces 300+ years behind barsHackers breaching construction firms via specialized accounting softwareHezbollah’s Pager Explosions Trigger Questions of Similar Threat to SmartphonesInfostealers: An Early Warning for Ransomware AttacksJapanese automaker Kawasaki says ransomware attack impacted European operationsLinkedIn scraped user data for training before updating its terms of serviceMicrosoft Azure tools increasingly leveraged in ransomware attacksMost Educational Organizations Paid More Than the Original Ransom Demand, Says Sophos SurveyNew Akamai State of the Internet Report reveals Asia Pacific received highest median threat score for phishing attacks against financial institutionsNew "Raptor Train" IoT Botnet Compromises Over 200,000 Devices WorldwideNorth Korean Hackers Target Energy and Aerospace Industries with New MISTPEN MalwareOperação mira hacker que tentou invadir sistema da Polícia de MTOrganizations overwhelmed by numerous and insecure remote access toolsPatch Issued for Critical VMware vCenter Flaw Allowing Remote Code ExecutionPolice announce takedown and arrest mastermind behind criminal comms platform 'Ghost'RAMBO Attack: Electromagnetic Waves Steal Data from Air-Gapped SystemsRussian security firm Dr.Web disconnects all servers after breachSensitive Data of Indonesian Government Officials Allegedly Leaked on Dark WebServer Misconfiguration at Fuel Industry Software Provider Exposes SSNs, PII DataSingapore mandates face authentication for 'higher risk' bank transactionsSpain arrests Moroccan hacker sought by MoroccoSpyCloud Unveils Massive Scale of Identity Exposure Due to Infostealers, Highlighting Need for Advanced Cybersecurity MeasuresTemu nega violação de dados mesmo hacker alegando rouboThe best secure browsers for privacy: Expert testedThe proliferation of non-human identities Threat Actor Claims to Sell 600GB of Chunghwa Telecom DataUber launches new rider verification program as a safety measure for drivers across the USUS Imposes Fresh Sanctions on Intellexa Spyware MakerU.S. Intelligence Agencies Say Chinese Botnet Compromised 260,000 DevicesVanilla Tempest hackers hit healthcare with INC ransomwareWhy Pay A Pentester?17/096% of media websites have robust bot protection80% of critical infrastructure entities affected by email breaches100s of injuries following pagers exploding in Lebanon280K Customer Records from Alshaya Group Allegedly Leaked on Dark WebA Threat Actor Alleged Data Breach of Didi ChuxingA Threat Actor Claims Admin Access to Corporate Analytics Software Used by Major CompaniesAccess Sports Data Cyber Attack, 88,000+ Users Data ImpactedAI to supercharge deepfakes, ransomware and phishing attacksApple releases iOS 18, with security and privacy improvementsAppOmni Surfaces Configuration Flaw in ServiceNow SaaS PlatformAramark Provides Notice of myPay Data Breach Affecting an Unknown Number of EmployeesAt least $28k lost through phishing scam involving fake OneMotoring websiteAT&T pays $13 million FCC settlement over 2023 data breachBank Rakyat assures its system remains secure after attempted data breach on Sept 3Beyond human IAM: The rising tide of machine identitiesBinance Warns of Rising Clipper Malware Attacks Targeting Cryptocurrency UsersCharles Darwin School forced to cancel classes following a BlackSuit ransomware attackChinese Citizen Allegedly Spent Years Trying to Hack NASA, US ResearchChinese Hacker Targeted NASA, U.S. Military to Steal Critical SoftwareCISA urges software devs to weed out XSS vulnerabilitiesCISA’s FOCAL Plan: Federal Agencies Unite Against Cyber Threats‘Click Here’: Investigators Struggle to Shed Light on Balkan-Wide Phishing ScamContent platforms exploited for phishing attacks, warns BarracudaCyberattacks plague health care. Critics call the federal response 'inadequate'David’s Bridal Data Breach Leaks an Unknown Number of Social Security NumbersEmail Security Breaches Rampant Among Critical Infrastructure OrganizationsExpress Services suffers data breach; unauthorized access confirmedFinancial Services sector tops charts for Phishing and DDoS in EMEAFines and lawsuits for businesses after a data breach might be worse than the attack itselfGateways to havoc: Overprivileged dormant service accountsGen reveals 24% rise in ransomware attacks on consumersGitLab releases security updates to fix 17 vulnerabilitiesHacker Drains $6M from Delta Prime in Token Minting ExploitHacker Gains Access to T-Mobile’s Internal Files Via Third-Party FirmHarmonizing Security and Usability to Tackle Account TakeoverHezbollah pager devices remotely exploded in Israeli op, thousands of members severely injuredHezbollah pagers explode, over 3,000 injured, at least 9 deadHospitals need “tribal approach” to protect against hackers, says expertInformation Commissioner’s Office (ICO) Acts Against Sky Betting and Gaming Over CookiesIs a $13 mn fine enough to resolve AT&T’s data breach?Lebanon's Foreign Ministry condemns Israeli cyber attack, prepares complaint to UN Security CouncilLocal medical centre the victim of phishing attackMajor Exchange Loses Billions of Shiba Inu (SHIB) to HackersMeta to Train AI Models Using Public U.K. Facebook and Instagram PostsMisconfigured ServiceNow Knowledge Bases Expose Confidential InformationMost Cyber Leaders Fear AI-Generated Code Will Increase Security RisksOver 1,000 ServiceNow instances found leaking corporate KB dataOver Half of Breached UK Firms Pay RansomPhishing Attacks Exploit Content Creation PlatformsPhishing Campaigns Surge with New Header Refresh Technique, Targeting Financial and Government SectorsPKfail Secure Boot bypass remains a significant risk two months laterPoC exploit for exploited Ivanti Cloud Services Appliance flaw released (CVE-2024-8190)Port of Seattle blames the Rhysida ransomware group for August cyber attackQilin ransomware attack on Synnovis impacted over 900,000 patientsRansomHub Ransomware Group Leaks Alleged Kawasaki Motors Stolen DataRansomHub releases 487GB of data allegedly stolen from KawasakiRansomware gangs now abuse Microsoft Azure tool for data theftRecent WhatsUp Gold Vulnerabilities Possibly Exploited in Ransomware AttacksRhysida ransomware gang ships off Port of Seattle data for $6MScam victims in Singapore lose SGD 28,000 in OneMotoring e-mail phishing; police issue alertSeattle-Tacoma Intl. Airport taunted by Rhysida ransomware gang over 100 bitcoinSibanye-Stillwater Mining Company Confirms Data Breach Exposing Information of 7,258 EmployeesSolarWinds Issues Patch for Critical ARM Vulnerability Enabling RCE AttacksSophos report reveals education sector's ransomware battleT-Mobile virtual machine logs allegedly exposed in Capgemini data breachTemu Allegedly Breached 87M Records for Sale on Dark WebThe cybersecurity workforce of the future requires diverse hiring practicesThe growing danger of visual hacking and how to protect against itThe Maids International reports a data breach affecting sensitive consumer informationThreat Actor Offers Access to US Cosmetics Company for $12KU.S. Treasury Sanctions Executives Linked to Intellexa Predator Spyware OperationUS Department of Justice (USDOJ) Charges Chinese AVIC Engineer With Phishing To Hack NASA, FAA & US MilitaryUS Looks to Align Security Across GovernmentUS Ramps Up Sanctions on Spyware-Maker IntellexaWidespread phishing exfiltrates credentials via HTTP header abuse16/0923andMe Agrees to $30m Data Breach Settlement23andMe Settles Data Breach Lawsuit for $30 Million Amid Ongoing Cybersecurity Concerns23andMe to Pay $30 Million Following Major Data Breach Impacting 6.4 Million UsersA Threat Actor Claims to Breach of SAP Database, 2,600 Employees Information ExposedA Threat Actor Claims VPN Access to a Major Spanish University NetworkA Wake-Up Call for AI Safety: ChatGPT’s Vulnerability ExposedApple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposureApple Drops Spyware Case Against NSO Group, Citing Risk of Threat Intelligence ExposureApple to Drop Spyware Lawsuit Over Security ConcernsAre pirate streaming sites in the middle of a copyright crackdown?Australia Faces Surge in Data Breaches to Highest Level in 3.5 YearsAustralian Law Firms Failing to Protect Against Cyber Threats, Report RevealsAzure API Management Vulnerability Let Users Escalate PrivilegesBeware of Fake AppleCare+ Service that Steals Money from UsersBeware Of Weaponized Excel Document That Delivers Fileless Remcos RATCaterpillar Inc. Allegedly Breached 80GB of Sensitive Data ExposedCBI-FBI Join Hands to Bust Global Cybercrime Network, 57 Gold Bars SeizedChrome switching to NIST-approved ML-KEM quantum encryptionCompliance frameworks and GenAI: The Wild West of security standardsCreating An AI Honeypot To Engage With Attackers SophisticatedlyCritical Vulnerabilities Impact Millions Of D-Link Routers: Patch Now!Cybercriminals Exploit HTTP Headers for Credential Theft via Large-Scale Phishing AttacksD-Link fixes critical RCE, hardcoded password flaws in WiFi 6 routersDubai Municipality Allegedly Breached +60GB Data is For SaleeBook: Navigating compliance with a security-first approachEchoStrike: Generate undetectable reverse shells, perform process injectionEntro Security Labs Releases Non-Human Identities Research Security AdvisoryExploit code released for critical Ivanti RCE flaw, patch nowFrom Breach to Recovery: Designing an Identity-Focused Incident Response PlaybookGoogle Fixes GCP Composer Flaw That Could've Led to Remote Code ExecutionHacker tricked ChatGPT into providing detailed instructions to make a homemade bombIs Microsoft really going to cut off security updates for your 'unsupported' Windows 11 PC?Is your Windows license legal? Should you even care?Massive Data Breach Hits 3.1 Million Medicare