NEWS: Fevereiro (13/02 - 19/02) - 07 Semana de 2022
Cyber Security and Information Security News - Daily Updates !!

19/02
10 Best Practices to Up Your Company's Email Security Level in 2022
Addressing Ransomware in Healthcare
CISA compiles list of free cybersecurity tools and services
CISA warns of hybrid operations threat to US critical infrastructure
Cybersecurity for musicians and the music industry
FNB warns of new ‘remote’ scams targeting customers in South Africa
Hackers infiltrate Microsoft Teams chats with malicious files, thousands of users affected
How cyber attackers used Bond film ‘No Time to Die’ to exploit fans
Patient data stolen from prominent Charlotte medical services provider, firm says
Scams Regarding Stimulus Payments to Be Aware Of
Tanah Merah Country Club fined $4,000 over data breaches
The Dark Side of the NFT: Why the Cyber Marketplace is Proving Controversial
Ubuntu Privilege Escalation Security Flaw Puts Millions Of Linux Users At Risk
US Agencies Seized Around $30M of Crypto Related to NetWalker Ransomware
18/02
74% of ransomware revenues go to hacker groups in Russia
Academics publish method for recovering data encrypted by the Hive ransomware
Beware of 'Quishing': Criminals Use QR Codes to Steal Data
Beware of the black cat: Dangerous ransomware on the prowl
Call for cyber resilience in financial services
Care homes and home care firms warned to protect themselves after Russian cyber attack
Cisco Secure Email gateways can be crashed using this simple bug
Conti ransomware gang takes over TrickBot malware operation
Critical Flaw Uncovered in WordPress Backup Plugin Used by Over 3 Million Sites
Croatian Police arrests minor over A1 Telecom data breach & ransom demand
Cyber threat intelligence software: How to choose the right CTI tools for your business
Cyberattack threat: Corporate users infected via Microsoft Teams
Cyberattacks knock out sites of Ukrainian army, major banks
Cyberattacks on oil surge as hackers target commodities
Data Breach Trends: Global Count of Known Victims Increases
Even when warned, businesses ignore critical vulnerabilities and hope for the best
FBI eyes ransomware profits with new cryptocurrency crimes unit
FlexBooker Data Leak Impacts Millions of End Customers
Hackers are using Microsoft Teams chat to spread malware
Hospitals on high alert for cyberattacks
How critical infrastructure can be protected from threats
How hackers could use popular virtual reality headsets to steal sensitive information
Identity Security Versus Identity Governance: The Difference And Why It Matters
Iranian hackers target VMware Horizon servers with Log4j exploits
Is backup and recovery enough for organizations to mitigate cybercrime?
Japan: 10% of hospitals have cybersecurity vulnerabilities
Joint International Advisory Warns of Increased Global Threat of Ransomware
Labour still suffering fallout from November cyberattack, activists claim
Linux developers patch security holes faster than anyone else, says Google Project Zero
Massive Bot Attack Generates 400 Million Requests in 4 Days
Microsoft aims to improve anti-phishing MFA for White House 'zero trust' push
Microsoft offers defense against 'ice phishing' crypto scammers
More C-suite engagement needed to mitigate cyber risk
Multiple vulnerabilities found in Snap-confine function on Linux systems
New Critical RCE Bug Found in Adobe Commerce, Magento
New Golang botnet empties Windows users’ cryptocurrency wallets
New Malware Found Infecting Microsoft Teams Meetings
NCSC joins data breach service in government programme
Optimizing Cybersecurity Awareness Training With Active Learning
Phishing scams: how not to fall hook, line and sinker
Popular e-cigarette store hacked to steal credit cards
PseudoManuscrypt Malware Spreading the Same Way as CryptBot Targets Koreans
Rail transit vulnerable to cyberattacks, experts say
Ransomware and threat actors are maturing, can you afford to be left behind?
