NEWS: Agosto (31/07 - 06/08) - 31 Semana de 2022
Cyber Security and Information Security News - Daily Updates !! Weekly Review

06/08
3 reasons why cybercriminals have their eyes on academic institutions
Chinese Adult Site Leaking 14 Million User Details – and It’s Increasing!
Don't get stung by these fake holiday cyber-scams this summer
Hackers Exploit Twitter Vulnerability to Exposes 5.4 Million Accounts
Hackers target unsecured Amex and Snapchat sites to steal user data
Here are the software hackers use to steal your passwords
Lazarus Group behind the DeBridge Finance Cyberattack
Ministers coordinate response after cyber-attack hits NHS 111
NHS 111 software outage confirmed as cyber-attack
New Jersey: SERV Behavioral Health System remains quiet about alleged ransomware attack in May
NHS 111 hit by major cyber attack as public warned to expect delays
Phishing attacks in Oman surge by 192% in second quarter
Ransomware hackers already captured over 30 TB in 2022
Ransomware team hits Disability Help Group
Slack Resets Passwords After a Bug Exposed Hashed Passwords for Some Users
Small ransomware groups to flourish in 2022 second half
Social Media Profiles Are Getting Hacked At Alarming Rates, Confirms New Report
The education sector is the most vulnerable to cyber attacks, for what reason
The Sandbox’s Instagram Account is back Online after Hack
Twitter confirms data breach that exposed data of 5.4m anonymous users
United Arab Emirates: 3.4 million phishing attacks detected in second quarter of year
Why cyberattacks are increasing and the government cannot do anything?
05/08
8 Questions Cybersecurity Pros Should Ask Hiring Managers
A Growing Number of Malware Attacks Leveraging Dark Utilities 'C2-as-a-Service'
August 2022 Patch Tuesday forecast: Printers again?
Buried under security debt? Here’s how to dig yourself out to improve security posture
Chinese Info Ops Campaign Tied to PR Firm
CISA adds Zimbra email bug to Known Exploited Vulnerabilities Catalog
Cybercrime a Key Revenue Stream For North Korea's Weapons Program
DHS warns of critical flaws in Emergency Alert System encoder/decoder devices
DuckDuckGo browser now blocks all third-party Microsoft trackers
Emergency Alert System Flaws Could Let Attackers Transmit Fake Messages
Facebook finds new Android malware used by APT hackers
GwisinLocker Ransomware Targets Linux Systems in South Korea
Hackers are actively exploiting password-stealing flaw in Zimbra
Hackers Exploit Hostinger's Preview Domain Feature to Launch Phishing Campaigns
Iranian Hackers likely Behind Disruptive Cyberattacks Against Albanian Government
MI-X: Open source project helps you understand whether you are exploitable
Mysterious threat actor TAC-040 used previously undetected Ljl Backdoor
New Linux botnet RapperBot brute-forces SSH servers
Over 60% of Organizations Expose SSH to the Internet
Resolving Availability vs. Security, a Constant Conflict in IT
Revealed: The top 11 malware strains you need to worry about
Risk astute leadership: Converting intelligence into actionable controls
Say it Ain’t So Mom! Back to School Shopping & Retail Cybersecurity
Slack resets passwords after exposing hashes in invitation links
Suffering From a Surfeit of Security Tools
Twitter confirms zero-day used to expose data of 5.4 million accounts
UK Branded Europe’s “Capital of Card Fraud”
Upskilling is Critical to Closing Cybersecurity Skills Gaps
US Emergency Alert System Has ‘Huge Flaw’ — Broadcasters Must Patch NOW
04/08
6 ways your cloud data security policies are slowing innovation – and how to avoid that
A third of organizations experience a ransomware attack once a week
Army of the Undone: Securing IoT Across Critical Sectors
Blockchain security firm warns against new MetaMask phishing scam
Check Point software’s mid-year security report reveals
Compliance vs Security: A Look into Passwords
CREST and OWASP Partner on Verification Standard Program
Critical RCE Bug Could Let Hackers Remotely Take Over DrayTek Vigor Routers
Crowdstrike Helps Fuel Talon Cyber Security’s $100M Round To Push More Secure Browser
Cyber attacks have become ‘firmly entrenched as a state-level weapon’
Cybersecurity agencies reveal last year’s top malware strains
Dados proprietários da Cellebrite vazados por fonte anônima
Data theft, ransomware attacks among top concerns for businesses in SEA: Kaspersky
DHS warns of critical flaws in Emergency Alert System devices
Energy provider's services to reopen "soon" after cyber attack
Experts Warn of Fake Football Ticket Scams
Food security: how protected is our supply chain from cyber attacks?