Users in MOVEit CyberattackMaster Your PCI DSS v4 Compliance with Innovative Smart ApprovalsMedusa Ransomware Exploiting Fortinet Flaw For Sophisticated AttacksMeta Goes Ahead With Controversial AI Training in UKMicrosoft confirms second 0-day exploited by Void Banshee APT (CVE-2024-43461)New Android Malware Ajina Attacks Users To Steal Banking Login DetailsNorth Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor MalwarePatch management: A dull IT pain that won’t go awayPort of Seattle Confirms Ransomware Attack Disrupted Operations, Raises Data Breach ConcernsRansomware attack on Access Sports impacted over 88,000 patientsSolarWinds fixed critical RCE CVE-2024-28991 in Access Rights ManagerThe ripple effects of regulatory actions on CISO reportingThousands of Vastaamo leak victims seek higher compensation amid ongoing legal battleThreat Actor 888 Allegedly Claims Leak of SAP Employees DataTop 10 ransomware groups to watchToyota customer data leak: 240GB of sensitive information exposed by hacker group ZeroSevenGroupTransport for London says cyber attack resulted in a customer data breachTrends and dangers in open-source software dependenciesUK Hosts International Cyber Skills ConferenceUS cracks down on spyware vendor Intellexa with more sanctionsZeroSevenGroup Allegedly Breached Israeli Systems, Price of Stolen Data is 200K XMRWhat is Security Auditing?Windows MSHTML Zero-Day Vulnerability Exploited In The Wild15/09A Threat Actor Claims to Breach of DataGardener Database, 1.4 Million Records ExposedCybersecurity Firm Fortinet Confirms Data Breach and Ransom DemandDark web researcher warned Columbus, Ohio, residents ransomware attack was bigger than mayor said. The city is suing himData Breach at Retirement Insurance Affects 370,000 People‘FakeUpdates’ is August’s ‘most dangerous’ malware in India: These sectors most targetedPort of Seattle confirmed that Rhysida ransomware gang was behind the August attackPort of Seattle shares ransomware attack detailsThe 5 African countries considered "role-models" in cyber securityWazirX Hacker Now Holds 34,154 ETH Following Massive Laundering EffortWindows vulnerability abused braille “spaces” in zero-day attacksDaily News - Setembro (08/09 - 14/09) - 37 Semana de 2024
Cyber Security, Hacking, Privacy and Information Security News --- Daily Updates !! Weekly Resume...21/09Chinese National Charged in Major “Spear-Phishing” Espionage Campaign: What You Need to KnowCrypto lender Shezmu recovers hacked funds through negotiationDell Investigates Employee Data Leak Claims Made By HackersGlobal infostealer malware operation targets crypto users, gamersHacker behind Snowflake customer data breaches remains activeHacker Uses Telegram Chatbots to Leak Data of Star Health InsuranceHacktivist Group Twelve Targets Russian Entities with Destructive Cyber AttacksLinkedIn Halts AI Data Processing in UK Amid Privacy Concerns Raised by ICOMajor retail banks in Singapore to introduce Singpass Face Verification (SFV) to mitigate phishingMaryland Police Warn Gmail Users of Phishing Scam Demanding BitcoinMr Hamza Launches Campaign Against TurkeyNearly 8,000 claimants file high court case against Capita over 2023 cyber attackNew SambaSpy malware spread in phishing campaignOP KAERB: Europol dismantled phishing scheme targeting mobile usersPhilippines concerned over data breach risk at passport printer‘Ransomware threats more than doubling every year’Shezmu recovers hacked crypto funds by negotiating with the hackerSneaky scammers drain bank account in sinister phone phishing schemeStar Health Data Breach Exposes Millions of Customers’ InfoSupreme Court’s YouTube Channel Taken Down After Hack, XRP Scam Videos AppearThe dark side of AI democratization: You no longer need to be a hacker to hackThreat Actor Claims to Leak SpaceX Data Containing Emails, Hashes, and IPsUkraine Bans Telegram Use for Government and Military Personnel20/0911 Common Cyberattacks You Should Be Aware Of75% of Organisations Hit by Ransomware More Than OnceA Threat Actor Claims to Sell Data of Star Health Insurance, Compromising data of 31 Million CustomersAirline exec settles hack-for-hire case against law firm, pledging to ‘vigorously’ prosecute other alleged conspiratorsAscension Ransomware Attack Hurts Financial RecoveryAscension’s Financial Comeback Stalled by Costly Cyberattack, Resulting in $1.8 Billion LossAt least S$616,000 lost in 2024 amid spike in Singapore's parcel delivery phishing scamsAustralian Compass Group confirms second hackBingX Confirms Attack on Its Hot Wallets, Initiates Emergency PlanCalifornian school district says December cyber attack compromised students’ dataChrome Users Can Now Sync Passkeys Across Devices with New Google PIN FeatureClickbaity or genius? 