NEWS: Abril/Maio (25/04 - 01/05) - 17 Semana de 2021

01/05
345,000 sensitive legal documents from the PH government have been exposed online - Rappler Philippines
Contact Tracing Data Breach Being Investigated - WCCS Radio
‘ParkMobile’ Data Stolen Two Weeks Ago Now Offered for Purchase Online - TechNadu
The age of cyber warfare is a threat to us all - Spectator Australia
Use This Handy Site to Find Out if You've Been Affected by a Data Breach - Make Use Of
Virgin Active cyber attack results in freeze of online systems - EWN

30/04
AI can alter geospatial data to create deepfake geography - Help Net Security
APIs in the insurance industry: Accessing a growing world of data - Help Net Security
Australia's eSafety and the uphill battle of regulating the ever-changing online realm - ZDNet
British Prime Minister’s Cell Phone Number Exposed - InfoSecurity
Codecov starts notifying customers affected by supply-chain attack - Bleeping Computer
Contact Tracing Data Breach Exposed Personal Data For Over 72K Pennsylvanians - WSKG
DC Officer Info Leaked Online by Ransomware Group: Report - InfoSecurity
FiveHands Ransomware Seen to be Exploiting SonicWall--Similar to 'HelloKitty' Ransomware? - TechTimes
Hackers extend deadline for PN data leak by one further week - Times Of Malta
How to check if your data has been exposed in a data breach? - One India
ISC urges updates of DNS servers to wipe out new BIND vulnerabilities - ZDNet
Kaspersky spots CIA malware with backdoor capabilities - HackRead
Lack of visibility into IT assets impacting security priorities - Help Net Security
Maryland Ortho Practice Data Breach Exposes Over 125,000 People - Orthopedics This Week
Microsoft Warns of 25 Critical Vulnerabilities in IoT, Industrial Devices - ThreatPost
Mobile Operators and Ofcom Warn of Scam DHL and FedEx Text - ISP Preview
Njalla-Controlled Domains Strangely Changed Hands - TechNadu
Online fraud: SBI, ICICI Bank, Punjab National Bank caution customers - Money Control
Paleo Lifestyle Site Found Leaking PII on 70,000 Users - InfoSecurity
Password firm blames customers for posting advisories on social media - ITWire
Passwordstate Warns of Ongoing Phishing Attacks Following Data Breach - The Hacker News
Ransomware extortionists threaten to sell personal information of Whistler "people" on the dark web - Straight
Ransomware is now a national security risk. This group thinks it knows how to defeat it - ZDNet
Ransomware victims urged to go to police - BBC
Researchers develop program that helps assess encryption systems’ vulnerabilities - Help Net Security
SAP admits to ‘thousands’ of illegal software exports to Iran - ZDNet
Shedding light on the threat posed by shadow admins - Help Net Security
Suspected Chinese state hackers target Russian submarine designer - Bleeping Computer
Tesla cars can be remotely hacked using drone, WIFI dongle - HackRead
The most famous Chinese cyberattacks - The Week
TRB’s Registration Database Hacked in Ransomware Attack - Transport Topics
WeSteal: A ‘shameless’ cryptocurrency stealer sold in the underground - ZDNet
What happened to data privacy? - Global Banking & Finance Reviews
Your stolen ParkMobile data is now free for wannabe scammers - Bleeping Computer

