NEWS: Abril/Maio (25/04 - 01/05) - 17 Semana de 2021

01/05

345,000 sensitive legal documents from the PH government have been exposed online - Rappler Philippines

Contact Tracing Data Breach Being Investigated - WCCS Radio

‘ParkMobile’ Data Stolen Two Weeks Ago Now Offered for Purchase Online - TechNadu

The age of cyber warfare is a threat to us all - Spectator Australia

Use This Handy Site to Find Out if You've Been Affected by a Data Breach - Make Use Of

Virgin Active cyber attack results in freeze of online systems - EWN

30/04

AI can alter geospatial data to create deepfake geography - Help Net Security

APIs in the insurance industry: Accessing a growing world of data - Help Net Security

Australia's eSafety and the uphill battle of regulating the ever-changing online realm - ZDNet

British Prime Minister’s Cell Phone Number Exposed - InfoSecurity

Codecov starts notifying customers affected by supply-chain attack - Bleeping Computer

Contact Tracing Data Breach Exposed Personal Data For Over 72K Pennsylvanians - WSKG

DC Officer Info Leaked Online by Ransomware Group: Report - InfoSecurity

FiveHands Ransomware Seen to be Exploiting SonicWall--Similar to 'HelloKitty' Ransomware? - TechTimes

Hackers extend deadline for PN data leak by one further week - Times Of Malta

How to check if your data has been exposed in a data breach? - One India

ISC urges updates of DNS servers to wipe out new BIND vulnerabilities - ZDNet

Kaspersky spots CIA malware with backdoor capabilities - HackRead

Lack of visibility into IT assets impacting security priorities - Help Net Security

Maryland Ortho Practice Data Breach Exposes Over 125,000 People - Orthopedics This Week

Microsoft Warns of 25 Critical Vulnerabilities in IoT, Industrial Devices - ThreatPost

Mobile Operators and Ofcom Warn of Scam DHL and FedEx Text - ISP Preview

Njalla-Controlled Domains Strangely Changed Hands - TechNadu

Online fraud: SBI, ICICI Bank, Punjab National Bank caution customers - Money Control

Paleo Lifestyle Site Found Leaking PII on 70,000 Users - InfoSecurity

Password firm blames customers for posting advisories on social media - ITWire

Passwordstate Warns of Ongoing Phishing Attacks Following Data Breach - The Hacker News

Ransomware extortionists threaten to sell personal information of Whistler "people" on the dark web - Straight

Ransomware is now a national security risk. This group thinks it knows how to defeat it - ZDNet

Ransomware victims urged to go to police - BBC

Researchers develop program that helps assess encryption systems’ vulnerabilities - Help Net Security

SAP admits to ‘thousands’ of illegal software exports to Iran - ZDNet

Shedding light on the threat posed by shadow admins - Help Net Security

Suspected Chinese state hackers target Russian submarine designer - Bleeping Computer

Tesla cars can be remotely hacked using drone, WIFI dongle - HackRead

The most famous Chinese cyberattacks - The Week

TRB’s Registration Database Hacked in Ransomware Attack - Transport Topics

WeSteal: A ‘shameless’ cryptocurrency stealer sold in the underground - ZDNet

What happened to data privacy? - Global Banking & Finance Reviews

Your stolen ParkMobile data is now free for wannabe scammers - Bleeping Computer

29/04

48 recommendations for a global fight against ransomware - Help Net Security

Babuk ransomware readies 'shut down' post, plans to open source malware - Bleeping Computer

Brazil's Rio Grande do Sul court system hit by REvil ransomware - Bleeping Computer

Cancer Patients Diverted After Cyber-Attack on MedTech Firm - InfoSecurity

Click Studios asks customers to stop tweeting about its Passwordstate data breach - TechCrunch

Critical vulnerability in PH National ID System fixed - Manila Bulletin

Data breach at DigitalOcean exposes customer billing profiles - Computing UK

DoppelPaymer Gang Leaks Files from Illinois AG After Ransom Negotiations Break Down - ThreatPost

Drop in ransomware targeting Thai, other Southeast Asian businesses - The Star

Emotet Group Harvested Over 4.3 Million Victim Emails - InfoSecurity

Experian Has Exposed Tens of Millions of Credit Scores Due to an API Bug - TechNadu

First Horizon Bank Customers Have Account Funds Drained - InfoSecurity

Flubot malware using SMS messages to infect devices - Enterprise Times

Government and industry look to cryptocurrency regulation to slow ransomware - ITPro

Homeland Security Secretary Backs Call for Mandatory Disclosure of Ransomware Payments - NextGov

How to Conduct Vulnerability Assessments: An Essential Guide for 2021 - The Hacker News

