NEWS: Agosto (07/08 - 13/08) - 32 Semana de 2022
Cyber Security and Information Security News - Daily Updates !! Weekly Review

13/08
A New Jailbreak for John Deere Tractors Rides the Right-to-Repair Wave
A practical approach to building resilience with zero trust
Chinese Hackers Backdoored MiMi Chat App to Target Windows, Linux, macOS Users
Cisco Hacked: Ransomware Gang Claims It Has 2.8GB Of Data
Cybercrime more profitable than illegal drugs
Fighting back against rising rates of cybercrime
Google fined $60 million over Android location data collection
Hackers Using Google Sites and Microsoft Azure to Launch Crypto Phishing Campaigns
Microsoft is criticized by Eclypsium for bootloader security issues
Netskope Discovers Hackers Are Using Google Sites and Microsoft Azure to Steal Crypto
Novant warns patients of data breach; 1.3 million notification letters mailed
Once, Twice, Three Times A Ransomware Victim: Triple-Hacked In Just 2 Weeks
Potential data breach at iPay88 still under probe, says Bank Negara
Russian Hackers Are Escalating and Diversifying Their Attacks on Ukraine, Research Says
Security alert: Researcher gains root access to macOS using Zoom installer
SOVA malware adds ransomware feature to encrypt Android devices
The Chinese Roots of Hybrid Warfare
Toronto cannabis store owner loses 'thousands of dollars' after OCS cyberattack delays deliveries
Updated Android Trojan Features Ransomware Capabilities
WRDSB confirms employee information dating back to 1970 accessed during cyber incident
Your current cybersecurity approach creates systemic vulnerabilities
12/08
14 Emerging And Ongoing Cyberthreats Every Organization Needs To Be Aware Of
Accusoft Corporation Announces Data Breach
ACTS Retirement Services Faces Class Action over Data Breach
Airbnb, Shell, Walmart, Ray-Ban, and MORE: Top Scams and Phishing Schemes of the Week
Almost 2,000 data breaches reported for the first half of 2022
Anonymous poop gifting site hacked, customers exposed
Auto Parts Manufacturer Attacked by Three Different Ransomware in Two weeks
Behavioral Health Group informs 198K patients of data theft from December
Berkshire Partners LLC Announces Data Breach
Beware of crypto 'dusting' hacks; here's everything you need to know
Binance Recovers $450,000 Stolen in Curve Phishing Attack
Central Oregon hospital overpaid employees by $2 million. Now, it wants that money back
Chinese hackers backdoor chat app with new Linux, macOS malware
Cisco Patches High-Severity Vulnerability Affecting ASA and Firepower Solutions
Critical Infrastructure Attacks Remain a Major Threat, Top Security Writer Warns
Cuba ransomware now targeting critical infrastructure
Cyber incident forces Canadian manufacturer to suspend operations
Data security, surveillance practices to be examined by FTC
Eclypsium calls out Microsoft over bootloader security woes
Facebook’s In-app Browser on iOS Tracks ‘Anything You Do on Any Website’
FBI, CISA warn over ransomware gang that can make million dollar demands
Gastroenterology Consultants PA to settle data breach class-action suit
Hackers Put Sensitive Data of AKD Securities Up for Sale on Dark Web
Hackers Target School Systems To Get Private Data
Hanesbrands takes US$100m sales hit in ransomware attack
How to protect cybersecurity budgets
Hungria: Police arrest hackers suspected of stealing millions of forints
iPay88 data breach: Ministry to take immediate action, says Annuar Musa
K–12 Students Are Using Cyberattacks to Shut Down Schools
Lax Security Courts Liability, Says US CFPB
Lincolnshire Police has lost data or sent it to the wrong person more than 200 times
Living Innovations Reports Data Breach Stemming from Phishing Incident
Lowering Cyberinsurance Premiums with Managed Security Services
Malaysia central bank says investigation ongoing into potential data breach
Microsoft blocks UEFI bootloaders enabling Windows Secure Boot bypass
Morristown health center alerting customers to ransomware attack
Novel Ransomware Comes to the Sophisticated SOVA Android Banking Trojan
OneDrive, Fidelity Investment, and MORE – 3 Phishing Scams to Watch Out For
Oregon hospital is asking its employees to repay $2 million mistakenly paid in wages
Organizations would like the government to help with ransomware demand costs
Palo Alto Networks: New PAN-OS DDoS flaw exploited in attacks
Pixsy had a data breach; photographers, change your passwords now
Ransomware attack blamed for closure of all 7-Eleven stores in Denmark