'BF cheated on you' QR codes pop up across UKConfiguration flaw puts ServiceNow Knowledge Base articles at riskCritical Ivanti Cloud Appliance Vulnerability Exploited in Active CyberattacksCybercrooks strut away with haute couture Harvey Nichols dataCybersecurity Skills Gap Leaves Cloud Environments VulnerableData Breach Fallout: Disney Severs Ties after Slack Hack?DDoS overtakes ransomware as most active cyber threat in EuropeDell Allegedly Breached +10K Employee Information ExposedDell investigates data breach claims after hacker leaks employee infoDisney ditching Slack after massive July data breachDisney To Stop Using Salesforce's Slack After Data BreachENISA Threat Landscape 2024 identifies availability, ransomware, data attacks as key cybersecurity threatsEuropol Shuts Down Major Phishing Scheme Targeting Mobile Phone CredentialsFake shelter alerts and death threats: phishing attack targets IsraelisFederal Trade Commission (FTC) investigates video streaming and social media for data collectionGermany Shuts Down 47 Cryptocurrency Exchange Services Linked to CybercrimeGitLab Urges Organizations To Patch For Authentication Bypass VulnerabilityGoing for Gold: HSBC Approves Quantum-Safe Technology for Tokenized BullionsGoogle Password Manager PIN Feature Let Users Sync Passkeys Across DevicesHacker selling 7 TB of Star Health Insurance’s customer data using TelegramHackers exploit content creation platforms for phishing attacks, warn expertsHow Ransomhub Ransomware Uses EDRKillShifter to Disable EDR and Antivirus ProtectionsHow to Address Shortcomings in API SecurityHow to detect and stop bot activityIn a major cyber attack, hackers target WHO and British parliamentarians on XIndian Supreme Court under Cyber Attack as Hackers Hijack YouTube Channel to Promote XRPIranian APT UNC1860 Linked to MOIS Facilitates Cyber Intrusions in Middle EastIvanti Warns of CSA Vulnerability Actively Exploited in AttacksJoint EU, Americas Effort Dismantles iServer Phishing NetworkLaw Enforcement Dismantles Phishing Platform Used for Unlocking Stolen PhonesLinkedIn Halts AI Model Training in the UK Amid Privacy ConcernsmacOS Sequoia change breaks networking for VPN, antivirus softwareMicrosoft ends development of Windows Server Update Services (WSUS)Nextcloud Hub 9 released: New features, more security, updated performanceNew FTC report slams social media firms for harmful data useNew MacOS Malware Let Attackers Control The Device RemotelyOne-third of the US population’s background info is now publicOperation Kaerb, Masterminds Behind iserver Phishing-As-A-Service Platform ArrestedPasswordless AND Keyless: The Future of (Privileged) Access ManagementRising identity security risks: Why organizations must act nowSchools threatened by hackers in cyber attackStriking the balance between cybersecurity and operational efficiencySuspects in $230 million bitcoin social engineering scheme arrestedTeamTNT Hackers Attacking VPS Servers Running CentOSThe Vanilla Tempest cybercrime gang used INC ransomware for the first time in attacks on the healthcare sectorTor Project responded to claims that law enforcement can de-anonymize Tor usersUkraine bans Telegram on military, govt devices over security risksUNC1860 Hackers Use Specialized Tools & Backdoors To Penetrate Victims’ NetworksUNC1860 provides Iran-linked APTs with access to Middle Eastern networksUpgrading to MacOS Sequoia? Here's why you may want to hold offUS Cyberspace Solarium Commission Outlines Ten New Cyber Policy PrioritiesUS DoJ charged two men with stealing and laundering $230 Million worth of cryptocurrencyWalmart customers accused of drug trafficking in a Google Ads scamWant to know how the bad guys attack AI systems? MITRE’S ATLAS can show youWhere's your BitLocker recovery key? How to save a copy before the next Windows meltdownWindows Server 2025 previews security updates without restarts19/095 New Vulnerabilities Added to CISA’s Known Exploited List: Urgent Action Required6 Million Taxpayer IDs, Including President's, Allegedly Leaked and Sold for $10,00010 Critical Indicators Your Company is Vulnerable to Cyberattacks52% of consumers have an increased fear of becoming a fraud victim8000 Claimants Sue Outsourcing Giant Capita Over 2023 Data BreachA Threat Actor Claims to Sell Police Complaints from 52 Police Stations in RawalpindiAembit Unveils 2024 Survey Report Highlighting Major Gaps in Securing Non-Human IdentitiesAI governance can’t be left to the vested interestsAlleged Data Breach Hits Egyptian Restaurant Chain BazookaAttention Travelers! Beware of Booking.com Themed Phishing AttacksBehind a data breach: the cost of cybersecurity incidents for Australian businessesBeneath the surface - exploring the hidden costs of a cyber attackBetter Department of Justice (DOJ), FBI anti-ransomware efforts soughtCan the US safeguard user data from Meta’s AI training?Cashless toll payments end with massive data leakChinese marketplace Temu denies