NEWS: Fevereiro (13/02 - 19/02) - 07 Semana de 2022

Cyber Security and Information Security News - Daily Updates !!

19/02

10 Best Practices to Up Your Company's Email Security Level in 2022

Addressing Ransomware in Healthcare

CISA compiles list of free cybersecurity tools and services

CISA warns of hybrid operations threat to US critical infrastructure

Cybersecurity for musicians and the music industry

FNB warns of new ‘remote’ scams targeting customers in South Africa

Hackers infiltrate Microsoft Teams chats with malicious files, thousands of users affected

How cyber attackers used Bond film ‘No Time to Die’ to exploit fans

Patient data stolen from prominent Charlotte medical services provider, firm says

Scams Regarding Stimulus Payments to Be Aware Of

Tanah Merah Country Club fined $4,000 over data breaches

The Dark Side of the NFT: Why the Cyber Marketplace is Proving Controversial

Ubuntu Privilege Escalation Security Flaw Puts Millions Of Linux Users At Risk

US Agencies Seized Around $30M of Crypto Related to NetWalker Ransomware

18/02

74% of ransomware revenues go to hacker groups in Russia

Academics publish method for recovering data encrypted by the Hive ransomware

Beware of 'Quishing': Criminals Use QR Codes to Steal Data

Beware of the black cat: Dangerous ransomware on the prowl

Call for cyber resilience in financial services

Care homes and home care firms warned to protect themselves after Russian cyber attack

Cisco Secure Email gateways can be crashed using this simple bug

Conti ransomware gang takes over TrickBot malware operation

Critical Flaw Uncovered in WordPress Backup Plugin Used by Over 3 Million Sites

Croatian Police arrests minor over A1 Telecom data breach & ransom demand

Cyber threat intelligence software: How to choose the right CTI tools for your business

Cyberattack threat: Corporate users infected via Microsoft Teams

Cyberattacks knock out sites of Ukrainian army, major banks

Cyberattacks on oil surge as hackers target commodities

Data Breach Alert: NVE Bank

Data Breach Trends: Global Count of Known Victims Increases

Even when warned, businesses ignore critical vulnerabilities and hope for the best

FBI eyes ransomware profits with new cryptocurrency crimes unit

FlexBooker Data Leak Impacts Millions of End Customers

Hackers are using Microsoft Teams chat to spread malware

Hospitals on high alert for cyberattacks

How critical infrastructure can be protected from threats

How hackers could use popular virtual reality headsets to steal sensitive information

Identity Security Versus Identity Governance: The Difference And Why It Matters

Iranian hackers target VMware Horizon servers with Log4j exploits

Is backup and recovery enough for organizations to mitigate cybercrime?

Japan: 10% of hospitals have cybersecurity vulnerabilities

Joint International Advisory Warns of Increased Global Threat of Ransomware

Labour still suffering fallout from November cyberattack, activists claim

Linux developers patch security holes faster than anyone else, says Google Project Zero

Massive Bot Attack Generates 400 Million Requests in 4 Days

Microsoft aims to improve anti-phishing MFA for White House 'zero trust' push

Microsoft offers defense against 'ice phishing' crypto scammers

More C-suite engagement needed to mitigate cyber risk

Multiple vulnerabilities found in Snap-confine function on Linux systems

New Critical RCE Bug Found in Adobe Commerce, Magento

New Golang botnet empties Windows users’ cryptocurrency wallets

New Malware Found Infecting Microsoft Teams Meetings

NCSC joins data breach service in government programme

Optimizing Cybersecurity Awareness Training With Active Learning

Phishing scams: how not to fall hook, line and sinker

Popular e-cigarette store hacked to steal credit cards

PseudoManuscrypt Malware Spreading the Same Way as CryptBot Targets Koreans

Rail transit vulnerable to cyberattacks, experts say

Ransomware and threat actors are maturing, can you afford to be left behind?

Ransomware attack takes place every 11 seconds

Red Cross Cyberattack Links Back To A Zoho ManageEngine Vulnerability

Russians have been taking out US defense contractors

Software supply chain security still a pain point

Technology Companies Urged To Prepare For Cyberattacks Amid Ukraine Crisis

Think twice before scanning that QR code

Trickbot Targets 140,000 Victims in 14 Months

U.S. Cybersecurity Agency Publishes List of Free Security Tools and Services

University of Neuchâtel back online after cyberattack

Vishing Increased by 554% in 2021, Is It the Next Big Threat?