From 7-11s to train stations, cyber attacks plague Taiwan over Pelosi visit
Gaming Sector Cyber-Attacks Up 167% in Last 12 Months
German Chambers of Industry and Commerce hit by 'massive' cyberattack
German chipmaker Semikron falls victim to ransomware attack
Hackers deploy new ransomware tool in attacks on Albanian government websites
Hackers Exploited Atlassian Confluence Bug to Deploy Ljl Backdoor for Espionage
Hackers try to extort survey firm QuestionPro after alleged data theft
Happiest Minds Tech unveils cyber security in health
How can organizations stay ahead of cybersecurity challenges?
Keep an eye on your data with this dark web monitoring deal
Modern APIs Need a Different Security Approach
More than 30TB of Sensitive Data Stolen with Ransomware in 2022
More than 21,000 affected in Healthback data breach
New Linux malware brute-forces SSH servers to breach networks
New Woody RAT Malware Being Used to Target Russian Organizations
Norton Consumer Cyber Safety Pulse Report: Phishing For New Bait On Social Media
One in three organizations now hit by weekly ransomware attacks
Over 280M records comprising UANs, bank account info and PII leaked online
Sencinet abre 15 vagas para Cyber Security
Solana: Como um grupo de “hackers do bem” lutou contra o roubo de carteiras
Talon Cyber Security announces $100 million Series A for secure enterprise browser
The Cybersecurity Parallel Universe: Let's Get Back To Basics
The path to cyber security 2030
Thousands of hackers flock to 'Dark Utilities' C2-as-a-Service
Three Common Mistakes That May Sabotage Your Security Training
Top 10 Cybersecurity Engineer Jobs to Apply for in August 2022
Ukraine Shutters Major Russian Bot Farm
Universities are at risk of email-based impersonation attacks
‘Unprecedented’ amount of cyber attacks plague Taiwan over Pelosi’s visit
Users Still in the Dark Over $5m Theft From Blockchain Firm Solana
Who Has Control: The SaaS App Admin Paradox
03/08
42% Global Increase in Cyber Attacks with Ransomware the Number One Threat
87% of the ransomware found on the dark web has been delivered via malicious macros
8,000 Solana Wallets Drained Millions Worth of Crypto in Cyberattack
35,000 code repos not hacked—but clones flood GitHub to serve malware
Ataque hacker: empresa dos EUA perde R$ 1 bilhão
Ataque hacker: TJDFT mantém suspensos expediente e prazos nesta 4ª e 5ª
Bug bounties to become part of Swiss cyber-security arsenal
Cisco Business Routers Found Vulnerable to Critical Remote Hacking Flaws
Cisco fixes critical remote code execution bug in VPN routers
Cloned Atomic Wallet website is pushing Mars Stealer malware
Corretora que se autoproclama a “mais segura do mundo” perde US$ 5 milhões em ataque de hackers
Cyber Attack Disrupts Taiwan’s Presidential Office Website
DDoS Attacks Pepper Taiwanese Government Sites
Depois de invasão de hackers, site do TJ do DF ainda está fora do ar
Digital Trust: From Brand Damaging to Brand Managing
Hackers steal almost $200 million from crypto firm Nomad
How to minimize your exposure to supply chain attacks
How to spot deep-faked candidates during interviews
IPFS phishing on the rise, makes campaign takedown more complicated
Large-Scale Phishing Attacks Targeting Microsoft Enterprise Email Services
Luxembourg Energy Companies Hit By Cyber Attack With Data Stolen
Machine learning creates a new attack surface requiring specialized defenses
Madrugada de terça é a preferida para golpes
Microsoft's latest Windows 11 update improves Defender for Endpoint's ransomware capabilities
Missile Maker MBDA Refutes Hacking Allegations
Palmeiras relata "ataques hackers" e suspende venda de ingressos para jogo contra o Atlético-MG
Phishers use custom phishing kit to hijack MFA-protected enterprise Microsoft accounts
Ransomware Attacks Taking Toll on Security Professionals
Researchers Warns of Large-Scale AiTM Attacks Targeting Enterprise Users