Ransomware attack takes place every 11 seconds
Red Cross Cyberattack Links Back To A Zoho ManageEngine Vulnerability
Russians have been taking out US defense contractors
Software supply chain security still a pain point
Technology Companies Urged To Prepare For Cyberattacks Amid Ukraine Crisis
Think twice before scanning that QR code
Trickbot Targets 140,000 Victims in 14 Months
U.S. Cybersecurity Agency Publishes List of Free Security Tools and Services
University of Neuchâtel back online after cyberattack
Vishing Increased by 554% in 2021, Is It the Next Big Threat?
Watching Your Wallet: Only 3% of consumers freeze credit after data breach
What you need to know about credit card fraud
17/02
3 Common Cybersecurity Mistakes that Can Lead to Identity Theft
6 steps hospitals can take when handling cyberattacks
121 bank accounts linked to OCBC scam frozen by police, about S$2 million recovered: Desmond Tan
28,695 vulnerabilities were disclosed in 2021 – the highest number on record
AIB customers report 'very convincing' scam as Irish bank warns of latest attempt by fraudsters
Attackers use Microsoft Teams as launchpad for malware
Attacks using social media as a threat channel doubled in 2021 says new report
Baby Golang-Based Botnet Already Pulling in $3K/Month for Operators
Beware of business email compromise fraud
Busting the Myths About DevSecOps
Chainalysis Study Sheds Light On Where Ransomware Money Actually Goes
CISA ‘Shields Up’ Warning Underscores Foreign Cyberthreats
Cisco patches bug that could break its email security service with a single message
CrowdStrike Sees 82% Rise in Ransomware-Related Data Theft and Extortion
Crypto crime hit all-time high of $14 billion in 2021: Report
Crypto Insurance: What is it, How it Can Protect You
Cybersecurity: The Fourth Battleground
Cybersecurity Report Cites Most Effective Threats
Data Privacy Lawsuit Could Cost Meta $90m
Despite Rise in Cyber Threats, Businesses Still Lack Strong Identity Protection: Report
Seis tipos de sites que você não deve acessar no seu computador
16/02
5 blockchain security issues and how to prevent them
Amazon bank account scam: Warning issued after thousands hit by phishing emails
Amazon scam warning: Thousands of shoppers targeted through fraudulent emails
Apache Cassandra users urged to upgrade after vulnerability disclosed
As Concerns About Ukraine Mount, Gov’ts Issue Ransomware Alert
AWS's AI code reviewer now spots Log4Shell-like bugs in Java and Python code
Baltimore is the latest victim of a phishing scam
Biometric Security is Here to Stay, But There are Challenges
BlackBerry Annual Threat Report uncovers growing shared economy in cyber criminal underground
BlackCat ransomware gang claims responsibility for Swissport attack
CaptureRx proposes $4.75M settlement over breach that affected 2.4 million patients
Centralia College Recovering from Ransomware Attack
CISA adds vulnerabilities in Adobe Magento, Google Chrome and Internet Explorer to catalog
Confidential patient data breached by East Suffolk and North Essex Foundation Trust (ESNEFT) staff
Critical VMware Bugs Open ESXi, Fusion & Workstation to Attackers
Cyber-War Exclusion Clauses in Cyber Insurance
Data breaches and your business
DDoS attacks cripple government and banking websites in Ukraine
DDoS attacks knock Ukrainian government, bank websites offline
Devious hackers are using NFT hype to hijack your PC and webcam
eBook: The Ultimate Guide to Client-Side Security
EU Data Protection Watchdog Calls for Ban on Pegasus-like Commercial Spyware
FBI warns of BEC attackers impersonating CEOs in virtual meetings
Fraud and scam activity hits all-time high
Google's Chrome OS Flex supporting Macs that Apple has long forgotten
Google doubles bug bounty rewards for Linux, Kubernetes exploits
Healthcare Companies Seek to Manage Risk of Ransomware Attacks, According to Report
Healthcare Data Breaches Impact 147k Illinoisans
High-Severity RCE Bug Found in Popular Apache Cassandra Database
Hong Kong watchdog warns of NFT, metaverse risks as top 2022 tech dangers
How QR code ease of use has broaden the attack surface
How the initial access broker market leads to ransomware attacks
‘Human error’ caused by phishing email likely source of SEPA cyberattack
Hybrid Work Accelerated Fraud; Now, CSOs Are Taking a Seat at the Executive Table
Inside Look at an Ugly Alleged Insider Data Breach Dispute
Is your personal and medical data at risk?
