NEWS: Abril (03/04 - 09/04) - 14 Semana de 2022
Cyber Security and Information Security News - Daily Updates !!

09/04
7 Benefits of Using AI for Cybersecurity
76% of firms suffered data loss in 2021- report
Accounts deceivable: Email scam costliest type of cybercrime, worse than ransomware
Ballad Health announces possible medical data breach following review
Bank of Ireland fined €463,000 over the corruption of information
Beware: Hackers Impersonate WeTransfer to Steal Data
Email scams siphon untold billions from economy
Fortuna reports suspicious Russian cyberattacks
Hackers use Conti's leaked ransomware to attack Russian companies
Microsoft seized Russian domains targeting Ukrainian media organizations
New Android banking malware remotely takes control of your device
Quick check to make sure no one is spying on your computer
TD Canada scam targets some residents in Mississauga and Brampton
Twitter scammers hack verified accounts to promote a fake Azuki NFT airdrop
What Are The Types Of IT Infrastructure Security?
Your digital footprints not only hurt privacy but also affect cybersecurity
08/04
18% of the top 99 insurance carriers have a high susceptibility to ransomware
A look at what’s new in cybersecurity
April 2022 Patch Tuesday forecast: Spring is in the air (and vulnerable)
AWS Lambda sees its first malware attack with Denonia, and we don’t know how it got there
Big Hacks: 5 Health Data Breaches Affect 1.2 Million
Cash App data breach could have impacted more than 8 million users
China-backed hackers targetted power stations in Ladakh through compromised IP cameras
Consumer fraud tripled in the last two years
Data Breach Alert: DialAmerica Marketing, Inc
Don’t get tricked by this phishing campaign that targets WhatsApp users
EMC National Life Company Data Breach Notice
Expect the Ukraine war’s cyber fallout to spread
FIN7 hacking group member sentenced to five years behind bars
Finland Government Sites Forced Offline by DDoS Attacks
Global Supply Chain Attacks Surge 51% in H2 2021
Google removes apps for secretly copying phone numbers
Hackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet Malware
Hamas Hackers Posing as Women to Con Snr Israeli Officials into Installing Malware
Hydra criminal forum seized and shuttered
Insurance industry being ravaged by high rate of cyberattacks
ISC2Events: Supply Chain Security is a Multifaceted Challenge
Microsoft: Nearly All Russian State Actors Now Targeting Ukraine
Microsoft Obtains Court Order to Take Down Domains Used to Target Ukraine
Mirai malware now delivered using Spring4Shell exploits
National Cybersecurity Strategies Are Under Pressure and Innovation Remains Key to Protection
Network intrusion detections skyrocketing
North Carolina prohibits agencies from paying ransoms
Organizations underestimating the seriousness of insider threats
Patient data stolen ahead of East Tennessee Children’s Hospital attack, outage
Ransomware payments hit new records in 2021 as dark web leaks climbed - report
Raspberry Pi just made a big change to boost security
Redefining Ransomware – Why Confronting Cybercrime Starts With a War of Words
Researchers Connect BlackCat Ransomware with Past BlackMatter Malware Activity
San Ramon Based CMG Mortgage Reports Security Incident
Shopify faces fresh class-action lawsuit over 2020 Ledger data breach
Steady rise in severe web vulnerabilities
SuperCare Health California Data Breach Notice Issued
The future of cyber risk management – predicting breaches
The importance of understanding cloud native security risks
Toei Animation Hack Was a Targeted Ransomware Virus
Toei Animation Hack Was Ransomware Attack
Toei Animation Was Victim Of A Ransomware Attack
Ukraine and the increased need for cyber security
Ukrainian FIN7 Hacker Gets 5-Year Sentence in the United States
Using Google's Chrome browser? This new feature will help you fix your security settings
Utah Consumer Privacy Act: What Businesses Need to Know
Was your data compromised? About 1,100 members SummaCare affected
YouTube Fraudsters Steal $1.7m in Crypto 'Giveaway'
07/04
86% of developers don’t prioritize application security
A DPO's Guide to Delivering a Cybersecurity Awareness Program
Android apps with 45 million installs used data harvesting SDK
Bearded Barbie hackers catfish high ranking Israeli officials
BlackCat Ransomware Targets Industrial Companies
Broader investment in cybersecurity beginning to pay dividends
CrowdStrike, Mandiant announce 'strategic partnership'
Cybercriminals on Discord: Discovering developing threats
Cybercriminals taking advantage of the Ukraine crisis to create charity donation scams
Employee Info Among 13 Million Records Leaked by Fox News
FBI Shut Down Russia-linked "Cyclops Blink" Botnet That Infected Thousands of Devices
Fintech platform flaw could have allowed bank transfers, exposed data
Half of Security Leaders Consider Quitting Due to Stress
Hamas-linked Hackers Targeting High-Ranking Israelis Using 'Catfish' Lures
How many steps does it take for attackers to compromise critical assets?