29/04
48 recommendations for a global fight against ransomware - Help Net Security
Babuk ransomware readies 'shut down' post, plans to open source malware - Bleeping Computer
Brazil's Rio Grande do Sul court system hit by REvil ransomware - Bleeping Computer
Cancer Patients Diverted After Cyber-Attack on MedTech Firm - InfoSecurity
Click Studios asks customers to stop tweeting about its Passwordstate data breach - TechCrunch
Critical vulnerability in PH National ID System fixed - Manila Bulletin
Data breach at DigitalOcean exposes customer billing profiles - Computing UK
DoppelPaymer Gang Leaks Files from Illinois AG After Ransom Negotiations Break Down - ThreatPost
Drop in ransomware targeting Thai, other Southeast Asian businesses - The Star
Emotet Group Harvested Over 4.3 Million Victim Emails - InfoSecurity
Experian Has Exposed Tens of Millions of Credit Scores Due to an API Bug - TechNadu
First Horizon Bank Customers Have Account Funds Drained - InfoSecurity
Flubot malware using SMS messages to infect devices - Enterprise Times
Government and industry look to cryptocurrency regulation to slow ransomware - ITPro
Homeland Security Secretary Backs Call for Mandatory Disclosure of Ransomware Payments - NextGov
How to Conduct Vulnerability Assessments: An Essential Guide for 2021 - The Hacker News
Jailbreak or Jail – Is Hacking for the Government A Crime? - Security Boulevard
Paleohacks data leak exposes customer records, password reset tokens - ZDNet
‘Paleohacks’ Has Exposed the PII of 70,000 of Its Customers - TechNadu
PayPal phishing text sparks warning to people selling online - Grimsby Telegraph
Pa (Pennsylvania Department of Health) contact tracing data breach may have leaked personal information of 72,000 residents - Philly Voice
QNAP warns of AgeLocker ransomware attacks on NAS devices - Bleeping Computer
Ransomware gang Babuk claims DC’s Metropolitan Police was last caper – then goes dark - SC Magazine
RotaJakiro: A Linux backdoor that has flown under the radar for years - ZDNet
'Serious data breach' after man receives police email with sensitive information on pupils - ITV
The Challenge of Securing Non-People Identities - Dark Reading
UC Berkeley provides guidelines for Social Security leaks on dark web - The Daily California
Urgent-response type phishing attack hits Office 365 emails - Windows Report
US DoJ to Combat Ransomware Crypto Attacks - Coin Journal
Whistler resort municipality hit by new ransomware operation - Bleeping Computer
White House Asked to Increase Crypto Regulation - InfoSecurity
White House Urged to Address Surge in Ransomware Attacks - Bloomberg

28/04
Android Malware ‘FluBot’ Appears to Be Unstoppable Now - TechNadu
Apple patches macOS Gatekeeper bypass vulnerability exploited in the wild - ZDNet
Average ransomware costs have more than doubled in 2021 - ITPro
Average Ransomware recovery cost in the UAE is US $517,961 in 2021, Sophos survey shows - Zawya
Cyberspies target military organizations with new Nebulae backdoor - Bleeping Computer
Data breaches and cyber attacks quarterly review: Q1 2021 - ITPro
Developer of AI Chatbot Service Fined for Massive Personal Data Breach - The Korea Bizwire
DigitalOcean data breach exposes customer billing information - Bleeping Computer
Financial services firm First Horizon suffers data breach with customer funds stolen - Silicon Angle
Global Travel Service Website Fined for Regulatory Compliance Violation Following a Data Breach - Industry Analysts
Hackers Leak Files on D.C. Cops in Extortion Attempt - Daily Beast
If you use this popular messaging app, beware this Trojan that’s stealing private data - BGR
Linux kernel vulnerability exposes stack memory, causes data leaks - ZDNet
Merseyrail likely hit by Lockbit ransomware attack - Information Age
Minneapolis parking app users notified of March data breach - Fox9
Musical instrument marketplace Reverb suffers data breach - The Daily Swig
New stealthy Linux malware used to backdoor systems for years - Bleeping Computer
Office 365 compromise likely led to Merseyrail ransomware attack - Computer Weekly
Passwordstate hackers phish for more victims with updated malware - Bleeping Computer
Patient represented by Philadelphia law firm sues Einstein over 2020 data breach - Philadelphia Business Journal
Ransomware attack hits Washington, D.C. police department - TechRepublic
Scammers imitate Windows logo with HTML tables to slip through email gateways - SC Magazine
Scottish social care organisation falls victim to ransomware gang - Future Scot
Sensitive source codes exposed in Microsoft Azure Blob account leak - HackRead
SMS phishing scam lures Rogers customers with outage refunds - Bleeping Computer
The Operator of the ‘Bitcoin Fog’ Crypto Mixing Platform Arrested in the US - TechNadu
UK rail network Merseyrail likely hit by Lockbit ransomware - Bleeping Computer

