NEWS: Fevereiro (21/02 - 27/02) - 8 Semana de 2021
Cybersecurity News !!! Day by Day !!!

27/02/2021
Avoiding the bait of a phishing expedition - Business Mirror
Here’s how hackers are able to crack your passwords - Ktar News
Mexico, favorite of hackers in Latin America - Explica
Npower Will Not Use the App That Was Exploited by Hackers Anymore - TechNadu
NSA, Microsoft promote a Zero Trust approach to cybersecurity - Bleeping Computer
Secondary school pays ransom after being hit by a cyber attack - NL Times
T-Mobile Announces Data Breach Following SIM Swap Cataclysm - TechNadu
Why Do Chief Security Officers Leave Jobs So Often? - Government Technology
Why would the DMV bar an adult from his scheduled driving test? Roadshow - East Bay Times

26/02/2021
45,000 patients at Covenant HealthCare potentially exposed by data breach - ABC 12
Berlin resident jailed for threatening to bomb NHS hospital unless Bitcoin ransom was paid - ZD Net
Chinese Hackers Target Tibetans with Malicious Firefox Extension - InfoSecurity
Closing the data divide: How to create harmony among data scientists and privacy advocates - Help Net Security
Comparing different AI approaches to email security - Information Age
Cyberattack rate per healthcare organisation up 37% in 2020: Report - India TV
Cybercrime groups are selling their hacking skills. Some countries are buying - ZD Net
Cyberpunk 2077 Developers get locked out of their systems after Ransomware attack - The Sports Rush
Data breach investigation in Indian Army - The Telegraph India
FBI Investigating Michigan School District Hack - InfoSecurity
Go malware is now common, having been adopted by both APTs and e-crime groups - ZD Net
Govt must help business tackle ransomware - Innovation AUS
Hackers hold jeweller’s Instagram account to ransom - Retail Jeweller
Hackers Leaked Secret Details of This Military Spy Plane - Popular Mechanics
Healthcare Cyber Attacks Rise by 55%, Over 26 Million in the U.S. Impacted - CPO Magazine
Healthcare security services firms tackle ransomware spike - TechTarget
ICS threat landscape highlights - Help Net Security
Identity Theft Attacks Channeled Millions in Jobless Claims to Inmates - TechNadu
LastPass for Android Is Using Seven Trackers and Several Risky Permissions - TechNadu
Lazarus Targets Defense Companies with ThreatNeedle Malware - ThreatPost
Legal firm to have accidentally leaked 15,000 cases via the cloud - Devops Online
Malicious Firefox extension allowed hackers to hijack Gmail accounts - Bleeping Computer
Massive rise in threats across expanding attack surfaces - Help Net Security
North Dakota hospital informs 1,500 patients of data breach - Becker's Health IT
Notices to go out to 1.3 million Washingtonians affected by unemployment data breach - The Seattle Times
Npower Ditches App After Credential Stuffing Attacks - InfoSecurity
Npower shuts down mobile app following data breach - Computing CO UK
Npower takes down app after customer data breach - Dorset Echo
One in four people use work passwords for consumer websites - Help Net Security
Oxford University lab with COVID-19 research links targeted by hackers - ZD Net
Oxford University says Covid-19 lab hacked, research not affected - Live Mint
Ransomware gang hacks Ecuador's largest private bank, Ministry of Finance - Bleeping Computer
Ryuk ransomware now self-spreads to other Windows LAN devices - Bleeping Computer
The rise of non-English language spear phishing emails - Help Net Security
TikTok Agrees to Pay $92 Million in Class-Action Settlement - TechNadu
TikTok agrees to pay $92 million to settle teen privacy class-action lawsuit - ZD Net
USA Third Most Affected by Stalkerware - InfoSecurity