breach after hacker claims major customer data heistClever 'GitHub Scanner' campaign abusing repos to push malwareCombined Hardware-Cyber Attack Annihilate Hezbollah Command NetworkCompanies skip security hardening in rush to adopt AICriminal phishing network resulting in over 480 000 victims worldwide busted in Spain and Latin AmericaCryptojacking Gang TeamTNT Makes a ComebackCyber Attack on Security Firm Dr.Web Forces Servers DisconnectionCyberattacks Plague the Health Industry. Critics Call Feds’ Response Feeble and FracturedCyberVolk Threatens Universities with Deleting Their DataData disposal and cyber hygiene: Building a culture of security within your organizationData from Major Chinese Oil Company Allegedly Leaked on Dark WebDecentraland’s X Account Hacked: Scammers Use Phishing Links to Target 607,000 FollowersDeepfakes break through as business threatDifferential privacy in AI: A solution creating more problems for developers?Earth Baxia Uses Spear-Phishing and GeoServer Exploit to Target APACEssential metrics for effective security program assessmentFailed crypto scammers nominated for 'most incompetent hacker' awardFake CAPTCHA Verification Pages Spreading Lumma Stealer MalwareFBI Dismantles Chinese-Linked Botnet of 260,000 IoT DevicesFBI forced Flax Typhoon to abandon its botnetFCC $200m Cyber Grant Pilot Opens Applications for Schools and LibrariesFedbank Financial Services clarifies on ransomware attack rumors: No breach of IT infrastructureFireworks Software Notifies 27k Individuals of Recent Data BreachFox Kitten’s Hidden Infrastructure & New IOCs UncoveredFTC exposes massive surveillance of kids, teens by social media giantsFTC report exposes massive data collection by social media brands - how to protect yourselfGermany seizes 47 crypto exchanges used by ransomware gangsGitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE EditionsGlobal Phishing Network Busted in Major Cross-Continent OperationGlobal Police Operation Dismantles 'Ghost' Encrypted Communication Platform Google Chrome just made it even easier to use passkeys across all your devicesGoogle Password Manager now automatically syncs your passkeysHacker Claims “Minor” Data Breach at DELL; Leaks Over 10,000 Employee DetailsHackers are seeking $6 million for files stolen in a cyberattack on Seattle airport operatorHackers Exploit Default Credentials in FOUNDATION Software to Breach Construction FirmsHackers Using Supershell Malware To Attack Linux SSH ServersHandala Hacktivist Group Claims Breach of Two Israeli Defense-Related CompaniesHealthcare's Diagnosis is Critical: The Cure is Cybersecurity HygieneHow digital wallets work, and best practices to use them safelyHow to reduce cyber risk during employee onboardingIndonesia’s tax agency probes alleged data breach affecting Jokowi, 6 million taxpayersInfostealers Cause Surge in Ransomware Attacks, Just One in Three Recover DataInsecure APIs and Bot Attacks Cost Global Firms $186bnInternational law enforcement operation dismantled criminal communication platform GhostIran’s Passive Backdoors Lurk in Middle Eastern NetworksIs Tor really safe? Law enforcement surveilling and unmasking users on the dark web Ivanti warns of another critical CSA flaw exploited in attacksIvanti warns of a new actively exploited Cloud Services Appliance (CSA) flawLockbit says it has hit eFile.com, againMicrosoft Warns of New INC Ransomware Targeting U.S. Healthcare SectorMicrosoft Warns Of Vanilla Tempest Hackers Attacking Healthcare SectorsMt. Carmel Behavioral Healthcare suffers data breach, exposing sensitive patient informationNew Brazilian-Linked SambaSpy Malware Targets Italian Users via Phishing EmailsNew Raptor Train Botnet Hacked 200,000+ Devices WorldWideNew TeamTNT Cryptojacking Campaign Targets CentOS Servers with RootkitOpen Source C2 Frameworks Used In Red Teaming Vulnerable To RCE AttacksPagers used in Hezbollah attacks: who still uses them and why?Patch this critical Safeguard for Privileged Passwords auth bypass flaw (CVE-2024-45488)Picus Security, founded by 3 Turkish mathematicians, raises $45M after simulating 1B cyber attacksPolice dismantles phone unlocking ring linked to 483,000 victimsRansomHub Ransomware Targets 210 Victims Since February 2024Repsol suffers a cyber attack on its customer databaseRichland County says 2023 data breach impacted more than 75,000 county residentsSambaSpy Attacking Windows Users With Weaponized PDF Files Security leaders consider banning AI coding due to security risksSIEM for Small and Medium-Sized Enterprises: What you need to knowSuspicious teaser: Kaspersky warns that scammers hide phishing links behind imagesTemu denies 87m record data breach claimsThe NSA advises you to turn off your phone once a week - here's whyThreat Actors Weaponized Splinter Post-Exploitation Red Team Tool DiscoveredTor says it’s "still safe" amid