Into the Breach: Breaking Down 3 SaaS App Cyber Attacks in 2022
Israeli officials are being catfished by APT-C-23 hackers
Java Spring4Shell flaw exploit attempts: These are the industries most affected
Malicious Android apps found masquerading as legitimate antivirus tools
Over 8 million Cash App users possibly affected by data breach from a former employee
Paying ransom doesn’t guarantee data recovery
Potential data breach after hackers target Yorkshire housing company
Researchers Uncover How Colibri Malware Stays Persistent on Hacked Systems
Salt Security Details FinTech Firm’s API Security Breach
SEC Proposes New Rules for Cybersecurity Incident Reporting
Server-Side Request Forgery (SSRF) Flaw in Fintech Platform Allowed for Compromise of Bank Accounts
SharkBot Banking Trojan Resurfaces On Google Play Store Hidden Behind 7 New Apps
State Department Establishes Bureau of Cyberspace & Digital Policy
SuperCare Health Data Breach Impacts 318K
Suspected Chinese hackers are targeting India's power grid
The Cyclops Blink botnet has been disrupted
The latest salary trends in the global DevOps industry
US Action Disrupts Russian Botnet Cyclops Blink
Utah Becomes Fourth State to Enact a Comprehensive Data Privacy Law
VMware warns of critical remote code execution bug in Workspace ONE Access
Zoom awarded $1.8 million in bug bounty rewards over 2021
06/04
3 Examples of Telephone Scammers and Online Identity Theft
63% of organizations paid the ransom last year
Almost a Fifth of Global Firms Targeted with Spring4Shell
Anonymous Affiliate NB65 Breach State-Run Russian Broadcaster; Leak 786GB of Data
Audit of the Connecticut Health Insurance Exchange Uncovers 44 Unreported Data Breaches
Australian cybercrime on the rise in 2022
Bank of Ireland could face civil cases after 47,000 customers hit by data breach
Bernards Township School District Writes Parents About Data Breach
Block Admits Data Breach Involving Cash App Data Accessed by Former Employee
Block Warns Eight Million Customers of Insider Breach
CaptureRx Data Breach $4.75M Class Action Settlement
Cloud Services Are Increasingly Exploited for Command and Control in Cyber Espionage Operations
Data breach at Christie Clinic, lawyer gives tips on identity theft
Data Centers Hold The World’s Most Valuable Resource: How To Keep These Assets Secure
Department of Justice (DoJ) takes down Russian botnet that targeted WatchGuard and Asus routers
Developers do not view application security as a top priority, study finds
Electric Vehicle Chargers Hacked to Show Porn
Fake Android shopping apps steal bank account logins, 2FA codes
Fined for watching too much porn? Cybersecurity watchdog warns about intricate phishing scam
Google increases its bug bounty for Fitbit and Nest security flaws
Greek Post Restarts Services After Cyber-Attack Downs System
Hackers Distributing Fake Shopping Apps to Steal Banking Data of Malaysian Users
Hackers Hit Email Marketing Giant Mailchimp, Access Crypto Wallets' Data
Housing associations hacked, ID proofs and bank details on the street
How to Secure Your Remote Work Environment from Cybersecurity Threats
Is your cyber resilience strategy fit for purpose?