Russian organizations attacked with new Woody RAT malware
Single-Core CPU Cracked Post-Quantum Encryption Candidate Algorithm in Just an Hour
Spanish research agency still recovering after ransomware attack
Student details, photos exposed in University of WA data breach
The Three Key Competencies that Optimize Data Security Orchestration
Threat actors hide malware in legitimate — and high profile — applications
Time to update: Latest Google Chrome browser fixes 27 security flaws
T-Mobile Retailer Guilty of $25m Fraud Scheme
Tory Leadership Voting Delayed Over Security Concerns
UK Clears Norton's $8B Avast Cyber Security Takeover
University of Plymouth, BMT collaborate to improve cyber security in maritime
VirusTotal Reveals Most Impersonated Software in Malware Attacks
VMware: Patch this critical vulnerability immediately! (CVE-2022-31656)
02/08
25 Cybersecurity Statistics Small Businesses Should Know
41% of Leaked Data Comes From Social Media According to This Study
2022 Mid-Year Healthcare Data Breach Deep Dive — Protenus
A Look Inside the LockBit Ransomware Gang
Addressing Mobile Device Security Risks in Healthcare
APT29 Leverages Google Drive, Dropbox to Evade Detection
Are We Doing Enough to Protect Our NHS?
Bailiwick of Guernsey residents warned of medical service phishing emails
Be careful what you download: 17 password-stealing Android apps removed from Google Play
Black Kite Finds Cost of Data Breach Averages $15.01M
Bromford Housing Association shuts all systems following an attempted cyber attack
Browser synchronization abuse: Bookmarks as a covert data exfiltration channel
Chinese hackers use new Cobalt Strike-like attack framework
Cyber attack forced Kansas City MSP NetStandard to disable the MyAppsAnywhere cloud service
Dark Web Research Suggests 87% of Ransomware Brands Exploit Malicious Macros
Derby law firm lost confidential client data to hackers in May
Digitalising the manufacturing sector, speaking about the unspoken side
EU missile maker MBDA confirms data theft extortion, denies breach
European energy company and gas pipeline hacked by AlphV ransomware
Every leading UK university is compromising on email security, researchers say
Federal Bill Would Broaden FTC’s Role in Cybersecurity and Data Breach Disclosures
First Choice Community Healthcare hit by data breach
Fresh reports of WhatsApp scam prompt new warning
Gloucestershire Bromford housing association hit by cyber attack
Google Patches Critical Android Bluetooth Flaw in August Security Bulletin
How businesses can best balance security and privacy
How cybercrims embrace messaging apps to spread malware, communicate
How You Can Protect Yourself And Your Company From A Data Leak
Insider risk: Employees are your biggest cyberthreat (and they may not even know it)
July another down month in ransomware attack disclosures
Large-Scale AiTM Attack targeting enterprise users of Microsoft email services
LockBit Ransomware Abuses Windows Defender to Deploy Cobalt Strike Payload
Man Hacked T-Mobile Employees to Unlock Cell Phones, Rake in $25 Million
Microsoft announces new external attack surface audit tool
Microsoft Defender now better at blocking ransomware on Windows 11
Miscreants aim to cause Discord discord with malicious npm packages
Mobile store owner hacked T-Mobile employees to unlock phones
New 'ParseThru' Parameter Smuggling Vulnerability Affects Golang-based Applications
One in three organisations attacked by malicious insiders
“ParseThru” vulnerability allows unauthorized access to cloud-native applications
Phishing Attack at Allegheny Health Network Impacts 8K
Recent Hacker Attacks Underscore Need for Multi-faceted Cyber Security
Reported ransomware attacks are just the tip of the iceberg. That's a problem for everyone
School Cybersecurity Strategies as Ransomware Attacks Hit 56% of K-12
Security Leaders Share 5 Steps to Strengthening Cyber Resilience