Ransomware Attack Costs Hanesbrands $100 Million in Lost Sales
Ransomware is not going anywhere: Attacks are up 24%
Recovery From NHS Ransomware Attack May Take a Month
Researchers Uncover UEFI Secure Boot Bypass in 3 Microsoft Signed Boot Loaders
School's back, and so are scammers, NYS warns students
SolidBit Ransomware Group Recruiting New Affiliates on Dark Web
Southwest Airlines Email Phishing Scam Says ‘Congrats,’ Claims You’ve Received ‘Reward’
The Anatomy of Wiper Malware, Part 1: Common Techniques
Thousands of Mobile Apps Are Leaking Twitter API Keys, Could Be Used for Account Hijacking
Threat Actors Use Evernote-Themed Phishing Scheme to Attack Healthcare Organizations
Transparency is the key to managing cyber attacks: VCIA panel
Twilio: 125 customers affected by data breach, no passwords stolen
U.S. Government Offers $10 Million Reward for Information on Conti Ransomware Gang
Warning over 'genuine looking' Royal Mail scam as thousands targeted
Waterloo public board confirms student database also accessed in cyberattack
Why Proactive Cybersecurity Is a Must in Today’s Sophisticated Threat Environment
Xiaomi Phones with MediaTek Chips Found Vulnerable to Forged Payments
Xiaomi phones with MediaTek chips vulnerable to forged payments
Your Macs Aren't as Secure as You Think
Zeppelin Ransomware Resurfaces with New Compromise, Encryption Tactics
11/08
79% of companies invest only in cybersecurity after hacking
Access to hacked corporate networks still strong but sales fall
Agriculture Sector in Danger of Cyber Threats
Android Banking Trojan SOVA Comes Back With New Features Including Ransomware
Atlas MedStaff LLC Confirms Recent Data Breach Following “Sophisticated Cyberattack”
Banks step up cybersecurity following iPay88 data breach
Black Hat at 25: Why Cybersecurity Is Going to Get Worse Before It Gets Better
Canadian recreational vehicle maker BRP, Ontario Cannabis Store dealing with cyber attacks
Cisco admits corporate network compromised by gang with links to Lapsus$
Cisco Confirms It's Been Hacked by Yanluowang Ransomware Gang
Cisco Hacked: Ransomware Gang Claims It Has 2.8GB Of Data
Cisco Talos confirms data breach after ransomware gang 'forces' incident disclosure
Conti Cybercrime Cartel Using 'BazarCall' Phishing Attacks as Initial Attack Vector
Countering Advanced Persistent Threats With Advanced Persistent Security
Criminals are hacking pharmacy accounts to steal THIS drug
Critical Flaws Disclosed in Device42 IT Asset Management Software
'Cybercrime is big-game hunting now ... you need to be prepared'
Don't be surprised if your organization suffers multiple cyberattacks
Don’t fall for this ‘fake’ Emirates Airlines free tickets contest — it’s another phishing scam!
Education sector most at risk of cyber attack
FBI: Zeppelin ransomware may encrypt devices multiple times in attacks
Fears for patient data after ransomware attack on NHS software supplier
German school hit by ransomware
Hackers are still using these old security flaws in Microsoft Office. Make sure you've patched them
Hackers Behind Cuba Ransomware Attacks Using New RAT Malware
IOTW: Twilio suffers data breach following phishing attack
Kashmir University's Data Hacked, 1 Million Students' Data Allegedly Put on Sale
Lazarus subgroup expands attacks with new ransomware
Malaysian payment gateway platform iPay88 suffers data leak, card data may be compromised
Mobile Attacks Rise as Devices Become Essential to Productivity
MultiCare announces breach that could impact over 18,000 patients’ health data and records
New Mexico hospital breach compromised the healthcare data of 100K patients
NHS IT supplier held to ransom by hackers
Ransomware attacks on the rise: report
Ransomware potentially exposed 2,000 Ypsilanti-area utility customers’ bank information
Researchers Unveil More Details On How Hackers Are Installing Android’s Latest Spyware 'Dracarys'
SMS-Based Multi-Factor Authentication: What Could Go Wrong? Plenty
Starlink Successfully Hacked Using $25 Modchip
Swan Bitcoin Discloses Data Leak Due to Phishing Attack on Newsletter Provider
Tenant criticises Clarion Housing communication after cyber attack
The Use of Ethereum in Illegal Activities Rises for Many Criminals
Third-Party Mailing Error Exposes 37K SSNs at Sound Health and Wellness Trust
UK NHS service recovery may take a month after MSP ransomware attack
Web3 helps Taiwan secure information against cyberattacks
What is a Social Engineering Attack?
