NEWS: Agosto (31/07 - 06/08) - 31 Semana de 2022

Cyber Security and Information Security News - Daily Updates !! Weekly Review

06/08

3 reasons why cybercriminals have their eyes on academic institutions

Chinese Adult Site Leaking 14 Million User Details – and It’s Increasing!

Don't get stung by these fake holiday cyber-scams this summer

German-based Semiconductor manufacturer SEMIKRON has been hit by a ransomware attack, company has lost 2TB data to LV Group

Hackers Exploit Twitter Vulnerability to Exposes 5.4 Million Accounts

Hackers target unsecured Amex and Snapchat sites to steal user data

Here are the software hackers use to steal your passwords

Investigation reveals thousands had info exposed in Prince Edward Island arts centre ransomware incident

Lazarus Group behind the DeBridge Finance Cyberattack

Ministers coordinate response after cyber-attack hits NHS 111

NHS 111 software outage confirmed as cyber-attack

New Jersey: SERV Behavioral Health System remains quiet about alleged ransomware attack in May

NHS 111 hit by major cyber attack as public warned to expect delays

Phishing attacks in Oman surge by 192% in second quarter

Ransomware hackers already captured over 30 TB in 2022

Ransomware team hits Disability Help Group

Slack Resets Passwords After a Bug Exposed Hashed Passwords for Some Users

Small ransomware groups to flourish in 2022 second half

Social Media Profiles Are Getting Hacked At Alarming Rates, Confirms New Report

The education sector is the most vulnerable to cyber attacks, for what reason

The Sandbox’s Instagram Account is back Online after Hack

Twitter confirms data breach that exposed data of 5.4m anonymous users

United Arab Emirates: 3.4 million phishing attacks detected in second quarter of year

Why cyberattacks are increasing and the government cannot do anything?

05/08

8 Questions Cybersecurity Pros Should Ask Hiring Managers

A Growing Number of Malware Attacks Leveraging Dark Utilities 'C2-as-a-Service'

August 2022 Patch Tuesday forecast: Printers again?

Buried under security debt? Here’s how to dig yourself out to improve security posture

Chinese Info Ops Campaign Tied to PR Firm

CISA adds Zimbra email bug to Known Exploited Vulnerabilities Catalog

Cybercrime a Key Revenue Stream For North Korea's Weapons Program

DHS warns of critical flaws in Emergency Alert System encoder/decoder devices

DuckDuckGo browser now blocks all third-party Microsoft trackers

Emergency Alert System Flaws Could Let Attackers Transmit Fake Messages

Facebook finds new Android malware used by APT hackers

GwisinLocker Ransomware Targets Linux Systems in South Korea

Hackers are actively exploiting password-stealing flaw in Zimbra

Hackers Exploit Hostinger's Preview Domain Feature to Launch Phishing Campaigns

Iranian Hackers likely Behind Disruptive Cyberattacks Against Albanian Government

MI-X: Open source project helps you understand whether you are exploitable

Mysterious threat actor TAC-040 used previously undetected Ljl Backdoor

New Linux botnet RapperBot brute-forces SSH servers

Over 60% of Organizations Expose SSH to the Internet

Resolving Availability vs. Security, a Constant Conflict in IT

Revealed: The top 11 malware strains you need to worry about

Risk astute leadership: Converting intelligence into actionable controls

Say it Ain’t So Mom! Back to School Shopping & Retail Cybersecurity

Slack resets passwords after exposing hashes in invitation links

Suffering From a Surfeit of Security Tools

Twitter confirms zero-day used to expose data of 5.4 million accounts

UK Branded Europe’s “Capital of Card Fraud”

Upskilling is Critical to Closing Cybersecurity Skills Gaps

US Emergency Alert System Has ‘Huge Flaw’ — Broadcasters Must Patch NOW

04/08

6 ways your cloud data security policies are slowing innovation – and how to avoid that

A third of organizations experience a ransomware attack once a week

Aria Retirement Solutions, Inc. Announces Data Breach Following Unauthorized Access to Employee’s Email Account