Jailbreak or Jail – Is Hacking for the Government A Crime? - Security Boulevard

Paleohacks data leak exposes customer records, password reset tokens - ZDNet

‘Paleohacks’ Has Exposed the PII of 70,000 of Its Customers - TechNadu

PayPal phishing text sparks warning to people selling online - Grimsby Telegraph

Pa (Pennsylvania Department of Health) contact tracing data breach may have leaked personal information of 72,000 residents - Philly Voice

QNAP warns of AgeLocker ransomware attacks on NAS devices - Bleeping Computer

Ransomware gang Babuk claims DC’s Metropolitan Police was last caper – then goes dark - SC Magazine

RotaJakiro: A Linux backdoor that has flown under the radar for years - ZDNet

'Serious data breach' after man receives police email with sensitive information on pupils - ITV

The Challenge of Securing Non-People Identities - Dark Reading

UC Berkeley provides guidelines for Social Security leaks on dark web - The Daily California

Urgent-response type phishing attack hits Office 365 emails - Windows Report

US DoJ to Combat Ransomware Crypto Attacks - Coin Journal

Whistler resort municipality hit by new ransomware operation - Bleeping Computer

White House Asked to Increase Crypto Regulation - InfoSecurity

White House Urged to Address Surge in Ransomware Attacks - Bloomberg

28/04

Android Malware ‘FluBot’ Appears to Be Unstoppable Now - TechNadu

Apple patches macOS Gatekeeper bypass vulnerability exploited in the wild - ZDNet

Average ransomware costs have more than doubled in 2021 - ITPro

Average Ransomware recovery cost in the UAE is US $517,961 in 2021, Sophos survey shows - Zawya

Cyberspies target military organizations with new Nebulae backdoor - Bleeping Computer

Data breaches and cyber attacks quarterly review: Q1 2021 - ITPro

Developer of AI Chatbot Service Fined for Massive Personal Data Breach - The Korea Bizwire

DigitalOcean data breach exposes customer billing information - Bleeping Computer

Financial services firm First Horizon suffers data breach with customer funds stolen - Silicon Angle

Global Travel Service Website Fined for Regulatory Compliance Violation Following a Data Breach - Industry Analysts

Hackers Leak Files on D.C. Cops in Extortion Attempt - Daily Beast

If you use this popular messaging app, beware this Trojan that’s stealing private data - BGR

Linux kernel vulnerability exposes stack memory, causes data leaks - ZDNet

Merseyrail likely hit by Lockbit ransomware attack - Information Age

Minneapolis parking app users notified of March data breach - Fox9

Musical instrument marketplace Reverb suffers data breach - The Daily Swig

New stealthy Linux malware used to backdoor systems for years - Bleeping Computer

Office 365 compromise likely led to Merseyrail ransomware attack - Computer Weekly

Passwordstate hackers phish for more victims with updated malware - Bleeping Computer

Patient represented by Philadelphia law firm sues Einstein over 2020 data breach - Philadelphia Business Journal

Ransomware attack hits Washington, D.C. police department - TechRepublic

Scammers imitate Windows logo with HTML tables to slip through email gateways - SC Magazine

Scottish social care organisation falls victim to ransomware gang - Future Scot

Sensitive source codes exposed in Microsoft Azure Blob account leak - HackRead

SMS phishing scam lures Rogers customers with outage refunds - Bleeping Computer

The Operator of the ‘Bitcoin Fog’ Crypto Mixing Platform Arrested in the US - TechNadu

UK rail network Merseyrail likely hit by Lockbit ransomware - Bleeping Computer

27/04

16% of mobile devices in developing markets now infected with malware - Help Net Security

Apple patches macOS zero-day exploited by malware for months (CVE-2021-30657) - Help Net Security

Are you sure about the safety of that QR code? - Best GamingPro

Audit finds human error likely cause of Vt. data breach - Wcax

Babuk Ransomware Actors Compromised Washington D.C. Police’s Systems - TechNadu

BigBasket data breach: Hackers leak sensitive information of more than 20 million users online - CNBC

D.C. Police Department Victim Of Apparent Ransomware Attack - Wyoming Public Media

DC police department reports 'unauthorized access' on its server - EyeWitness News

FBI: Russian hackers are still trying to break into networks, here's how to protect yours from attack - ZDNet

FBI shares 4 million email addresses used by Emotet with Have I Been Pwned - Bleeping Computer

Google data breach: Will you be eligible for £750 payout? Can you claim yet? - Express

Hackers want €5,000 for hacked PN data before Thursday deadline - Malta Today

If you use this popular password manager, all of your passwords may have been stolen - BGR