27/04
16% of mobile devices in developing markets now infected with malware - Help Net Security
Apple patches macOS zero-day exploited by malware for months (CVE-2021-30657) - Help Net Security
Are you sure about the safety of that QR code? - Best GamingPro
Audit finds human error likely cause of Vt. data breach - Wcax
Babuk Ransomware Actors Compromised Washington D.C. Police’s Systems - TechNadu
BigBasket data breach: Hackers leak sensitive information of more than 20 million users online - CNBC
D.C. Police Department Victim Of Apparent Ransomware Attack - Wyoming Public Media
DC police department reports 'unauthorized access' on its server - EyeWitness News
FBI shares 4 million email addresses used by Emotet with Have I Been Pwned - Bleeping Computer
Google data breach: Will you be eligible for £750 payout? Can you claim yet? - Express
Hackers want €5,000 for hacked PN data before Thursday deadline - Malta Today
If you use this popular password manager, all of your passwords may have been stolen - BGR
Metro Police in Washington, D.C., hit by ransomware attack - UPI
Online Music Marketplace Suffers Data Breach - InfoSecurity
Password-stealing spyware targets Android users in the UK - TechRepublic
Phishing Attackers Exploited Zoom, eBay & Streaming Services in 2020 - MSSP Alert
Phishing attacks target Chase Bank customers - TechRepublic
Ransomware extortion demands are growing, and so is the downtime caused by attacks - ZDNet
Ransomware Group Threatens DC Cops with Informant Data Leak - InfoSecurity
Researcher Found Bug That Allowed Malware to Bypass macOS Security - TechNadu
Russian language ransomware group claims responsibility for DC police hack: report - FOX 5 DC
Smishing: Why Text-Based Phishing Should Be on Every CISO’s Radar - ThreatPost
Telegram targeted by new remote access Trojan ToxicEye - TechGenix
Threat Actors Impersonate Chase Bank - InfoSecurity
UnitingCare Queensland hit by ransomware attack - Technology Decisions
UC data breach leaks students’ personal information to dark web - Daily Californian
Would you know if your organisation had suffered a data breach? - IT Governance

26/04
3.2 Billion Leaked Passwords Contain 1.5 Million Records with Government Emails - The Hacker News
61% of organizations impacted by ransomware in 2020 - Help Net Security
AI industry alarmingly unprepared for real-world attacks - Help Net Security
Amazon warning: 'AirPods' scam text may empty Britons’ bank account - 'do NOT click link!' - Express UK
Alert! Apple's AirDrop comes with a security flaw that can cause data breach of 1.5 billion users - Zee News
Are you a ShopBack user? Find out if your account was affected by data breach - The Star
Australian man sentenced for running stolen subscription credential service - ZDNet
Avaddon Ransomware Group Hit the Small Italian Municipality of Villafranca d’Asti - TechNadu
Big Basket data breach: email IDs, phone numbers, home addresses of two crore Indians allegedly leaked on the web - Business Insider India
Connected medical devices brought security loopholes mainstream - Help Net Security
Cyber-attack on NBA Team - InfoSecurity
Facebook Anticipating Legal Action From Data Leak, EU Digital Privacy Group Preparing Mass Action Lawsuit - CPO Magazine
Facebook dismisses 2nd Data Breach in 3 months as “regular activity” - TechJuice
Hacker Group Mysteriously Removes Stolen Apple Schematics and Extortion Threat From Ransomware Website - Mac Rumors
Healthcare Industry Cyberattacks Continue - Pymnts
HowTo: Protect Your Employees from Data Loss - InfoSecurity
iPhone Users Could Be Eligible For £750 Each Over Google Data Breach - LADBible
LinkedIn Attacks Show Dangers of Professional Networking - Security Boulevard
Messaging app used to control and distribute malware - Security Brief
Microsoft Defender now blocks cryptojacking malware using Intel TDT - Bleeping Computer
Officials say school district near Albany hit by cyberattack - Wral
Push past zero trust barriers to securely connect the distributed workforce - Help Net Security
Qlocker ransomware gang is using 7zip utility to lock files on QNAP devices - Computing UK
QNAP NAS devices under ransomware attack - Help Net Security
Queensland hospitals and aged care facilities crippled by cyber attack - 9News
Ransomware gang mysteriously drops threat to leak Apple MacBook data - TechRadar Pro
Resurgence of scam targeting bank customers who are told their accounts have been suspended: Police - The Straits Times
Space Command to Launch Dedicated Cyber Center - InfoSecurity
This password-stealing Android malware is spreading quickly: Here's what to watch out for - ZDNet
U.K. Launches Free Cybersecurity Training for School Teachers and Staff - Homeland Security
US warns of Russian state hackers still targeting US, foreign orgs - Bleeping Computer

25/04
Beware of cybercriminals using Telegram to distribute malware, Check Point says - Israel Defense
‘Big Basket’ Data Now Shared by “ShinyHunters” on Hacker Forums for Free - TechNadu
Emotet malware nukes itself today from all infected computers worldwide - Bleeping Computer
Hacker leaks 20 million alleged BigBasket user records for free - Bleeping Computer
Learning lessons from the Apple ransomware incident - Digital Journal
Qlocker Ransomware Earned Over $260,000 by Encrypting Vulnerable QNAP NAS Devices - TechDator
ShopBack Data Breach: How To Find Out If Your Account Is Affected - Lowyat
What Is Cybercrime as a Service? - Make Use Of