NEWS: Abril (03/04 - 09/04) - 14 Semana de 2022

Cyber Security and Information Security News - Daily Updates !!

09/04

7 Benefits of Using AI for Cybersecurity

76% of firms suffered data loss in 2021- report

Accounts deceivable: Email scam costliest type of cybercrime, worse than ransomware

Ballad Health announces possible medical data breach following review

Bank of Ireland fined €463,000 over the corruption of information

Beware: Hackers Impersonate WeTransfer to Steal Data

Email scams siphon untold billions from economy

Fortuna reports suspicious Russian cyberattacks

Hackers use Conti's leaked ransomware to attack Russian companies

Microsoft seized Russian domains targeting Ukrainian media organizations

More than 8 million Cash App Investing customers potentially impacted by data breach linked to former employee

New Android banking malware remotely takes control of your device

Quick check to make sure no one is spying on your computer

TD Canada scam targets some residents in Mississauga and Brampton

Twitter scammers hack verified accounts to promote a fake Azuki NFT airdrop

What Are The Types Of IT Infrastructure Security?

Your digital footprints not only hurt privacy but also affect cybersecurity

08/04

18% of the top 99 insurance carriers have a high susceptibility to ransomware

A look at what’s new in cybersecurity

April 2022 Patch Tuesday forecast: Spring is in the air (and vulnerable)

AWS Lambda sees its first malware attack with Denonia, and we don’t know how it got there

Big Hacks: 5 Health Data Breaches Affect 1.2 Million

Cash App data breach could have impacted more than 8 million users

China-backed hackers targetted power stations in Ladakh through compromised IP cameras

Consumer fraud tripled in the last two years

Data Breach Alert: DialAmerica Marketing, Inc

Don’t get tricked by this phishing campaign that targets WhatsApp users

EMC National Life Company Data Breach Notice

Expect the Ukraine war’s cyber fallout to spread

FIN7 hacking group member sentenced to five years behind bars

Finland Government Sites Forced Offline by DDoS Attacks

Global Law Enforcement Win: Germany Shuts Down Hydra and U.S. Department of Treasury Follows With Sanctions

Global Supply Chain Attacks Surge 51% in H2 2021

Google removes apps for secretly copying phone numbers

Hackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet Malware

Hamas Hackers Posing as Women to Con Snr Israeli Officials into Installing Malware

Hydra criminal forum seized and shuttered

Insurance industry being ravaged by high rate of cyberattacks

ISC2Events: Supply Chain Security is a Multifaceted Challenge

Microsoft: Nearly All Russian State Actors Now Targeting Ukraine

Microsoft Obtains Court Order to Take Down Domains Used to Target Ukraine

Mirai malware now delivered using Spring4Shell exploits

National Cybersecurity Strategies Are Under Pressure and Innovation Remains Key to Protection

Network intrusion detections skyrocketing

North Carolina prohibits agencies from paying ransoms

Oklahoma State Bureau of Investigation (OSBI) warns of 'vishing' scam; callers pose as agents and ask for money

Organizations underestimating the seriousness of insider threats

Patient data stolen ahead of East Tennessee Children’s Hospital attack, outage

Ransomware payments hit new records in 2021 as dark web leaks climbed - report

Raspberry Pi just made a big change to boost security

Redefining Ransomware – Why Confronting Cybercrime Starts With a War of Words

Researchers Connect BlackCat Ransomware with Past BlackMatter Malware Activity

San Ramon Based CMG Mortgage Reports Security Incident

Shopify faces fresh class-action lawsuit over 2020 Ledger data breach

Steady rise in severe web vulnerabilities

SuperCare Health California Data Breach Notice Issued

Take LAPSUS$ teens seriously

The future of cyber risk management – predicting breaches

The importance of understanding cloud native security risks

Toei Animation Hack Was a Targeted Ransomware Virus

Toei Animation Hack Was Ransomware Attack

Toei Animation Was Victim Of A Ransomware Attack

Ukraine and the increased need for cyber security

Ukrainian FIN7 Hacker Gets 5-Year Sentence in the United States

Using Google's Chrome browser? This new feature will help you fix your security settings

Utah Consumer Privacy Act: What Businesses Need to Know

Was your data compromised? About 1,100 members SummaCare affected

Your digital footprints are more than a privacy risk – they could help hackers infiltrate computer networks

YouTube Fraudsters Steal $1.7m in Crypto 'Giveaway'

07/04

86% of developers don’t prioritize application security

A DPO's Guide to Delivering a Cybersecurity Awareness Program

Android apps with 45 million installs used data harvesting SDK

Bearded Barbie hackers catfish high ranking Israeli officials

BlackCat Ransomware Targets Industrial Companies

Broader investment in cybersecurity beginning to pay dividends

CrowdStrike, Mandiant announce 'strategic partnership'

Cybercriminals on Discord: Discovering developing threats

Cybercriminals taking advantage of the Ukraine crisis to create charity donation scams

Employee Info Among 13 Million Records Leaked by Fox News

FBI Shut Down Russia-linked "Cyclops Blink" Botnet That Infected Thousands of Devices

Fintech platform flaw could have allowed bank transfers, exposed data

Half of Security Leaders Consider Quitting Due to Stress

Hamas-linked Hackers Targeting High-Ranking Israelis Using 'Catfish' Lures

How many steps does it take for attackers to compromise critical assets?