LinkedIn phishing scams increase 232% since Feb 1: report
Maryland Authorities Sound Alarm Over Unemployment Insurance Scams
Moses Staff Hackers Targeting Israeli Organizations for Cyber Espionage
Most Critical Infrastructure Sectors Haven’t Adopted NIST Cybersecurity Framework
New Underactor tool reveals pixelated text to expose sensitive data
Open Source a Persistent Risk, Log4j Vulnerabilities Will Linger
PHI of 521,000 Individuals Compromised in Security Breach at Morley Companies
Poor Security Hygiene Organizations and Ransomware Attacks: Painful Math
Portugal 31st country most affected by cyber attacks
Q4 2021 Threat Landscape: Software Exploits Abound
Ransomware has Pushed Backup to the Breaking Point
Ransomware is Only Increasing: Is Your Organization Protected?
Red Cross: State hackers breached our network using Zoho bug
Red Cross Hack Linked to Iranian Influence Operation?
Remote access to businesses sold for huge profit in growing dark web operation
Report Confirms Baltimore, Md., Was Duped by Phishing Scam
Russia-Linked Hackers Bagged $400 Million in Crypto From Ransomware Attacks, Reports Chainalysis
ussian hackers raided defense contractors for two years, stole sensitive info: US
San Francisco 49ers confirms it fell victim to BlackByte ransomware on Super Bowl Sunday
Securing IoT from the ground up
Slovenia: Ransomware attack disrupted the broadcast of the country’s most popular television station
Supply chain shortages create a cybersecurity nightmare
The Alarming State of Cybersecurity in Healthcare
The seven themes driving the future of cybersecurity
Traditional MFA is creating a false sense of security
Trickbot has infected 140,000-plus machines since late 2020
Trickbot Malware Targeted Customers of 60 High-Profile Companies Since 2020
Ukraine crisis: Russian cyberattacks could affect organisations around the world, so take action now
Ukraine Defense and Bank Networks DDoS-ed
VMware Issues Security Patches for High-Severity Flaws Affecting Multiple Products
WAFs can’t give organizations the security they need
What is Diversion Theft? Attack and Defense Strategies
Who’s The Next Victim? Predictions On The State Of Ransomware In 2022
15/02
Aeris Adds AI Capability to Secure IoT Platforms
Automate Windows tasks with this PowerShell certification bundle
Barclays: Scams Surged in Final Quarter of 2021
BlackBerry report reveals SMBs face increased threat of cyber crime
BlackCat (ALPHV) claims Swissport ransomware attack, leaks data
BlackCat gang claimed responsibility for Swissport ransomware attack
Cloud Security Protection for Your Apps and Network
Crypto Lender Agrees to Pay $100m in Fines
Cybersecurity: These countries are the new hacking threats to fear as offensive campaigns escalate
Energy, oil and utility sector most likely to pay ransoms
Experts Warn of Hacking Group Targeting Aviation and Defense Sectors
F5 Delivers Security Services via the Cloud
F5 launches new SaaS app security cloud, edge computing platform
Google almost doubles Linux Kernel, Kubernetes zero-day rewards
Google fixes a Chrome zero-day flaw actively exploited in attacks
Hacker ético ajuda corretora de criptomoedas Coinbase a corrigir falha crítica
How Smarter Identity Segmentation can Reduce Risk
Iranian hackers hit victims with ransomware to hide cyber espionage campaigns
Kali Linux 2022.1 released: New tools, kali-linux-everything, visual changes
Marine Charged with Cyber-Stalking
Meta agrees to pay $90 million settlement in decade-old Facebook privacy suit
New MyloBot Malware Variant Sends Sextortion Emails Demanding $2,732 in Bitcoin
Oh! Canada—Truck Protest Donor PII Hacked
PyPI, NuGet, npm Flooded with Roblox and Fortnite Spam: What Draws OSS Attackers to Gamers?