reports of police deanonymizing usersUN panel says AI needs regulation, cannot be left to market forcesUnexplained ‘Noise Storms’ flood the Internet, puzzle expertsU.S. CISA adds Microsoft Windows, Apache HugeGraph-Server, Oracle JDeveloper, Oracle WebLogic Server, and Microsoft SQL Server bugs to its Known Exploited Vulnerabilities catalogUS Sanctions Intellexa Spyware Network Over Threat to National Security U.S. Taxpayer Data at Risk? LockBit Ransomware Claims Attack on IRS-Authorized eFileWestern Agencies Warn Risk from Chinese-Controlled BotnetWhat is Botnet? How it Works, Definition & TypesWherever There's Ransomware, There's Service Account Compromise. Are You Protected?Why Cynet’s All-in-One Platform Is a Game-Changer for MSPsWhy the NCSC Cyber Assessment Framework is Important to the UK Public SectorWindows users targeted with fake human verification pages delivering malware18/0923andMe to pay $30 million to settle class action lawsuit over October data breach75 percent of organizations affected more than once by ransomwareA Threat Actor Alleged Data Breach of RelevvoAlly Bank May Have Compromised Your Personal Data in an April Data BreachAT&T Reaches $13 Million FCC Settlement Over Massive 2023 Data BreachAtrium Health data breach: Phishing attack exposes sensitive consumer informationAustralia Arrests Mastermind Behind Global Crime App, GhostBharat Petroleum Database Allegedly Breached 148M Records for Sale on Dark WebCensys Uncovers Hidden Infrastructure of Iranian Fox Kitten GroupChinese botnet infects 260,000 SOHO routers, IP cameras with malwareChrome extension hides malware to steal crypto: new operation uncoveredChrome Introduces One-Time Permissions and Enhanced Safety Check for Safer BrowsingCritical Infrastructure at Risk From Email Security BreachesCritical VMware vCenter Server bugs fixed (CVE-2024-38812)CrowdSec: Open-source security solution offering crowdsourced protectionDeadly cyber attack in Lebanon reveals the new face of warfareDetecting vulnerable code in software dependencies is more complex than it seemsFBI warns about China-controlled botnet affecting thousands of AmericansFCC reaches $13 million settlement with AT&T over 2023 data breach involving third-party vendorGermany seizes leak site of ‘Vanir’ ransomware operationGhost: Criminal communication platform compromised, dismantled by international law enforcementGitLab releases fix for critical SAML authentication bypass flawGlobal Crime Hit as Europol Shuts Down Encrypted Chat App GhostGSMA Plans End-to-End Encryption for Cross-Platform RCS MessagingHacker targets NASA, faces 300+ years behind barsHackers breaching construction firms via specialized accounting softwareHezbollah’s Pager Explosions Trigger Questions of Similar Threat to SmartphonesInfostealers: An Early Warning for Ransomware AttacksJapanese automaker Kawasaki says ransomware attack impacted European operationsLinkedIn scraped user data for training before updating its terms of serviceMicrosoft Azure tools increasingly leveraged in ransomware attacksMost Educational Organizations Paid More Than the Original Ransom Demand, Says Sophos SurveyNew Akamai State of the Internet Report reveals Asia Pacific received highest median threat score for phishing attacks against financial institutionsNew "Raptor Train" IoT Botnet Compromises Over 200,000 Devices WorldwideNorth Korean Hackers Target Energy and Aerospace Industries with New MISTPEN MalwareOperação mira hacker que tentou invadir sistema da Polícia de MTOrganizations overwhelmed by numerous and insecure remote access toolsPatch Issued for Critical VMware vCenter Flaw Allowing Remote Code ExecutionPolice announce takedown and arrest mastermind behind criminal comms platform 'Ghost'RAMBO Attack: Electromagnetic Waves Steal Data from Air-Gapped SystemsRussian security firm Dr.Web disconnects all servers after breachSensitive Data of Indonesian Government Officials Allegedly Leaked on Dark WebServer Misconfiguration at Fuel Industry Software Provider Exposes SSNs, PII DataSingapore mandates face authentication for 'higher risk' bank transactionsSpain arrests Moroccan hacker sought by MoroccoSpyCloud Unveils Massive Scale of Identity Exposure Due to Infostealers, Highlighting Need for Advanced Cybersecurity MeasuresTemu nega violação de dados mesmo hacker alegando rouboThe best secure browsers for privacy: Expert testedThe proliferation of non-human identities Threat Actor Claims to Sell 600GB of Chunghwa Telecom DataUber launches new rider verification program as a safety measure for drivers across the USUS Imposes Fresh Sanctions on Intellexa Spyware MakerU.S. Intelligence Agencies Say Chinese Botnet Compromised 260,000 DevicesVanilla Tempest hackers hit healthcare with INC ransomwareWhy Pay A Pentester?17/096% of media websites have robust bot protection80% of critical infrastructure