NEWS: Fevereiro (14/02 - 20/02) - 7 Semana de 2021

CYBERSECURITY NEWS

20/02/2021

Cashalo hit by data breach, says customer accounts safe - CNN Philippines

Chrome, Safari, and Edge Users Can Be Tracked via Favicons - TechNadu

Experian challenged over massive data leak in Brazil - ZD Net

How Public K-12s Can Bolster Their Cyber Defenses - Education Week

Kroger data breach exposes pharmacy and employee data - Bleeping Computer

Parents alerted to NurseryCam security breach - BBC News

Recently fixed Windows zero-day actively exploited since mid-2020 - Bleeping Computer

Researchers Bypass Visa PINs and Make Mastercards Look Like Visas - TechNadu

SonicWall releases additional update for SMA 100 vulnerability - Bleeping Computer

The future of cybersecurity will be about ‘fighting fire with fire’ - TechRadar Pro

The Hydra Darkweb Market Operators Might Have Been Exposed - TechNadu

Troubled NZ Crypto Exchange Cryptopia Suffers Another Hack in the Midst of Liquidation Process - Bitcoin.com

White House says it will hold those responsible for SolarWinds hack accountable within weeks - CNN Politics

19/02/2021

5G security market to reach 5.226 billion by 2026 - Help Net Security

Business email compromise is a top concern for banks - Help Net Security

Capital Group Appoints Marta Zarraga as Global Chief Information Officer - InfoSecurity

CrowdStrike Snaps Up London Start-Up Humio - InfoSecurity

CXOs consider mainframe and legacy modernization a business priority - Help Net Security

Experts spotted the first malware tailored for Apple M1 Chip, it is just the beginning - Security Affairs

Hackers Are Targeting UK Bank Clients With 2FA-Bypassing Toolkits - TechNadu

Hackers steal credit card data abusing Google’s Apps Script - Security Affairs

Helsinki becomes the first city to employ new open-source data trust network - AVAST Blog

Internet Registry RIPE NCC Warns of Credential Stuffing Attack - InfoSecurity

Masslogger Trojan Upgraded to Steal All Your Outlook, Chrome Credentials - The Hacker News

Microsoft: Solorigate attackers grabbed Azure, Intune, Exchange component source code - Help Net Security

Millions of Amazon and eBay User Account Details Available for Purchase Online - TechNadu

Most security pros think a WAF is high maintenance - Help Net Security

Nation-State Espionage in ‘The Flight Attendant’ - Security Boulevard

Ransomware Attack on AFTS Creates Domino Effect Across the US - TechNadu

SolarWinds Attackers Breached 100+ Private Firms - InfoSecurity

What behavioral experts can teach us about improving security - Help Net Security

18/02/2021

$432.14 billion to be invested in the data center market by 2025 - Help Net Security

ACE’s Next Target Is the ‘Watched’ Streaming App - TechNadu

BC cria sistema que permite saber se CPF foi usado para abertura de contas - CISO Advisor

Breaches Cost US Healthcare Organizations $13bn in 2020 - InfoSecurity

California DMV Halts Data Transfers After Vendor Breach - InfoSecurity

Cybercriminals using automated tools to launch attacks: Report - Express Computer

Dispositivos Windows e Linux vêm sendo usados para minerar criptomoeda - CISO Advisor

DopplePaymer Ransomware Gang Behind Kia Motors IT Outage? - CISO Mag

Emotional intelligence playing an increasingly important role for CISOs - Help Net Security

First Malware Designed for Apple M1 Chip Discovered in the Wild - The Hacker News

Healthcare breaches increased over 50% in 2020 - Help Net Security

Homomorphic encryption: Myths and misconceptions - Help Net Security

How can we protect ourselves against fake news and manipulation? - Help Net Security

Kia Motors Hit With $20M Ransomware Attack – Report - ThreatPost

Labor calls for an Australian ransomware strategy - ZD Net

Masslogger Trojan Campaigns Oomph Their “Mass” Aspect - TechNadu

North Korea Accused by its Southern Counterpart for Cyberattack on Pfizer - CISO Mag

Singtel Breach Hits 129,000 Customers - InfoSecurity

The OpenSSL Project addressed three vulnerabilities - Security Affairs

These Unpatched Flaws in SHAREit App Could Leak Your Data - CISO Mag

Three North Korean Hackers of the Lazarus Group Indicted by the U.S. DoJ - TechNadu

Two More Lazarus Group Members Indicted for North Korean Attacks - InfoSecurity

UK’s Cybersecurity Sector Experiences Record Growth - InfoSecurity

Why do enterprise SOC teams need CIEM now? - Help Net Security

17/02/2021

57% of vulnerabilities in 2020 were classified as critical or high severity - Help Net Security

Analysts need advanced automation tools to reduce fear of missing incidents - Help Net Security

Breach Clarity Data Breach Report: Week of Feb. 15 - Security Boulevard

Cybersecurity risks connected to AI in autonomous vehicles - Help Net Security

Hacker invade página do SUS e manda recado: ‘arrumem esse site porco’ - Veja

Indonesian internet regulatory laws are serious threat to free expression rights: EFF - ZD Net

Knowledge graphs: The secret of Google Search and now XDR - Help Net Security

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware - Security Affairs

Malware increased by 358% in 2020 - Help Net Security

Microsoft releases the Windows 10 21H1 feature update to Insiders - Bleeping Computer

On Opioids, Consultants and Information Security - Security Boulevard

Overcoming IoT Asset Management Challenges - Security Boulevard

Telstra recommends amending existing telco Acts instead of creating duplication - ZD Net