Watching Your Wallet: Only 3% of consumers freeze credit after data breach

What you need to know about credit card fraud

17/02

3 Common Cybersecurity Mistakes that Can Lead to Identity Theft

6 steps hospitals can take when handling cyberattacks

121 bank accounts linked to OCBC scam frozen by police, about S$2 million recovered: Desmond Tan

28,695 vulnerabilities were disclosed in 2021 – the highest number on record

AIB customers report 'very convincing' scam as Irish bank warns of latest attempt by fraudsters

Attackers use Microsoft Teams as launchpad for malware

Attacks using social media as a threat channel doubled in 2021 says new report

Baby Golang-Based Botnet Already Pulling in $3K/Month for Operators

Beware of business email compromise fraud

Busting the Myths About DevSecOps

Chainalysis Study Sheds Light On Where Ransomware Money Actually Goes

CISA ‘Shields Up’ Warning Underscores Foreign Cyberthreats

Cisco patches bug that could break its email security service with a single message

CrowdStrike Sees 82% Rise in Ransomware-Related Data Theft and Extortion

Crypto crime hit all-time high of $14 billion in 2021: Report

Crypto Insurance: What is it, How it Can Protect You

Cybersecurity: The Fourth Battleground

Cybersecurity Report Cites Most Effective Threats

Data Privacy Lawsuit Could Cost Meta $90m

Despite Rise in Cyber Threats, Businesses Still Lack Strong Identity Protection: Report

Seis tipos de sites que você não deve acessar no seu computador

16/02

5 blockchain security issues and how to prevent them

Amazon bank account scam: Warning issued after thousands hit by phishing emails

Amazon scam warning: Thousands of shoppers targeted through fraudulent emails

Apache Cassandra users urged to upgrade after vulnerability disclosed

As Concerns About Ukraine Mount, Gov’ts Issue Ransomware Alert

AWS's AI code reviewer now spots Log4Shell-like bugs in Java and Python code

Baltimore Conned Out of $375k

Baltimore is the latest victim of a phishing scam

Biometric Security is Here to Stay, But There are Challenges

BlackBerry Annual Threat Report uncovers growing shared economy in cyber criminal underground

BlackCat ransomware gang claims responsibility for Swissport attack

CaptureRx proposes $4.75M settlement over breach that affected 2.4 million patients

Centralia College Recovering from Ransomware Attack

CISA adds vulnerabilities in Adobe Magento, Google Chrome and Internet Explorer to catalog

Confidential patient data breached by East Suffolk and North Essex Foundation Trust (ESNEFT) staff

Critical VMware Bugs Open ESXi, Fusion & Workstation to Attackers

Cyber-War Exclusion Clauses in Cyber Insurance

Data breaches and your business

DDoS attacks cripple government and banking websites in Ukraine

DDoS attacks knock Ukrainian government, bank websites offline

Devious hackers are using NFT hype to hijack your PC and webcam

eBook: The Ultimate Guide to Client-Side Security

EU Data Protection Watchdog Calls for Ban on Pegasus-like Commercial Spyware

FBI warns of BEC attackers impersonating CEOs in virtual meetings

Fraud and scam activity hits all-time high

Google's Chrome OS Flex supporting Macs that Apple has long forgotten

Google doubles bug bounty rewards for Linux, Kubernetes exploits

Healthcare Companies Seek to Manage Risk of Ransomware Attacks, According to Report

Healthcare Data Breaches Impact 147k Illinoisans

High-Severity RCE Bug Found in Popular Apache Cassandra Database

Hong Kong watchdog warns of NFT, metaverse risks as top 2022 tech dangers

How Facial Scan Feature Of Financial Apps Can Put You At Risk And What You Can Do To Safeguard Yourself

How QR code ease of use has broaden the attack surface

How the initial access broker market leads to ransomware attacks

‘Human error’ caused by phishing email likely source of SEPA cyberattack

Hybrid Work Accelerated Fraud; Now, CSOs Are Taking a Seat at the Executive Table

Inside Look at an Ugly Alleged Insider Data Breach Dispute

Is your personal and medical data at risk?