Army of the Undone: Securing IoT Across Critical Sectors

Blockchain security firm warns against new MetaMask phishing scam

Check Point software’s mid-year security report reveals

Compliance vs Security: A Look into Passwords

CREST and OWASP Partner on Verification Standard Program

Critical RCE Bug Could Let Hackers Remotely Take Over DrayTek Vigor Routers

Crowdstrike Helps Fuel Talon Cyber Security’s $100M Round To Push More Secure Browser

Cyber attacks have become ‘firmly entrenched as a state-level weapon’

Cybersecurity agencies reveal last year’s top malware strains

Dados proprietários da Cellebrite vazados por fonte anônima

Data theft, ransomware attacks among top concerns for businesses in SEA: Kaspersky

DHS warns of critical flaws in Emergency Alert System devices

Energy provider's services to reopen "soon" after cyber attack

Experts Warn of Fake Football Ticket Scams

Food security: how protected is our supply chain from cyber attacks?

From 7-11s to train stations, cyber attacks plague Taiwan over Pelosi visit

From Babuk source code to Darkside custom listings – exposing a thriving ransomware marketplace on the dark web

Gaming Sector Cyber-Attacks Up 167% in Last 12 Months

German Chambers of Industry and Commerce hit by 'massive' cyberattack

German chipmaker Semikron falls victim to ransomware attack

Hackers deploy new ransomware tool in attacks on Albanian government websites

Hackers Exploited Atlassian Confluence Bug to Deploy Ljl Backdoor for Espionage

Hackers try to extort survey firm QuestionPro after alleged data theft

Happiest Minds Tech unveils cyber security in health

How can organizations stay ahead of cybersecurity challenges?

India: Over 280M records comprising Universal Account Numbers (UANs), bank account info and PII leaked online

Keep an eye on your data with this dark web monitoring deal

Malaysia: Minister says amendments to Personal Data Protection Act (PDPA) in the works after repeated data breach

Modern APIs Need a Different Security Approach

More than 30TB of Sensitive Data Stolen with Ransomware in 2022

More than 21,000 affected in Healthback data breach

New Linux malware brute-forces SSH servers to breach networks

New Woody RAT Malware Being Used to Target Russian Organizations

Norton Consumer Cyber Safety Pulse Report: Phishing For New Bait On Social Media

One in three organizations now hit by weekly ransomware attacks

Over 280M records comprising UANs, bank account info and PII leaked online

Sencinet abre 15 vagas para Cyber Security

Solana: Como um grupo de “hackers do bem” lutou contra o roubo de carteiras

Talon Cyber Security announces $100 million Series A for secure enterprise browser

The Cyber Threat

The Cybersecurity Parallel Universe: Let's Get Back To Basics

The path to cyber security 2030

Thousands of hackers flock to 'Dark Utilities' C2-as-a-Service

Three Common Mistakes That May Sabotage Your Security Training

Top 10 Cybersecurity Engineer Jobs to Apply for in August 2022

Ukraine Shutters Major Russian Bot Farm

Universities are at risk of email-based impersonation attacks

‘Unprecedented’ amount of cyber attacks plague Taiwan over Pelosi’s visit

Users Still in the Dark Over $5m Theft From Blockchain Firm Solana

Who Has Control: The SaaS App Admin Paradox

03/08

42% Global Increase in Cyber Attacks with Ransomware the Number One Threat

87% of the ransomware found on the dark web has been delivered via malicious macros

8,000 Solana Wallets Drained Millions Worth of Crypto in Cyberattack

35,000 code repos not hacked—but clones flood GitHub to serve malware

Ataque hacker: empresa dos EUA perde R$ 1 bilhão

Ataque hacker: TJDFT mantém suspensos expediente e prazos nesta 4ª e 5ª

Bug bounties to become part of Swiss cyber-security arsenal

Cisco Business Routers Found Vulnerable to Critical Remote Hacking Flaws

Cisco fixes critical remote code execution bug in VPN routers

Cloned Atomic Wallet website is pushing Mars Stealer malware

Corretora que se autoproclama a “mais segura do mundo” perde US$ 5 milhões em ataque de hackers

Cyber Attack Disrupts Taiwan’s Presidential Office Website

Cyber security boosted

Cyber Security Today for August 3rd, 2022 – Exfiltration, ransomware attacks critical infrastructure and “What is your personal data worth?”