IT Leaders Say Employees Not Fully Prepared for Cyberattacks
Malaysians encounter most social engineered scams
Microsoft asks bug hunters to probe on-premises Exchange, SharePoint servers
NFT Security Risks: Old Scams and New Tricks
Prioritizing cybersecurity training during the onboarding process
Ransomware still demands a proactive approach to security
Satélite sofreu ataque hacker durante a guerra entre Rússia e Ucrânia
SBI Bank customers beware! New fake SBI Yono SMS can steal your money
Seattle Health Center Discovers Additional Data Stolen During June Breach
Shutterfly Employee Data Breach in Attack by Conti Ransomware Group
South African and US Officers Swoop on Fraud Gang
Texas Dept. of Insurance Data Breach Affected 1.8M People
The Works closes stores after cyberattack
This new malware targets AWS Lambda environments
Thousands Of Indians Exposed In Data Breach Affecting Money Lending App CashMama
U.S. sanctions crypto-exchange Garantex for aiding Hydra Market
UK retail chain The Works shuts down stores after cyberattack
Ukraine-related Phishing Emails Up More than 200%
Vevo to ‘review’ security after YouTube feeds for Lil Nas X, Justin Bieber, and others were hacked
Why Supply Chain Woes Mean The Shipping Industry Needs Increased Cybersecurity
05/04
49% of small medical practices don’t have a cyberattack response plan
Another Log4Shell? Not Quite-But Spring4Shell is Serious
Bank had no firewall license, intrusion or phishing protection – guess the rest
C-Suite & Data Breach – The Minacious Combo
CISA Warns of Active Exploitation of Critical Spring4Shell Vulnerability
Class-action lawsuit filed following Logan Health data breach
Cumbrian businesses warned to protect against cyber attacks
Email security firm reports surge in Ukraine invasion phishing scams
Fake versions of real smartphone apps are being used to spread malware. Here's how to stay safe
Germany Shuts Down Russian Hydra Darknet Market; Seizes $25 Million in Bitcoin
Global APT Groups Use Ukraine War for Phishing Lures
Hackers Breach Mailchimp Email Marketing Firm to Launch Crypto Phishing Scams
Hackers breached Mailchimp to target crypto holders
Hacking DICOM: the hospital standard
Healthcare cybersecurity to serve as the backbone for digital transformation
How Data Breaches Are Affecting People Who Donate to Charity
Hybrid threat model: Watch out for the unhappy employee
Kaspersky shows how scammers create fake pages using phishing kits
Log4Shell exploitation: Which applications may be targeted next?
Mailchimp Data Breach – Here’s What You Need to Know
New Data Finds Phishing Attacks Could Impact 82% of the Largest Insurance Carriers
New Russian Android Malware Tracks GPS Location and Spies on Victims
Police issue warning over bank scam in Sussex
Privilege Escalation Attacks: What it is, How it Happens and Examples
Researchers Trace Widespread Espionage Attacks Back to Chinese 'Cicada' Hackers
Retailer The Works Closes Stores After Cyber-Attack
Russia/Ukraine-themed War Docs are now a Popular Cyber-lure
SandRidge Energy, LLC Files Notice of Recent Data Breach
Saskatchewan Liquor and Gaming Authority (SLGA) dealing with information breach
Shopify facing another lawsuit from crypto holders over Ledger data breach
Sophisticated phishing attacks steal Trezor’s hardware wallets
SpringShell attacks target about one in six vulnerable orgs
State Bank Of India (SBI) Customers Receiving Phishing SMS
That WhatsApp voice message may be a phishing scam
The Role of Cloud-Based Identities in Cloud Security
The Works forced to shut some shops after cyber-attack
These fearsome malware can be bought for a pittance
These ten hacking groups have been targeting critical infrastructure and energy
Traditional identity fraud losses soar, totalling $52 billion in 2021
UK government publishes annual Cyber Security Breaches Survey
UK retailer The Works suffers ransomware attack leading to store closures
US judge sentences men for $1.5 million Apple Gift Card scam
US Schools Prepare for Potential Cyberthreat from Russia
Utilizing biological algorithms to detect cyber attacks
WhatsApp Users Beware: New Phishing Campaign Imitates App's Voice Message Feature
Zyxel releases patches for critical vulnerability that allows firewall and VPN hijacks
04/04
Activist Admits Shutting Down California County's Website
Apparently, Captcha Bot Was Not Hacked: Discord Scams Were Phishing