entities affected by email breaches100s of injuries following pagers exploding in Lebanon280K Customer Records from Alshaya Group Allegedly Leaked on Dark WebA Threat Actor Alleged Data Breach of Didi ChuxingA Threat Actor Claims Admin Access to Corporate Analytics Software Used by Major CompaniesAccess Sports Data Cyber Attack, 88,000+ Users Data ImpactedAI to supercharge deepfakes, ransomware and phishing attacksApple releases iOS 18, with security and privacy improvementsAppOmni Surfaces Configuration Flaw in ServiceNow SaaS PlatformAramark Provides Notice of myPay Data Breach Affecting an Unknown Number of EmployeesAt least $28k lost through phishing scam involving fake OneMotoring websiteAT&T pays $13 million FCC settlement over 2023 data breachBank Rakyat assures its system remains secure after attempted data breach on Sept 3Beyond human IAM: The rising tide of machine identitiesBinance Warns of Rising Clipper Malware Attacks Targeting Cryptocurrency UsersCharles Darwin School forced to cancel classes following a BlackSuit ransomware attackChinese Citizen Allegedly Spent Years Trying to Hack NASA, US ResearchChinese Hacker Targeted NASA, U.S. Military to Steal Critical SoftwareCISA urges software devs to weed out XSS vulnerabilitiesCISA’s FOCAL Plan: Federal Agencies Unite Against Cyber Threats‘Click Here’: Investigators Struggle to Shed Light on Balkan-Wide Phishing ScamContent platforms exploited for phishing attacks, warns BarracudaCyberattacks plague health care. Critics call the federal response 'inadequate'David’s Bridal Data Breach Leaks an Unknown Number of Social Security NumbersEmail Security Breaches Rampant Among Critical Infrastructure OrganizationsExpress Services suffers data breach; unauthorized access confirmedFinancial Services sector tops charts for Phishing and DDoS in EMEAFines and lawsuits for businesses after a data breach might be worse than the attack itselfGateways to havoc: Overprivileged dormant service accountsGen reveals 24% rise in ransomware attacks on consumersGitLab releases security updates to fix 17 vulnerabilitiesHacker Drains $6M from Delta Prime in Token Minting ExploitHacker Gains Access to T-Mobile’s Internal Files Via Third-Party FirmHarmonizing Security and Usability to Tackle Account TakeoverHezbollah pager devices remotely exploded in Israeli op, thousands of members severely injuredHezbollah pagers explode, over 3,000 injured, at least 9 deadHospitals need “tribal approach” to protect against hackers, says expertInformation Commissioner’s Office (ICO) Acts Against Sky Betting and Gaming Over CookiesIs a $13 mn fine enough to resolve AT&T’s data breach?Lebanon's Foreign Ministry condemns Israeli cyber attack, prepares complaint to UN Security CouncilLocal medical centre the victim of phishing attackMajor Exchange Loses Billions of Shiba Inu (SHIB) to HackersMeta to Train AI Models Using Public U.K. Facebook and Instagram PostsMisconfigured ServiceNow Knowledge Bases Expose Confidential InformationMost Cyber Leaders Fear AI-Generated Code Will Increase Security RisksOver 1,000 ServiceNow instances found leaking corporate KB dataOver Half of Breached UK Firms Pay RansomPhishing Attacks Exploit Content Creation PlatformsPhishing Campaigns Surge with New Header Refresh Technique, Targeting Financial and Government SectorsPKfail Secure Boot bypass remains a significant risk two months laterPoC exploit for exploited Ivanti Cloud Services Appliance flaw released (CVE-2024-8190)Port of Seattle blames the Rhysida ransomware group for August cyber attackQilin ransomware attack on Synnovis impacted over 900,000 patientsRansomHub Ransomware Group Leaks Alleged Kawasaki Motors Stolen DataRansomHub releases 487GB of data allegedly stolen from KawasakiRansomware gangs now abuse Microsoft Azure tool for data theftRecent WhatsUp Gold Vulnerabilities Possibly Exploited in Ransomware AttacksRhysida ransomware gang ships off Port of Seattle data for $6MScam victims in Singapore lose SGD 28,000 in OneMotoring e-mail phishing; police issue alertSeattle-Tacoma Intl. Airport taunted by Rhysida ransomware gang over 100 bitcoinSibanye-Stillwater Mining Company Confirms Data Breach Exposing Information of 7,258 EmployeesSolarWinds Issues Patch for Critical ARM Vulnerability Enabling RCE AttacksSophos report reveals education sector's ransomware battleT-Mobile virtual machine logs allegedly exposed in Capgemini data breachTemu Allegedly Breached 87M Records for Sale on Dark WebThe cybersecurity workforce of the future requires diverse hiring practicesThe growing danger of visual hacking and how to protect against itThe Maids International reports a data breach affecting sensitive consumer informationThreat Actor Offers Access to US Cosmetics Company for $12KU.S. Treasury Sanctions Executives Linked to Intellexa Predator Spyware OperationUS Department