DDoS Attacks Pepper Taiwanese Government Sites

Depois de invasão de hackers, site do TJ do DF ainda está fora do ar

Digital Trust: From Brand Damaging to Brand Managing

Hackers steal almost $200 million from crypto firm Nomad

How to minimize your exposure to supply chain attacks

How to spot deep-faked candidates during interviews

IPFS phishing on the rise, makes campaign takedown more complicated

Large-Scale Phishing Attacks Targeting Microsoft Enterprise Email Services

Luxembourg Energy Companies Hit By Cyber Attack With Data Stolen

Machine learning creates a new attack surface requiring specialized defenses

Madrugada de terça é a preferida para golpes

Microsoft's latest Windows 11 update improves Defender for Endpoint's ransomware capabilities

Missile Maker MBDA Refutes Hacking Allegations

Palmeiras relata "ataques hackers" e suspende venda de ingressos para jogo contra o Atlético-MG

Phishers use custom phishing kit to hijack MFA-protected enterprise Microsoft accounts

Ransomware Attacks Taking Toll on Security Professionals

Researchers Warns of Large-Scale AiTM Attacks Targeting Enterprise Users

Russian organizations attacked with new Woody RAT malware

Single-Core CPU Cracked Post-Quantum Encryption Candidate Algorithm in Just an Hour

Spanish research agency still recovering after ransomware attack

Student details, photos exposed in University of WA data breach

The Three Key Competencies that Optimize Data Security Orchestration

Threat actors hide malware in legitimate — and high profile — applications

Time to update: Latest Google Chrome browser fixes 27 security flaws

T-Mobile Retailer Guilty of $25m Fraud Scheme

Tory Leadership Voting Delayed Over Security Concerns

UK Clears Norton's $8B Avast Cyber Security Takeover

University of Plymouth, BMT collaborate to improve cyber security in maritime

VirusTotal Reveals Most Impersonated Software in Malware Attacks

VMware: Patch this critical vulnerability immediately! (CVE-2022-31656)

02/08

25 Cybersecurity Statistics Small Businesses Should Know

41% of Leaked Data Comes From Social Media According to This Study

2022 Mid-Year Healthcare Data Breach Deep Dive — Protenus

A Look Inside the LockBit Ransomware Gang

Addressing Mobile Device Security Risks in Healthcare

APT29 Leverages Google Drive, Dropbox to Evade Detection

Are We Doing Enough to Protect Our NHS?

Bailiwick of Guernsey residents warned of medical service phishing emails

Be careful what you download: 17 password-stealing Android apps removed from Google Play

Black Kite Finds Cost of Data Breach Averages $15.01M

Bromford Housing Association shuts all systems following an attempted cyber attack

Browser synchronization abuse: Bookmarks as a covert data exfiltration channel

Chinese hackers use new Cobalt Strike-like attack framework

Clarion Housing cyber attack: Mid Sussex residents concerned about rent and data after incident causes 'extensive' damage

Cyber attack forced Kansas City MSP NetStandard to disable the MyAppsAnywhere cloud service

Cyber incident at SEMIKRON

Dark Web Research Suggests 87% of Ransomware Brands Exploit Malicious Macros

Derby law firm lost confidential client data to hackers in May

Digitalising the manufacturing sector, speaking about the unspoken side

Double Whammy: Russian Hackers Launch Cyber Attacks On Lockheed Martin; Armed Forces Hack Into HIMARS — Reports

EU missile maker MBDA confirms data theft extortion, denies breach

European energy company and gas pipeline hacked by AlphV ransomware

Every leading UK university is compromising on email security, researchers say

Federal Bill Would Broaden FTC’s Role in Cybersecurity and Data Breach Disclosures

First Choice Community Healthcare hit by data breach

Fresh reports of WhatsApp scam prompt new warning

From Babuk Source Code to Darkside Custom Listings — Exposing a Thriving Ransomware Marketplace on the Dark Web