Application security market to reach $13.1 billion by 2025
Beastmode DDoS Botnet Exploiting New TOTOLINK Bugs to Enslave More Routers
BlackGuard Password Stealing Malware Being Sold on Russian Hacking Forums
Borat RAT, a new RAT that performs ransomware and DDoS attacks
Borat RAT malware: a 'unique' triple threat that is far from funny
Brokenwire Hack Could Let Remote Attackers Disrupt Charging for Electric Vehicles
Cadbury Warns of Easter Egg Scam
China's Data Laws and Impact on the Automotive Industry
Data Breach Alert: Emma - The Sleep Company
Differences Between Small and Large Healthcare Organizations on Security
Emma Sleep Company admits checkout cyber attack
Endpoint Security: Why It’s Essential Now More Than Ever
Englewood Health Files Notice of Recent Data Breach
Experts discovered 15-Year-Old vulnerabilities in the PEAR PHP repository
Experts Shed Light on BlackGuard Infostealer Malware Sold on Russian Hacking Forums
FIN7 Evolves With New Malware, Initial Access Tactics
FIN7 hackers evolve toolset, work with multiple ransomware gangs
Food Delivery Leak Unmasks Russian Security Agents
GDPR Update – US and EEA May Have a Deal for “Privacy Shield 2.0”
Hackers breach MailChimp's internal tools to target crypto customers
Hive ransomware gang strikes Indonesian gas giant PGN
Honda’s Keyless Access Bug Could Let Thieves Remotely Unlock and Start Vehicles
How Internet Censorship Affects You – Pros and Cons
How secure is your data - hacked firm fined £98,000 – could you be next?
Increase in Cyber-Attacks Leads to Influx of New Reporting Obligations
Industries Most Affected By Ransomware Attacks In February
IoT Devices: An Advantage or Being Taken Advantage of?
Japanese Confectionary Morinaga Disclosed Data Breach
Keep your smart home devices out of the hands of hackers
Lapsus Teen Suspects Have their Day in Court
LockBit Victim, Atento Lost $42 Million To Ransomware Attack
Mainframe still powering critical business operations
Multiple Hacker Groups Capitalizing on Ukraine Conflict for Distributing Malware
Nearly all businesses hit by IT downtime last year - here's what's to blame
New and less known cybersecurity risks you should be aware of
New report identifies the biggest cyber threats to businesses
NFT Discord Channels Are Being Attacked By Hackers Looking To Steal Cryptocurrency
Nordex hacked: Wind turbine giant shuts down IT systems globally
Notorious hacking group FIN7 adds ransomware to its repertoire
Phishing Attacks, Email Security Incidents Hit 3 Healthcare Orgs
Privacy Peril: We Don’t Talk About CISA (enough)
Protecting your medical practice from a devastating cyberattack
Record High Ransomware Payouts in 2021 as Extortion Evolves
Researchers Uncover New Android Spyware With C2 Server Linked to Turla Hackers
Scottish Power Parent Company Hit by Data Breach
Security flaws found in 82% of public sector software applications
The challenges of consumer data and PII usage
The CISO as brand enabler, customer advocate, and product visionary
This creepy new Android malware records your audio and tracks your location
To Pay or Not to Pay: Five Critical Approaches to Beating a Ransomware Threat
Top 10 Ransomware Trends: Board Responsibilities, Tracking Ransomware, and Mitigating Risk in 2022
Trezor Customers Phished After MailChimp Compromise
Turkey seeks 40,000-year sentences for alleged cryptocurrency exit scammers
VMware patches Spring4Shell RCE flaw in multiple products
Vulnerabilities and cyberattacks that marked the year 2021
War, fear, ‘hacktivist’ zeal are upending energy cybersecurity
03/04
Amazon scam threatens to permanently lock your account and it’s easy to be fooled
Be wary of scammers out to get your personal details
Beware: This Fake BAYC Metaverse Land NFT Exploits OpenSea Bug
China-linked APT Deep Panda employs new Fire Chili Windows rootkit
Fake Trezor data breach emails used to steal cryptocurrency wallets
Ledger May Be Secure but Not Private, According to Its Privacy Policy
New Borat remote access malware is no laughing matter
Partnership Healthplan of California Data Breach Possibly One of the Largest in Health Care
Replay attacks allow hackers to eavesdrop on you — how to prevent them
Scammers steal millions by offering fake jobs to university students
State-run health insurance exchange failed to prevent breaches of CT residents’ data, audit finds
Trezor Customers Targeted with Phishing Scam