of Justice (USDOJ) Charges Chinese AVIC Engineer With Phishing To Hack NASA, FAA & US MilitaryUS Looks to Align Security Across GovernmentUS Ramps Up Sanctions on Spyware-Maker IntellexaWidespread phishing exfiltrates credentials via HTTP header abuse16/0923andMe Agrees to $30m Data Breach Settlement23andMe Settles Data Breach Lawsuit for $30 Million Amid Ongoing Cybersecurity Concerns23andMe to Pay $30 Million Following Major Data Breach Impacting 6.4 Million UsersA Threat Actor Claims to Breach of SAP Database, 2,600 Employees Information ExposedA Threat Actor Claims VPN Access to a Major Spanish University NetworkA Wake-Up Call for AI Safety: ChatGPT’s Vulnerability ExposedApple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposureApple Drops Spyware Case Against NSO Group, Citing Risk of Threat Intelligence ExposureApple to Drop Spyware Lawsuit Over Security ConcernsAre pirate streaming sites in the middle of a copyright crackdown?Australia Faces Surge in Data Breaches to Highest Level in 3.5 YearsAustralian Law Firms Failing to Protect Against Cyber Threats, Report RevealsAzure API Management Vulnerability Let Users Escalate PrivilegesBeware of Fake AppleCare+ Service that Steals Money from UsersBeware Of Weaponized Excel Document That Delivers Fileless Remcos RATCaterpillar Inc. Allegedly Breached 80GB of Sensitive Data ExposedCBI-FBI Join Hands to Bust Global Cybercrime Network, 57 Gold Bars SeizedChrome switching to NIST-approved ML-KEM quantum encryptionCompliance frameworks and GenAI: The Wild West of security standardsCreating An AI Honeypot To Engage With Attackers SophisticatedlyCritical Vulnerabilities Impact Millions Of D-Link Routers: Patch Now!Cybercriminals Exploit HTTP Headers for Credential Theft via Large-Scale Phishing AttacksD-Link fixes critical RCE, hardcoded password flaws in WiFi 6 routersDubai Municipality Allegedly Breached +60GB Data is For SaleeBook: Navigating compliance with a security-first approachEchoStrike: Generate undetectable reverse shells, perform process injectionEntro Security Labs Releases Non-Human Identities Research Security AdvisoryExploit code released for critical Ivanti RCE flaw, patch nowFrom Breach to Recovery: Designing an Identity-Focused Incident Response PlaybookGoogle Fixes GCP Composer Flaw That Could've Led to Remote Code ExecutionHacker tricked ChatGPT into providing detailed instructions to make a homemade bombIs Microsoft really going to cut off security updates for your 'unsupported' Windows 11 PC?Is your Windows license legal? Should you even care?Massive Data Breach Hits 3.1 Million Medicare Users in MOVEit CyberattackMaster Your PCI DSS v4 Compliance with Innovative Smart ApprovalsMedusa Ransomware Exploiting Fortinet Flaw For Sophisticated AttacksMeta Goes Ahead With Controversial AI Training in UKMicrosoft confirms second 0-day exploited by Void Banshee APT (CVE-2024-43461)New Android Malware Ajina Attacks Users To Steal Banking Login DetailsNorth Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor MalwarePatch management: A dull IT pain that won’t go awayPort of Seattle Confirms Ransomware Attack Disrupted Operations, Raises Data Breach ConcernsRansomware attack on Access Sports impacted over 88,000 patientsSolarWinds fixed critical RCE CVE-2024-28991 in Access Rights ManagerThe ripple effects of regulatory actions on CISO reportingThousands of Vastaamo leak victims seek higher compensation amid ongoing legal battleThreat Actor 888 Allegedly Claims Leak of SAP Employees DataTop 10 ransomware groups to watchToyota customer data leak: 240GB of sensitive information exposed by hacker group ZeroSevenGroupTransport for London says cyber attack resulted in a customer data breachTrends and dangers in open-source software dependenciesUK Hosts International Cyber Skills ConferenceUS cracks down on spyware vendor Intellexa with more sanctionsZeroSevenGroup Allegedly Breached Israeli Systems, Price of Stolen Data is 200K XMRWhat is Security Auditing?Windows MSHTML Zero-Day Vulnerability Exploited In The Wild15/09A Threat Actor Claims to Breach of DataGardener Database, 1.4 Million Records ExposedCybersecurity Firm Fortinet Confirms Data Breach and Ransom DemandDark web researcher warned Columbus, Ohio, residents ransomware attack was bigger than mayor said. The city is suing himData Breach at Retirement Insurance Affects 370,000 People‘FakeUpdates’ is August’s ‘most dangerous’ malware in India: These sectors most targetedPort of Seattle confirmed that Rhysida ransomware gang was behind the August attackPort of Seattle shares ransomware attack detailsThe 5 African countries considered "role-models" in cyber securityWazirX Hacker Now Holds 34,154 ETH Following Massive Laundering EffortWindows vulnerability abused braille “spaces” in zero-day attacksDaily News - Setembro (08/09 - 14/09) - 37 Semana de 2024
Comments