Which malware delivery techniques are currently favored by attackers?
Why MFA Falls Short And What Can Be Done About It
Why SAP systems need to be brought into the cybersecurity fold
Zimbra auth bypass bug exploited to breach over 1,000 servers
10/08
36% of orgs expose insecure FTP protocol to the internet, and some still use Telnet
1,980 Data Breaches Were Reported in 2022 H1 and 60% Were the Result of Hacking
Amid reports of data breach, Kashmir University says data 'unmodified'
Anti-Vax Dating App Offers Up Admin Privileges
Automotive supplier breached by 3 ransomware gangs in 2 weeks
Chinese hackers attack govt ministries globally
Cisco fixes bug allowing RSA private key theft on ASA, FTD devices
Cisco hacked by Yanluowang ransomware gang, 2.8GB allegedly stolen
Cloudflare was the target of a sophisticated phishing attack. Here's why it didn't work
Conti extortion gangs behind surge of BazarCall phishing attacks
Cyber-criminals Shift From Macros to Shortcut Files to Hack Business PCs, HP Report
Dark Utilities C2 as a service tool leverages IPFS, targets several operating systems
DeathStalker's VileRAT Continues to Target Foreign and Crypto Exchanges
Emotet Tops List of July's Most Widely Used Malware
Exploit Activity Surges 150% in Q2 Thanks to Log4Shell
Greek Police Launch Investigation into Next Generation Fraudsters
Hacker uses new RAT malware in Cuba Ransomware attacks
Hackers Behind Twilio Breach Also Targeted Cloudflare Employees
Identity is the killer context: 4 ways to stay in control
Ireland: Cyber-attack concerns over DNA database security
Kashmir University: Personal data of over million students hacked, put on sale
Latest VMware threat report reveals truth about deepfakes
Malaysian PM's messaging accounts hacked as officials deny data breach crisis
Microsoft Patches ‘Dogwalk’ Zero-Day and 17 Critical Flaws
Personal data of 1 million students, employees of Kashmir University hacked, put on sale
Phishing attack abuses Microsoft Azure, Google Sites to steal crypto
Q2 2022 Threat Landscape: Ransomware Returns, Healthcare Hit
Research reveals hackers circulating spoof sites, fake apps
Surge in CVEs as Microsoft Fixes Exploited Zero Day Bugs
The Business of Hackers-for-Hire Threat Actors
The challenges of managing the modern external attack surface
This company didn't spot the flaw in their network. But three ransomware gangs did
Weekly Ransomware Attacks Taking a Toll on Security Pros
Why Zero Trust makes cyber sense in the post-pandemic era
09/08
5 key things we learned from CISOs of smaller enterprises survey
Automotive needs to address infotainment cyber security
Black Dragon Capital Launches International Cybersecurity Coalition
CrossCountry Announces Cyber Attack Simulation and Threat Assessment Offering
Cyber insurance getting harder to obtain
Cybersecurity Job Demand Will Put More Focus on Underrepresented People
Cyber syndicates are working with amateur attackers to target businesses
Deep fake attacks and cyber extortion on the rise
Dissecting Google’s Titan M chip: Vulnerability research challenges
Firm to train youths on cybersecurity
How Microsoft VP Tom Burt protects individuals and governments from cyberattacks
How to build an organizational culture that is 'cybersecurity ready'
LogoKit update: The phishing kit leveraging open redirect vulnerabilities
National Cybersecurity Authority launches ‘CyberIC’ in Saudi Arabia
NHS 111 service affected by cyber attack on computer system
Three ransomware gangs consecutively attacked the same network
Twilio confirms data breach after its employees got phished
Understanding your attack surface is key to recognizing what you are defending
08/08
7-Eleven stores in Denmark closed due to a cyberattack
API Security: A Complete Guide
Architecture firm Sheppard Robson suffers a ransomware attack; perpetrators unknown
Attackers abuse open redirects in Snapchat and Amex in phishing attacks
BFSI sector adapting a dynamic cybersecurity stance
Buying Cyber Insurance Gets Trickier as Attacks Proliferate, Costs Rise
Chinese Hackers May Be Behind Attacks Targeting Eastern Europe and Afghanistan
Chinese hackers use new Windows malware to backdoor govt, defense orgs
Could criminalizing ransomware payments put a stop to the current crime wave?