Into the Breach: Breaking Down 3 SaaS App Cyber Attacks in 2022

Israeli officials are being catfished by APT-C-23 hackers

Java Spring4Shell flaw exploit attempts: These are the industries most affected

Malicious Android apps found masquerading as legitimate antivirus tools

Over 8 million Cash App users possibly affected by data breach from a former employee

Paying ransom doesn’t guarantee data recovery

Potential data breach after hackers target Yorkshire housing company

Researchers Uncover How Colibri Malware Stays Persistent on Hacked Systems

Salt Security Details FinTech Firm’s API Security Breach

SEC Proposes New Rules for Cybersecurity Incident Reporting

Server-Side Request Forgery (SSRF) Flaw in Fintech Platform Allowed for Compromise of Bank Accounts

SharkBot Banking Trojan Resurfaces On Google Play Store Hidden Behind 7 New Apps

State Department Establishes Bureau of Cyberspace & Digital Policy

SuperCare Health Data Breach Impacts 318K

Suspected Chinese hackers are targeting India's power grid

The Cyclops Blink botnet has been disrupted

The latest salary trends in the global DevOps industry

Thousands of Android users downloaded this password-stealing malware disguised as anti-virus from Google Play

US Action Disrupts Russian Botnet Cyclops Blink

Utah Becomes Fourth State to Enact a Comprehensive Data Privacy Law

VMware warns of critical remote code execution bug in Workspace ONE Access

Zoom awarded $1.8 million in bug bounty rewards over 2021

06/04

3 Examples of Telephone Scammers and Online Identity Theft

63% of organizations paid the ransom last year

Almost a Fifth of Global Firms Targeted with Spring4Shell

Anonymous Affiliate NB65 Breach State-Run Russian Broadcaster; Leak 786GB of Data

Audit of the Connecticut Health Insurance Exchange Uncovers 44 Unreported Data Breaches

Australian cybercrime on the rise in 2022

Bank of Ireland could face civil cases after 47,000 customers hit by data breach

Bernards Township School District Writes Parents About Data Breach

Block Admits Data Breach Involving Cash App Data Accessed by Former Employee

Block Warns Eight Million Customers of Insider Breach

Board level executives assume they’ll never be attacked, despite rising ransomware incidents: Sophos survey

CaptureRx Data Breach $4.75M Class Action Settlement

Cloud Services Are Increasingly Exploited for Command and Control in Cyber Espionage Operations

Credit agency warns weak cybersecurity defenses could hurt a company’s credit rating, even before an attack

Data breach at Christie Clinic, lawyer gives tips on identity theft

Data Centers Hold The World’s Most Valuable Resource: How To Keep These Assets Secure

Department of Justice (DoJ) takes down Russian botnet that targeted WatchGuard and Asus routers

Developers do not view application security as a top priority, study finds

Electric Vehicle Chargers Hacked to Show Porn

Fake Android shopping apps steal bank account logins, 2FA codes

Fined for watching too much porn? Cybersecurity watchdog warns about intricate phishing scam

Google increases its bug bounty for Fitbit and Nest security flaws

Greek Post Restarts Services After Cyber-Attack Downs System

Hackers Distributing Fake Shopping Apps to Steal Banking Data of Malaysian Users

Hackers Hit Email Marketing Giant Mailchimp, Access Crypto Wallets' Data

Housing associations hacked, ID proofs and bank details on the street

How to Secure Your Remote Work Environment from Cybersecurity Threats

Is your cyber resilience strategy fit for purpose?