25/02/2021
Amazon data breach fears: 'Millions of people's security' at risk – Insiders raise alarm - Express
Attackers are looking to exploit critical VMware vCenter Server RCE flaw, patch ASAP! - Help Net Security
Attackers disrupting COVID-19 efforts and critical supply chains - Help Net Security
C-level executives driving the adoption of MACH across their organizations - Help Net Security
Cloud, data amongst APAC digital skills most needed - ZD Net
Facebook bans Myanmar military-controlled accounts from its platforms - ZD Net
Five factors driving investment in IDV - Help Net Security
Hacking for Dollars: North Korean Cybercrime - Security Boulevard
Most Security Pros Think a WAF is High Maintenance - Security Boulevard
Newly Discovered APT Group “LazyScripter” Was Actively Spreading Malware Since 2018 - TechNadu
Russian Hackers Targeted Ukraine Authorities With Supply-Chain Malware Attack - The Hacker News
The Top Free Tools for Sysadmins in 2021 - The Hacker News
Twitter Discloses Four Networks of State-affiliated Information Operations - CISO Mag
Users largely unaware of the privacy implications of location tracking - Help Net Security
XDR: Next-Level Prevention and Detection - Security Boulevard
Why enterprises need rugged devices with integrated endpoint management systems - Help Net Security

24/02/2021
2021 will be the year of hybrid working: How can CTOs keep staff secure and productive? - Help Net Security
Airplane manufacturer Bombardier has disclosed a security breach, data leaked online - Security Affairs
Bitcoin Slips 17% to $45,000 as Caution Sweeps Over Crypto - E Hacking News
Breach Clarity Data Breach Report: Week of Feb. 22 - Security Boulevard
COVID pandemic causes spike in cyberattacks against hospitals, medical companies - ZD Net
Everything You Need to Know About Evolving Threat of Ransomware - The Hacker News
FedEx and DHL Express Hit with Phishing Attacks - E Hacking News
Google’s ‘Password Checkup’ Is Soon to Empower Android Users - TechNadu
Heavily used Node.js package has a code injection vulnerability - Bleeping Computer
LazyScripter hackers target airlines with remote access trojans - Bleeping Computer
Legal Firm Leaks 15,000 Cases Via the Cloud - InfoSecurity
Medical Data of 500,000 French Residents Leaked Online - InfoSecurity
Most businesses see state-sponsored cyberattacks as a major threat - Help Net Security
NASA and the FAA were also breached by the SolarWinds hackers - Bleeping Computer
NPC probes data breach in lending app - Business Mirror
Over 8 million COVID-19 test results leaked online - Bleeping Computer
Ransomware Attacks Double Against Global Universities - InfoSecurity
Ransomware gang extorts jet maker Bombardier after Accellion breach - Bleeping Computer
Researchers propose more secure and private mobile contact tracing - Help Net Security
Russian Networks Accused of Carrying Out Massive Cyberattack on Ukraine - CISO Mag
Security by Design Implementation Insights - InfoSecurity
Start Options, B2G founder indicted for alleged digital currency, investor fraud - ZD Net
Talos Says ‘Gamaredon’ May Be Something Bigger Than an APT - TechNadu
The Hidden Costs and Challenges of Log Data Storage Using a SIEM - Security Boulevard
Third-party risk management programs still largely a checkbox exercise - Help Net Security
Trolling, Sexual Harassment and Murder Threats: The Dark Social Web - InfoSecurity
U.S. municipalities are the perfect target for cybercriminals in 2021 - Help Net Security
Water Plant Infrastructure Hackers Go Kinetic - Security Boulevard