Semiconductor manufacturer Semikron hit by LV ransomware attack
Singapore Personal Data Protection Act Changes Have Implications for Healthcare Sector
Some Neopets users are locked out of their accounts following data breach
Spain Nabs Two For Allegedly Hacking Radiation Alert System
Start as you mean to go on: the top 10 steps to securing your new computer
State of cybersecurity funding in the first half of 2022
T-Mobile Might Owe You Money: Inside the $350 Million Data Breach Settlement
That Text From Your Friend May Not Be as Innocent as It Seems
The Types of Zero-Day Vulnerabilities and How to Defend Against Them
Thousands of Apps Leaking Twitter API Keys
Trio of XSS bugs in open source web apps could lead to complete system compromise
Twitter API keys found leaked in over 3,200 apps, raising concerns for linked accounts
UK’s Top 10 Universities Failing on DMARC
University of Western Australia Confirms Student Details Exposed in Data Breach
U.S. Offers $10 Million Bounty for Tips on North Korean Hackers
Using AI/ML to Create Better Security Detections
VMware urges admins to patch critical auth bypass bug immediately
Website of Taiwan's presidential office receives overseas cyber attack - source
What Is Cybersquatting and How Can You Prevent It?
Wolf in sheep’s clothing: how malware tricks users and antivirus
01/08
A 2020 data breach that continues to remain an unsolved mystery
Afterpay warns of spike in scam texts ‘across the financial services industry’
Allegheny Health Network (AHN) reports data breach
Aussie Hacker Arrested, Charged for Developing and Selling Imminent Monitor RAT
Austrian Investigation Reveals Spyware Targeting Law Firms, Finance Institutions
Average cost of data breaches hits record high of $4.35 million: IBM
BlackCat ransomware claims attack on European gas pipeline
Central Maine Medical Center Files Notice of Recent Data Breach with the Federal Government
Check Point Q2 profit gains on 'healthy' cyber security demand
City of Casey in Victoria compromised by supply chain cyber attack
Clarion reports turnover increase despite cyber attack hampering update
Confidential data held by a Derby legal firm copied in a cyber attack
Credential Stealer Malware Raccoon Updated to Obtain Passwords More Efficiently
Cyber attack on ista paralyzes systems
Cyberattack prevention is cost-effective, so why aren’t businesses investing to protect?
Ducktail Malware Targets Facebook Business Accounts Via LinkedIn Phishing
Employees fall for scam emails 'sent' by HR or IT
Europol: Tools already helped around 1.5 million victims of ransomware attacks
Five Flags Center gets money back from cyber attack
Giant Investment Scam Network Targets Victims with Phone Calls
Growing Body of Data Shows High Healthcare Breach Risk
Hacking Your Health: Can Your Electronic Health Record Be Hacked?
How are K-12 and higher education institutions faring against ransomware?
HowTo: Find the Right SOC Provider
‘Imma Make U Dig Ur Own Grave’: He Doxes Ransomware Hackers and Gets Death Threats in Return
Key things you didn't know about phishing
List of Data Breaches and Cyber Attacks in July 2022 – 99.2 Million Records Breached
Luxembourg energy companies struggling with alleged ransomware attack, data breach
Most companies are unprepared for CCPA and GDPR compliance
New CosmicStrand rootkit targets Gigabyte and ASUS motherboards
North Korean Hackers Use Browser Extension to Spy on Gmail and AOL Accounts
Now is the time to focus on software supply chain security improvements
PracticeMax Ransomware Attack Impacts 258K at FL Urgent Care Center
Protean enters the cyber security market by introducing Protean InfoSec Services Limited
Ransomware gang Hive demands £500k from two UK colleges
Ransomware gangs are hitting roadblocks, but aren’t stopping (yet)
Ransomware Global Volume Shrinks, Still Exceeds Totals for 2017-2019