QNAP extends security Updates for some EOL devices
Remote sex toys might spice up your love life – but crooks could also get a kick out of them
Researchers discover common threat actor behind aviation and defense malware campaigns
Researchers Link ShadowPad Malware Attacks to Chinese Ministry and PLA
Security: Google to pay up to $91,337 for exploits of new Linux and Kubernetes bugs
Setor de aviação é alvo de grupo hacker ‘primário’ desde 2017
Singapore to step up security measures in aftermath of phishing scams
Soaring losses accelerate investments in anti-fraud tech
Squirrelwaffle, Microsoft Exchange Server vulnerabilities exploited for financial fraud
Subsidizing website connected to Canadian driver fight hacked, contributor data released on the web
Sugar daddy dating site CEO uses his own creation to see the light
The importance of implementing a zero trust strategy
The rise of the super malicious insider: Yes, we need to worry
Three-Fifths of Cyber-Attacks in 2021 Were Malware-Free
Ucrânia sofre ataque hacker. E site de Ministério da Defesa cai
Ukraine Claims 'Hybrid Warfare' Already Underway
Ukraine: Military defense agencies and banks hit by cyberattacks
Ukraine Ministry of Defense confirms DDoS attack; state banks lose connectivity
Ukrainian military agencies, banks hit by DDoS attacks, defacements
Unskilled hacker linked to years of attacks on aviation, transport sectors
VMware patches released for vulnerabilities found during China's Tianfu Cup
Warning over mysterious hackers that have been targeting aerospace and defence industries for years
Whitepaper: 5 steps to improved MFA adoption
Why Red Team Testing is Crucial for Businesses
Windows 10 KB5010415 update released with 35 bug fixes, improvements
Windows 11's Android apps feature now available in the US
Windows 11 KB5010414 update brings long-awaited taskbar improvements
14/02
2021 Marred by Aggressive APTs; RDP Attacks up 897%
Abuse survivors £25k compensation after HIA Interim Advocate's Office data breach
Adobe: Zero-Day Magento 2 RCE Bug Under Active Attack
Battling ransomware: The importance of cybersecurity for businesses
Beware of deepfakes, catfishing and social engineering on this Valentine’s Day
BlackByte Gang Launches Ransomware Attack on San Francisco 49ers
BlackByte Tackles the SF 49ers & US Critical Infrastructure
California community college suffers ransomware attack; shuts down email for ten days
Could Biology Hold the Clue to Better Cybersecurity?
Critical Security Flaws Reported in Moxa MXview Network Management Software
Data Breach at Morley Companies
Database mess up – US marketing firm exposed data of 7 million users
DOL says hundreds of thousands of Washingtonians impacted by data breach
Emergency Magento update fixes zero-day bug exploited in attacks
Fake Dating Sites Aiming to Swindle Your Money & Identity
Fake Windows website dropped Redline malware as Windows 11 upgrade
FBI: BlackByte ransomware breached US critical infrastructure
From the back office to the till: Cybersecurity challenges facing global retailers
Government agencies warn of sophisticated, high-impact ransomware
Hackers Injected Credit Card Skimmers to 500 Stores Running With Magento
Hackers leak names of ‘Freedom Convoy’ donors after GiveSendGo breach
Healthcare clearinghouse to pay $1.12M to settle data breach
How Roblox ‘Beamers’ Get Rich Stealing from Children
How To Play The Long Game In Cybersecurity
Is Your Company Vaccinated Against Ransomware?
Local Authority Sets Aside £380k for Cyber-Attack Recovery
Multi-billion-pound dealer group Emil Frey targeted by ransomware attackers
NFT Buyers Beware: Journey of a Crypto Scammer and How to Stop Them
Online fraud skyrocketing: Gaming, streaming, social media, travel and ecommerce hit the most
Over 28,000 Vulnerabilities Disclosed in 2021: Report
PCI SSC and the National Cybersecurity Alliance issue bulletin to highlight ransomware threat
Phone fraud more prevalent in Norway than other Nordics
QNAP extends critical updates for some unsupported NAS devices