Gatto, Pope & Walrick, LLP Files Notice of Data Breach Following Reports of Potential Tax Return Fraud

Gloucestershire Bromford housing association hit by cyber attack

Google Patches Critical Android Bluetooth Flaw in August Security Bulletin

How businesses can best balance security and privacy

How cybercrims embrace messaging apps to spread malware, communicate

How You Can Protect Yourself And Your Company From A Data Leak

Insider risk: Employees are your biggest cyberthreat (and they may not even know it)

July another down month in ransomware attack disclosures

Keeping the cloud secure

Large-Scale AiTM Attack targeting enterprise users of Microsoft email services

LockBit Ransomware Abuses Windows Defender to Deploy Cobalt Strike Payload

Man Hacked T-Mobile Employees to Unlock Cell Phones, Rake in $25 Million

Microsoft announces new external attack surface audit tool

Microsoft Defender now better at blocking ransomware on Windows 11

Miscreants aim to cause Discord discord with malicious npm packages

Mobile store owner hacked T-Mobile employees to unlock phones

New 'ParseThru' Parameter Smuggling Vulnerability Affects Golang-based Applications

One in three organisations attacked by malicious insiders

“ParseThru” vulnerability allows unauthorized access to cloud-native applications

Phishing and Scams Hit the Roof in Kenya and Nigeria With a 438% and 174% Increase in the Number of Detections in Each Country Respectively in Q2 2022

Phishing Attack at Allegheny Health Network Impacts 8K

Recent Hacker Attacks Underscore Need for Multi-faceted Cyber Security

Reported ransomware attacks are just the tip of the iceberg. That's a problem for everyone

School Cybersecurity Strategies as Ransomware Attacks Hit 56% of K-12

Securing SCADA systems

Security Leaders Share 5 Steps to Strengthening Cyber Resilience

Semiconductor manufacturer Semikron hit by LV ransomware attack

Singapore Personal Data Protection Act Changes Have Implications for Healthcare Sector

Some Neopets users are locked out of their accounts following data breach

Spain Nabs Two For Allegedly Hacking Radiation Alert System

Start as you mean to go on: the top 10 steps to securing your new computer

State of cybersecurity funding in the first half of 2022

T-Mobile Might Owe You Money: Inside the $350 Million Data Breach Settlement

That Text From Your Friend May Not Be as Innocent as It Seems

The Types of Zero-Day Vulnerabilities and How to Defend Against Them

Thousands of Apps Leaking Twitter API Keys

Trio of XSS bugs in open source web apps could lead to complete system compromise

Twitter API keys found leaked in over 3,200 apps, raising concerns for linked accounts

UK’s Top 10 Universities Failing on DMARC

University of Western Australia Confirms Student Details Exposed in Data Breach

U.S. Offers $10 Million Bounty for Tips on North Korean Hackers

Using AI/ML to Create Better Security Detections

VMware urges admins to patch critical auth bypass bug immediately

Website of Taiwan's presidential office receives overseas cyber attack - source

What Is Cybersquatting and How Can You Prevent It?

Wolf in sheep’s clothing: how malware tricks users and antivirus

01/08

A 2020 data breach that continues to remain an unsolved mystery

Afterpay warns of spike in scam texts ‘across the financial services industry’

Allegheny Health Network (AHN) reports data breach

Anomali Appoints Cyber Security Expert Steve Benton as Vice President and General Manager to Expand Growth of Anomali Intelligence-Driven Solutions

Aussie Hacker Arrested, Charged for Developing and Selling Imminent Monitor RAT

Austrian Investigation Reveals Spyware Targeting Law Firms, Finance Institutions

Average cost of data breaches hits record high of $4.35 million: IBM

BlackCat ransomware claims attack on European gas pipeline

Central Maine Medical Center Files Notice of Recent Data Breach with the Federal Government

Check Point Q2 profit gains on 'healthy' cyber security demand

City of Casey in Victoria compromised by supply chain cyber attack

Clarion reports turnover increase despite cyber attack hampering update

Confidential data held by a Derby legal firm copied in a cyber attack

Credential Stealer Malware Raccoon Updated to Obtain Passwords More Efficiently

Cyber attack on ista paralyzes systems

Cyberattack prevention is cost-effective, so why aren’t businesses investing to protect?