IT Leaders Say Employees Not Fully Prepared for Cyberattacks

Malaysians encounter most social engineered scams

Microsoft asks bug hunters to probe on-premises Exchange, SharePoint servers

NFT Security Risks: Old Scams and New Tricks

Pakistan: National Cyber Security Policy Emphasizes on Digital Transformation & Mitigation of Cyber Attacks

Prioritizing cybersecurity training during the onboarding process

Ransomware still demands a proactive approach to security

Satélite sofreu ataque hacker durante a guerra entre Rússia e Ucrânia

SBI Bank customers beware! New fake SBI Yono SMS can steal your money

Seattle Health Center Discovers Additional Data Stolen During June Breach

Shutterfly Employee Data Breach in Attack by Conti Ransomware Group

South African and US Officers Swoop on Fraud Gang

Texas Dept. of Insurance Data Breach Affected 1.8M People

The Driver and Vehicle Licensing Agency issues urgent warning to drivers not to share document online

The Works closes stores after cyberattack

This new malware targets AWS Lambda environments

Thousands Of Indians Exposed In Data Breach Affecting Money Lending App CashMama

U.S. sanctions crypto-exchange Garantex for aiding Hydra Market

UK retail chain The Works shuts down stores after cyberattack

Ukraine-related Phishing Emails Up More than 200%

Vevo to ‘review’ security after YouTube feeds for Lil Nas X, Justin Bieber, and others were hacked

Why Supply Chain Woes Mean The Shipping Industry Needs Increased Cybersecurity

05/04

49% of small medical practices don’t have a cyberattack response plan

Another Log4Shell? Not Quite-But Spring4Shell is Serious

Bank had no firewall license, intrusion or phishing protection – guess the rest

C-Suite & Data Breach – The Minacious Combo

CISA Warns of Active Exploitation of Critical Spring4Shell Vulnerability

Class-action lawsuit filed following Logan Health data breach

Cumbrian businesses warned to protect against cyber attacks

Email security firm reports surge in Ukraine invasion phishing scams

Fake versions of real smartphone apps are being used to spread malware. Here's how to stay safe

Germany Shuts Down Russian Hydra Darknet Market; Seizes $25 Million in Bitcoin

Global APT Groups Use Ukraine War for Phishing Lures

Hackers Breach Mailchimp Email Marketing Firm to Launch Crypto Phishing Scams

Hackers breached Mailchimp to target crypto holders

Hacking DICOM: the hospital standard

Healthcare cybersecurity to serve as the backbone for digital transformation

How Data Breaches Are Affecting People Who Donate to Charity

Hybrid threat model: Watch out for the unhappy employee

Kaspersky shows how scammers create fake pages using phishing kits

Log4Shell exploitation: Which applications may be targeted next?

Mailchimp Data Breach – Here’s What You Need to Know

New Data Finds Phishing Attacks Could Impact 82% of the Largest Insurance Carriers

New Russian Android Malware Tracks GPS Location and Spies on Victims

Police issue warning over bank scam in Sussex

Privilege Escalation Attacks: What it is, How it Happens and Examples

Researchers Trace Widespread Espionage Attacks Back to Chinese 'Cicada' Hackers

Retailer The Works Closes Stores After Cyber-Attack

Russia/Ukraine-themed War Docs are now a Popular Cyber-lure

SandRidge Energy, LLC Files Notice of Recent Data Breach

Saskatchewan Liquor and Gaming Authority (SLGA) dealing with information breach

Shopify facing another lawsuit from crypto holders over Ledger data breach

Sophisticated phishing attacks steal Trezor’s hardware wallets

SpringShell attacks target about one in six vulnerable orgs

State Bank Of India (SBI) Customers Receiving Phishing SMS

That WhatsApp voice message may be a phishing scam

The Role of Cloud-Based Identities in Cloud Security

The Works forced to shut some shops after cyber-attack

These fearsome malware can be bought for a pittance

These ten hacking groups have been targeting critical infrastructure and energy

Traditional identity fraud losses soar, totalling $52 billion in 2021

UK government publishes annual Cyber Security Breaches Survey

UK retailer The Works suffers ransomware attack leading to store closures

US judge sentences men for $1.5 million Apple Gift Card scam

US Schools Prepare for Potential Cyberthreat from Russia

Utilizing biological algorithms to detect cyber attacks

WhatsApp Users Beware: New Phishing Campaign Imitates App's Voice Message Feature

Zyxel releases patches for critical vulnerability that allows firewall and VPN hijacks

04/04

Activist Admits Shutting Down California County's Website

Apparently, Captcha Bot Was Not Hacked: Discord Scams Were Phishing

Application security market to reach $13.1 billion by 2025

Beastmode DDoS Botnet Exploiting New TOTOLINK Bugs to Enslave More Routers

BlackGuard Password Stealing Malware Being Sold on Russian Hacking Forums

Borat RAT, a new RAT that performs ransomware and DDoS attacks

Borat RAT malware: a 'unique' triple threat that is far from funny

Brokenwire Hack Could Let Remote Attackers Disrupt Charging for Electric Vehicles