Cyber attacks in the gaming sector up 167% in 12 months
Cyberattacks on healthcare organizations negatively impact patient care
Cyber attack on software supplier causes "major outage" across the NHS
Dark Utilities C2 service draws thousands of cyber criminals
Data Breach: Twitter confirms personal details of millions of account holders compromised
Data privacy regulation a top three challenge for IoT adopters
Deepfake attacks and cyber extortion are creating mounting risks
Email marketing firm hacked to steal crypto-focused mailing lists
Entrust cyber attack: Hackers accessed cyber security vendor's internal network
Growing cybercrime demands firm African response
Hackers Exploit Open Redirect Vulnerabilities to Conduct LogoKit Phishing Campaigns
Hackers take down UK emergency services system
Hackers Using SHARPEXT Browser Malware to Spy on Gmail and Aol Users
HowTo: Approach IoMT Security and Risk Management
Huawei, Ministry of Communications begin cyber security training Phase II
Iran: Israeli hackers down IRGC's news website
ISO/SAE 21434: Software certification for automotive cybersecurity
Kordamentha Appoints New Cybersecurity Executive Director
Meta Cracks Down on Cyber Espionage Operations in South Asia Abusing Facebook
Meta Takes Action Against Cyber Espionage Operations Targeting Facebook in South Asia
New Orchard Botnet Uses Bitcoin Founder's Account Info to Generate Malicious Domains
NHS Cyber-Attack Delays Ambulances
No More Ransom project helps more than 1.5 million people decrypt devices
North Korean hackers are using never-before-seen tools to hack Gmail
North Korean Hackers Target Crypto Job Seekers
Phishers Swim Around 2FA in Coinbase Account Heists
Phishing Scam increases by 234 percent in Africa
Ransomware in Rovagnati, Lockbit spreads all stolen data: data breach analysis
Researchers Uncover Classiscam Scam-as-a-Service Operations in Singapore
Spain's Radioactivity Alert Network disrupted in alarming insider attack
Stratus Red Team: Open-source tool for adversary emulation in the cloud
Survey software QuestionPro breached; 22m email addresses stolen by hacker
The metaverse faces more than 8 potential cyberthreats
Twilio discloses data breach after SMS phishing attack on employees
US sanctions crypto mixer Tornado Cash used by North Korean hackers
Zero-Day Bug Responsible for Massive Twitter Breach
What Black Hat USA 2022 attendees are concerned about
Wootton Upper School presented a £500,000 ransom note by the Hive ransomware group
Your cybersecurity staff are burned out - and many have thought about quitting
07/08
5 reasons why businesses should never use consumer-grade password managers
Ataque hacker contra o governo albanês partiu do Irã, indica empresa de cibersegurança
Check Your Cyberattack Response Steps Before It Becomes a Concern
Due To The Frequent Ransomware Attacks, The Downtime Cost Rises Up To $160 Billions In the USA
Fraudsters gain full access to bank account with cost of living scam
Gloucester residents able to vote again following cyber attack
GwisinLocker ransomware exclusively targets South Korea
Here are the software used by hackers to steal your passwords!
How to spot scam that every parent and grandparent needs to know about
Leaked image shows ransomware attack hit Linn-Mar School District
More than 100 Dutch dental practices closed for days due to cyber attack
NHS 111 delays could occur following computer system outage caused by cyber attack
North Korean hackers target crypto experts with fake Coinbase job offers
People warned over NHS 111 delays after cyber attack causes major outage
Phishing attacks in Oman surge by 192% in second quarter
Security Risk by Accepting Policy Exceptions
Serious cyberattack hits German Chambers of Industry and Commerce (DIHK)
Snapchat, Amex sites abused in Microsoft 365 phishing attacks
The CSIC is offline: X-ray of a ‘ransomware’, the cyberattack that everyone fears
The Importance of Vulnerability Analysis for Container Registries
Twitter Confirms Data Breach as 5.4M Accounts Sold on Hacker Forum
Validate Your Cybersecurity Skills On The Range
Why Software Updates and Patches Are Critical?