The Free Speech Triangle | Avast - Security Boulevard

Tips for boosting the “Sec” part of DevSecOps - Help Net Security

Tracker pixels in emails are now an ‘endemic’ privacy concern - ZD Net

16/02/2021

Apple patches severe macOS Big Sur data loss bug - ZD Net

Complaint Blasts TikTok’s ‘Misleading’ Privacy Policies - ThreatPost

Consumers not protecting data online despite having privacy concerns - Help Net Security

Cyber Underground General Intelligence Requirements Handbook - Help Net Security

Cybersecurity spending for critical infrastructure to reach $105.99 billion in 2021 - Help Net Security

DDoS Attacks Wane in Q4 Amid Cryptomining Resurgence - ThreatPost

Enable secure remote workspaces without trashing your entire IT infrastructure - Help Net Security

Hackers exploited Centreon monitoring software to compromise IT providers - Help Net Security

Kia Motors America experiences massive IT outage across the US - Bleeping Computer

LastPass making changes to free service - ZD Net

Learn How to Manage and Secure Active Directory Service Accounts - The Hacker News

Let’s Encrypt Gears Up to Replace 200M Certificates a Day - ThreatPost

Malvertiser abused WebKit zero-day to redirect iOS & macOS users to shady sites - ZD Net

Malvertisers exploited browser zero-day to redirect users to scams - Bleeping Computer

Microsoft Edge is getting a new child-friendly Kids Mode - Bleeping Computer

Microsoft Pulls Bad Windows Update After Patch Tuesday Headaches - ThreatPost

Microsoft releases Azure Firewall Premium in public preview - Bleeping Computer

Microsoft to add 'Kids Mode' to Chromium-based Edge browser - ZD Net

Myanmar's proposed cybersecurity bill draws wide condemnation - ZD Net

Palo Alto Networks buys Bridgecrew for $156 million - ZD Net

Singapore puts budget focus on transformation, innovation - ZD Net

The cybersecurity issues of seismic monitoring devices - Help Net Security

This cybersecurity threat costs business millions. And it's the one they often forget about - ZD Net

Top 10 most used MITRE ATT&CK tactics and techniques - Help Net Security

Unpatched Android App with 1 Billion Downloads Threatens Spying, Malware - ThreatPost

Why contextual machine learning is the fix that zero-trust email security needs - Help Net Security

Windows 10 Secure Boot update triggers BitLocker key recovery - Bleeping Computer

15/02/2021

Account takeover incidents up by 20% in 2020: Report - Express Computer

Apple will proxy Safe Browsing requests to hide iOS users' IP from Google - The Hacker News

ASD says cyber attack intervention will be 'rare' under critical infrastructure Bill - ZD Net

AWS asks new Australian computer warrant provide immunity for account takeovers - ZD Net

CFOs are becoming catalysts of digital strategy - Help Net Security

Commonwealth Bank proposes industry self-regulation for Australia-wide digital ID - ZD Net

Cybersecurity Guidance For Heart Patients With Pacemakers - Cybercrime Magazine

DISH Network Moves Blockchain Anti-Piracy System Forward - TechNadu

Duo Charged with Multimillion-Dollar Dark Web Drugs Scheme - InfoSecurity

FBI Warns About Outdated Windows 7 OS and TeamViewer - CISO Mag

French and Ukrainian police arrested Egregor ransomware affiliates/partners in Ukraine - Security Affairs

Have we put too much emphasis on protecting the network? - Help Net Security

How do I select a DRM solution for my business? - Help Net Security

IRS Alerts U.S. Taxpayers About e-File Identity Theft via Phishing Attacks - CISO Mag

Mais de 1.000 devs podem ter trabalhado no ataque à SolarWinds - CISO Advisor

Mais de 60% das falhas de segurança são relativamente fáceis de explorar - CISO Advisor

Nearly 40% of consumers lost money to phone scams in 2020 - Help Net Security

Network Security: 5 Fundamentals for 2021 - Security Boulevard

Police Reportedly Arrest Egregor Ransomware Members - InfoSecurity

Quantum computing and encryption: Key to achieving resilience, technological sovereignty and leadership - Help Net Security

Rampant password reuse puts companies and customers at risk - Help Net Security

Several Members of the Egregor Gang Arrested in Ukraine - TechNadu

SBRC Adds Ransomware Scenario to Security Training Program - InfoSecurity

The State of Application Security: What the Statistics Tell Us - Security Boulevard

Ukraine’s PrivatBank Suffers Data Breach; 40 Mn Customer Records on Sale - CISO Mag

Zerologon Vulnerability: What You Need to Know - Security Boulevard

Yandex Insider Breach Hits Nearly 5000 Inboxes - InfoSecurity

Yandex, o ‘Google russo’, tem 5 mil contas de e-mail violadas por funcionário - CISO Advisor

14/02/2021

AFP investigation lands alleged phishing scam mastermind - ARN

Florida based child welfare organization suffers data breach - Digital Journal

Invasão leva à falência clínica finlandesa de psicoterapia - CISO Advisor

Microsoft asks government to stay out of its cyber attack response in Australia - ZD Net

New coronavirus scam and how to protect yourself from it - Belfast Live

Passwords: A leaky defense in a dangerous world - Manila Times

Slack users on Android should change their password right away, here’s why - 91Mobiles

The kingpin behind Joker’s Stash retires with a billionaire exit - Security Affairs

Tips for safe online dating this Valentine’s Day - The Hindu Business Line