Metro Police in Washington, D.C., hit by ransomware attack - UPI

Online Music Marketplace Suffers Data Breach - InfoSecurity

Password-stealing spyware targets Android users in the UK - TechRepublic

Phishing Attackers Exploited Zoom, eBay & Streaming Services in 2020 - MSSP Alert

Phishing attacks target Chase Bank customers - TechRepublic

Ransomware extortion demands are growing, and so is the downtime caused by attacks - ZDNet

Ransomware Group Threatens DC Cops with Informant Data Leak - InfoSecurity

Researcher Found Bug That Allowed Malware to Bypass macOS Security - TechNadu

Russian language ransomware group claims responsibility for DC police hack: report - FOX 5 DC

Smishing: Why Text-Based Phishing Should Be on Every CISO’s Radar - ThreatPost

Telegram targeted by new remote access Trojan ToxicEye - TechGenix

Threat Actors Impersonate Chase Bank - InfoSecurity

UnitingCare Queensland hit by ransomware attack - Technology Decisions

UC data breach leaks students’ personal information to dark web - Daily Californian

Would you know if your organisation had suffered a data breach? - IT Governance

26/04

3.2 Billion Leaked Passwords Contain 1.5 Million Records with Government Emails - The Hacker News

61% of organizations impacted by ransomware in 2020 - Help Net Security

AI industry alarmingly unprepared for real-world attacks - Help Net Security

Amazon warning: 'AirPods' scam text may empty Britons’ bank account - 'do NOT click link!' - Express UK

Alert! Apple's AirDrop comes with a security flaw that can cause data breach of 1.5 billion users - Zee News

Are you a ShopBack user? Find out if your account was affected by data breach - The Star

Australian man sentenced for running stolen subscription credential service - ZDNet

Avaddon Ransomware Group Hit the Small Italian Municipality of Villafranca d’Asti - TechNadu

Big Basket data breach: email IDs, phone numbers, home addresses of two crore Indians allegedly leaked on the web - Business Insider India

Connected medical devices brought security loopholes mainstream - Help Net Security

Cyber-attack on NBA Team - InfoSecurity

Facebook Anticipating Legal Action From Data Leak, EU Digital Privacy Group Preparing Mass Action Lawsuit - CPO Magazine

Facebook dismisses 2nd Data Breach in 3 months as “regular activity” - TechJuice

Hacker Group Mysteriously Removes Stolen Apple Schematics and Extortion Threat From Ransomware Website - Mac Rumors

Healthcare Industry Cyberattacks Continue - Pymnts

HowTo: Protect Your Employees from Data Loss - InfoSecurity

iPhone Users Could Be Eligible For £750 Each Over Google Data Breach - LADBible

LinkedIn Attacks Show Dangers of Professional Networking - Security Boulevard

Messaging app used to control and distribute malware - Security Brief

Microsoft Defender now blocks cryptojacking malware using Intel TDT - Bleeping Computer

Officials say school district near Albany hit by cyberattack - Wral

Push past zero trust barriers to securely connect the distributed workforce - Help Net Security

Qlocker ransomware gang is using 7zip utility to lock files on QNAP devices - Computing UK

QNAP NAS devices under ransomware attack - Help Net Security

Queensland hospitals and aged care facilities crippled by cyber attack - 9News

Ransomware gang mysteriously drops threat to leak Apple MacBook data - TechRadar Pro

Resurgence of scam targeting bank customers who are told their accounts have been suspended: Police - The Straits Times

Space Command to Launch Dedicated Cyber Center - InfoSecurity

This password-stealing Android malware is spreading quickly: Here's what to watch out for - ZDNet

U.K. Launches Free Cybersecurity Training for School Teachers and Staff - Homeland Security

US warns of Russian state hackers still targeting US, foreign orgs - Bleeping Computer

25/04

Beware of cybercriminals using Telegram to distribute malware, Check Point says - Israel Defense

Big Basket Data Breach: Hacker Group Shiny Hunters Claims to Leak User Database of Online Indian Grocery Delivery Service - Latest LY

‘Big Basket’ Data Now Shared by “ShinyHunters” on Hacker Forums for Free - TechNadu

Emotet malware nukes itself today from all infected computers worldwide - Bleeping Computer

Hacker leaks 20 million alleged BigBasket user records for free - Bleeping Computer

Learning lessons from the Apple ransomware incident - Digital Journal

Qlocker Ransomware Earned Over $260,000 by Encrypting Vulnerable QNAP NAS Devices - TechDator

ShopBack Data Breach: How To Find Out If Your Account Is Affected - Lowyat

What Is Cybercrime as a Service? - Make Use Of