23/02/2021
Accellion FTA attacks, extortion attempts might be the work of FIN11 - Help Net Security
Adversaries exploit supply chains, double down on COVID-19 and ransomware - Help Net Security
Chief Legal Officers face mounting compliance, privacy and cybersecurity obligations - Help Net Security
Cloud Infrastructure Misconfigurations Take 25 Days to Fix - TechNadu
Experts Find a Way to Learn What You're Typing During Video Calls - The Hacker News
Firefox 86 gets a privacy boost with Total Cookie Protection - Bleeping Computer
FIN11 cybercrime group is behind recent wave of attacks on FTA servers - Security Affairs
Flash version distributed in China after EOL is installing adware - ZD Net
Google adds Password Checkup support to Android autofill - Bleeping Computer
Google's Password Checkup feature coming to Android - ZD Net
IBM addressed flaws in Java Runtime, Planning Analytics Workspace, Kenexa LMS - Security Affairs
IBM issues patches for Java Runtime, Planning Analytics Workspace, Kenexa LMS - ZD Net
Images Deleted on ‘Keybase’ Chat Are Still Retrievable - TechNadu
Keybase patches bug that kept pictures in cleartext storage on Mac, Windows clients - ZD Net
NurseryCam daycare cam service shut down after security breach - Security Affairs
PCI SSC releases PCI Secure Software Lifecycle (SLC) Standard 1.1 - Help Net Security
Physical cyber threats: What do criminals leave when they break in? - Help Net Security
Ransomware: Sharp rise in attacks against universities as learning goes online - ZD Net
Report: The Trouble With Cloud Security - Security Boulevard
Scammers Are Now Tricking Texans Through Impersonated Calls - TechNadu
Shadow Attacks Let Attackers Replace Content in Digitally Signed PDFs - The Hacker News
These hackers sell network logins to the highest bidder. And ransomware gangs are buying - ZD Net
Top cloud infrastructure risks faced by real-world organizations - Help Net Security
Transport for NSW confirms data taken in Accellion breach - ZD Net
Twitter removes accounts of Russian government-backed actors - Bleeping Computer
Ukraine: DDoS attacks on govt sites originated from Russia - Bleeping Computer
Worldwide zero trust security market size to reach $51.6 billion by 2026 - Help Net Security

22/02/2021
10 COVID-19-related lessons for future-ready cybersecurity - Help Net Security
30,000 Macs infected with new Silver Sparrow malware - ZD Net
An attacker was able to siphon audio feeds from multiple Clubhouse rooms - Security Affairs
BBC Reports Theft of 105 Electrical Devices - InfoSecurity
Chinese hackers cloned attack tool belonging to NSA’s Equation Group - ZD Net
Chinese Hackers Had Access to a U.S. Hacking Tool Years Before It Was Leaked Online - The Hacker News
Chinese hackers used NSA exploit years before Shadow Brokers leak - Bleeping Computer
Criminals leveraging shift to remote work to develop targeted attacks - Help Net Security
Data protection fines could be pushed to 2022 in Brazil - ZD Net
Database encryption: Protecting the crown jewels - Help Net Security
Exploring DevOps adoption among database pros - Help Net Security
Georgetown County has yet to recover from a sophisticated cyber attack - Security Affairs
Global Accellion data breaches linked to Clop ransomware gang - Bleeping Computer
How do I select a network monitoring solution for my business? - Help Net Security
How to Fight Business Email Compromise (BEC) with Email Authentication? - The Hacker News
Microphones, smartphones, laptops among items stolen from BBC - ComputerWeekly
New Silver Sparrow malware infects 30,000 Macs for unknown purpose - Bleeping Computer
NSA Equation Group tool was used by Chinese hackers years before it was leaked online - Security Affairs
Powerhouse VPN products can be abused for large-scale DDoS attacks - ZD Net
Python programming language hurries out update to tackle remote code vulnerability - ZD Net
Researchers uncovered a new Malware Builder dubbed APOMacroSploit - Security Affairs
RMIT claims 'significant progress' in bouncing back from Friday's IT outage - ZD Net
SHAREit fixes security bugs in app with 1 billion downloads - Bleeping Computer
Stored XSS bug in Apple iCloud domain disclosed by bug bounty hunter - ZD Net
Texas electric company warns of scammers threatening to cut power - Bleeping Computer
The state of multicloud adoption, its drivers, and the technologies enabling it - Help Net Security

21/02/2021
Everything You Need To Know About A Computer Virus - Mfidie
Far Cry 6 Beta Invites Are Phishing Scams, Says Ubisoft - Lowyat
Got A ‘Day Of Hack’ Email With Your Password? Here’s 3 Things To Do Now - Forbes
Kroger: Some pharmacy customer data impacted in vendor hack - Independent
Lakehead University shuts down campus network after cyberattack - Bleeping Computer
North Korea Accused Of Trying To ‘Hack’ Pfizer To Obtain Vaccine Data - Phil Sports News
There's a danger that hackers are becoming smarter than you - Digital Journal
Top Biden Adviser Suggests Russia Could See U.S. Response To SolarWinds Hack Within 'Weeks' - RadioFreeEurope
Warning: Google Alerts abused to push fake Adobe Flash updater - Bleeping Computer