Data Breach of Federal Courts Dates Back to Early 2020; Details of Compromise of Records System Closely Guarded

Ducktail Malware Targets Facebook Business Accounts Via LinkedIn Phishing

Employees fall for scam emails 'sent' by HR or IT

Europol: Tools already helped around 1.5 million victims of ransomware attacks

Five Flags Center gets money back from cyber attack

Giant Investment Scam Network Targets Victims with Phone Calls

Growing Body of Data Shows High Healthcare Breach Risk

Hacking Your Health: Can Your Electronic Health Record Be Hacked?

How are K-12 and higher education institutions faring against ransomware?

HowTo: Find the Right SOC Provider

‘Imma Make U Dig Ur Own Grave’: He Doxes Ransomware Hackers and Gets Death Threats in Return

Key things you didn't know about phishing

List of Data Breaches and Cyber Attacks in July 2022 – 99.2 Million Records Breached

Luxembourg energy companies struggling with alleged ransomware attack, data breach

Most companies are unprepared for CCPA and GDPR compliance

New CosmicStrand rootkit targets Gigabyte and ASUS motherboards

North Korean Hackers Use Browser Extension to Spy on Gmail and AOL Accounts

Now is the time to focus on software supply chain security improvements

OneTouchPoint Inc. Confirms Data Breach Potentially Impacting Dozens of Other Businesses (and Their Customers)

PracticeMax Ransomware Attack Impacts 258K at FL Urgent Care Center

Protean enters the cyber security market by introducing Protean InfoSec Services Limited

Ransomware gang Hive demands £500k from two UK colleges

Ransomware gangs are hitting roadblocks, but aren’t stopping (yet)

Ransomware Global Volume Shrinks, Still Exceeds Totals for 2017-2019

Researchers Discover Nearly 3,200 Mobile Apps Leaking Twitter API Keys

Securing Your Move to the Hybrid Cloud

Student details, photos exposed in University of WA data breach

Test your security configuration with a free assessment tool from CIS

The most impersonated brand in phishing attacks? Microsoft

The Top 5 Deadliest Ransomware Groups in the World

ThinkCyber India launches cybersecurity courses, aims to scale with Rs 80 crore investment

Threat Actors Circumvent Microsoft Efforts to Block Macros

Tracking Ransomware: Here's Everything We Still Don’t Know

Two Key Ways Development Teams Can Increase Their Security Maturity

US House of Representatives passes two cybersecurity bills

Wawa data breach settlement announced for $8M

We’re Spending Billions Each Year on Cybersecurity. So Why Aren’t Data Breaches Going Away?

Why are charities falling behind on cyber security?

Windows Defender hacked to deploy this dangerous ransomware

Young hacker faces 20-year prison sentence for creating prolific Imminent Monitor RAT

31/07

Alleged ShinyHunters Hacker Group Member Arrested

Check if you have your PC prepared against ransomware

Data apathy is 'costly and dangerous' - take five steps to clear up who knows what about you

FBI warns of increase in cyberattacks in New Mexico

Here’s exactly how tech companies and apps conspire to track you 24/7

Huge network of 11,000 fake investment sites targets Europe

If you’re getting fake texts from scammers posing as Amazon, you’re not alone—here’s what you can do

Latest report says Ransomware and Business Email Compromise Attacks are causing 70% of the cyberattacks we see today

Median Ransomware Payments Fall by 51% as Victims Refuse to Pay Hackers

New warning over ‘surge’ in fake Santander texts that aim to steal your bank details

Over 50% of users in Egypt encountered phishing attempts during electronic payments: report

Paytm Mall breach allegation found to be fabricated, withdrawn

Primary forms of ransomware of concern to business identified

Ransomware bites: One in 40 companies hit a week

Thai entities continue to fall prey to cyberattacks and leaks

Uber data breach impacts 57 million users

NEWS: Julho (24/07 - 30/07) - 30 Semana de 2022