Cadbury Warns of Easter Egg Scam

China's Data Laws and Impact on the Automotive Industry

Data Breach Alert: Emma - The Sleep Company

Differences Between Small and Large Healthcare Organizations on Security

Emma Sleep Company admits checkout cyber attack

Endpoint Security: Why It’s Essential Now More Than Ever

Englewood Health Files Notice of Recent Data Breach

Experts discovered 15-Year-Old vulnerabilities in the PEAR PHP repository

Experts Shed Light on BlackGuard Infostealer Malware Sold on Russian Hacking Forums

FIN7 Evolves With New Malware, Initial Access Tactics

FIN7 hackers evolve toolset, work with multiple ransomware gangs

Food Delivery Leak Unmasks Russian Security Agents

GDPR Update – US and EEA May Have a Deal for “Privacy Shield 2.0”

Hackers breach MailChimp's internal tools to target crypto customers

Hive ransomware gang strikes Indonesian gas giant PGN

Honda’s Keyless Access Bug Could Let Thieves Remotely Unlock and Start Vehicles

How Internet Censorship Affects You – Pros and Cons

How secure is your data - hacked firm fined £98,000 – could you be next?

Increase in Cyber-Attacks Leads to Influx of New Reporting Obligations

Industries Most Affected By Ransomware Attacks In February

IoT Devices: An Advantage or Being Taken Advantage of?

Japanese Confectionary Morinaga Disclosed Data Breach

Keep your smart home devices out of the hands of hackers

Lapsus Teen Suspects Have their Day in Court

LockBit Victim, Atento Lost $42 Million To Ransomware Attack

Mainframe still powering critical business operations

Multiple Hacker Groups Capitalizing on Ukraine Conflict for Distributing Malware

Nearly all businesses hit by IT downtime last year - here's what's to blame

New and less known cybersecurity risks you should be aware of

New report identifies the biggest cyber threats to businesses

NFT Discord Channels Are Being Attacked By Hackers Looking To Steal Cryptocurrency

Nordex hacked: Wind turbine giant shuts down IT systems globally

Notorious hacking group FIN7 adds ransomware to its repertoire

Part 2 of BakerHostetler’s Countdown to CPRA - Top 5 FAQs to Evaluate Compliance Strategy for Employees

Phishing Attacks, Email Security Incidents Hit 3 Healthcare Orgs

Privacy Peril: We Don’t Talk About CISA (enough)

Protecting your medical practice from a devastating cyberattack

Record High Ransomware Payouts in 2021 as Extortion Evolves

Researchers Uncover New Android Spyware With C2 Server Linked to Turla Hackers

Scottish Power Parent Company Hit by Data Breach

SEC Proposes Rules to Include Certain Significant Market Participants as “Dealers” or “Government Securities Dealers”

Security flaws found in 82% of public sector software applications

Securities Industry and Financial Markets Association (“SIFMA”) After-Action Report on Quantum Dawn VI Cybersecurity Exercise

The challenges of consumer data and PII usage

The CISO as brand enabler, customer advocate, and product visionary

This creepy new Android malware records your audio and tracks your location

To Pay or Not to Pay: Five Critical Approaches to Beating a Ransomware Threat

Top 10 Ransomware Trends: Board Responsibilities, Tracking Ransomware, and Mitigating Risk in 2022

Trezor Customers Phished After MailChimp Compromise

Turkey seeks 40,000-year sentences for alleged cryptocurrency exit scammers

VMware patches Spring4Shell RCE flaw in multiple products

Vulnerabilities and cyberattacks that marked the year 2021

War, fear, ‘hacktivist’ zeal are upending energy cybersecurity

What Is a Zero-Click Attack?

03/04

Amazon scam threatens to permanently lock your account and it’s easy to be fooled

Be wary of scammers out to get your personal details

Beware: This Fake BAYC Metaverse Land NFT Exploits OpenSea Bug

China-linked APT Deep Panda employs new Fire Chili Windows rootkit

Fake Trezor data breach emails used to steal cryptocurrency wallets

Ledger May Be Secure but Not Private, According to Its Privacy Policy

New Borat remote access malware is no laughing matter

Partnership Healthplan of California Data Breach Possibly One of the Largest in Health Care

Replay attacks allow hackers to eavesdrop on you — how to prevent them

Scammers steal millions by offering fake jobs to university students

State-run health insurance exchange failed to prevent breaches of CT residents’ data, audit finds

Trezor Customers Targeted with Phishing Scam

Trezor wallets hacked? Don’t be duped by phishing attack email

US claims South Africa targeted in Russia’s global hack attack campaigns

Why Your Enterprise Needs FIDO Authentication Technology

NEWS: Março (27/03 - 02/04) - 13 Semana de 2022