LinkedIn phishing scams increase 232% since Feb 1: report

Maryland Authorities Sound Alarm Over Unemployment Insurance Scams

Moses Staff Hackers Targeting Israeli Organizations for Cyber Espionage

Most Critical Infrastructure Sectors Haven’t Adopted NIST Cybersecurity Framework

New Underactor tool reveals pixelated text to expose sensitive data

OTP Reduces Phishing by 85%

Open Source a Persistent Risk, Log4j Vulnerabilities Will Linger

Patient Data Compromised in Ransomware Attacks on Family Christian Health Center & Jackson County Hospital

PHI of 521,000 Individuals Compromised in Security Breach at Morley Companies

Poor Security Hygiene Organizations and Ransomware Attacks: Painful Math

Portugal 31st country most affected by cyber attacks

Q4 2021 Threat Landscape: Software Exploits Abound

Ransomware has Pushed Backup to the Breaking Point

Ransomware is Only Increasing: Is Your Organization Protected?

Red Cross: State hackers breached our network using Zoho bug

Red Cross Hack Linked to Iranian Influence Operation?

Remote access to businesses sold for huge profit in growing dark web operation

Report Confirms Baltimore, Md., Was Duped by Phishing Scam

Russia-Linked Hackers Bagged $400 Million in Crypto From Ransomware Attacks, Reports Chainalysis

ussian hackers raided defense contractors for two years, stole sensitive info: US

San Francisco 49ers confirms it fell victim to BlackByte ransomware on Super Bowl Sunday

Securing IoT from the ground up

Slovenia: Ransomware attack disrupted the broadcast of the country’s most popular television station

Supply chain shortages create a cybersecurity nightmare

The Alarming State of Cybersecurity in Healthcare

The seven themes driving the future of cybersecurity

Top 5 Data Security and Privacy Trends Revealed by Feds – and 5 Proactive Steps Employers Can Take Today

Traditional MFA is creating a false sense of security

Trellix releases first advanced threat research report, shows Log4j reach, ransomware activity, and more

Trickbot has infected 140,000-plus machines since late 2020

Trickbot Malware Targeted Customers of 60 High-Profile Companies Since 2020

Ukraine crisis: Russian cyberattacks could affect organisations around the world, so take action now

Ukraine Defense and Bank Networks DDoS-ed

VMware Issues Security Patches for High-Severity Flaws Affecting Multiple Products

WAFs can’t give organizations the security they need

What is Diversion Theft? Attack and Defense Strategies

Who’s The Next Victim? Predictions On The State Of Ransomware In 2022

15/02

Aeris Adds AI Capability to Secure IoT Platforms

Automate Windows tasks with this PowerShell certification bundle

Barclays: Scams Surged in Final Quarter of 2021

BlackBerry report reveals SMBs face increased threat of cyber crime

BlackCat (ALPHV) claims Swissport ransomware attack, leaks data

BlackCat gang claimed responsibility for Swissport ransomware attack

Cloud Security Protection for Your Apps and Network

Crypto Lender Agrees to Pay $100m in Fines

Cybersecurity: These countries are the new hacking threats to fear as offensive campaigns escalate

Energy, oil and utility sector most likely to pay ransoms

Experts Warn of Hacking Group Targeting Aviation and Defense Sectors

F5 Delivers Security Services via the Cloud

F5 launches new SaaS app security cloud, edge computing platform

Google almost doubles Linux Kernel, Kubernetes zero-day rewards

Google fixes a Chrome zero-day flaw actively exploited in attacks

Hacker ético ajuda corretora de criptomoedas Coinbase a corrigir falha crítica

How Smarter Identity Segmentation can Reduce Risk

Internet Society Data Leaked

Iranian hackers hit victims with ransomware to hide cyber espionage campaigns

Kali Linux 2022.1 released: New tools, kali-linux-everything, visual changes

Log4Shell: A retrospective

Marine Charged with Cyber-Stalking

Meta agrees to pay $90 million settlement in decade-old Facebook privacy suit

New MyloBot Malware Variant Sends Sextortion Emails Demanding $2,732 in Bitcoin

Oh! Canada—Truck Protest Donor PII Hacked

PyPI, NuGet, npm Flooded with Roblox and Fortnite Spam: What Draws OSS Attackers to Gamers?

QNAP extends security Updates for some EOL devices

Remote sex toys might spice up your love life – but crooks could also get a kick out of them

Researchers discover common threat actor behind aviation and defense malware campaigns

Researchers Link ShadowPad Malware Attacks to Chinese Ministry and PLA

Security: Google to pay up to $91,337 for exploits of new Linux and Kubernetes bugs

Setor de aviação é alvo de grupo hacker ‘primário’ desde 2017

Singapore to step up security measures in aftermath of phishing scams

Soaring losses accelerate investments in anti-fraud tech

Squirrelwaffle, Microsoft Exchange Server vulnerabilities exploited for financial fraud

Subsidizing website connected to Canadian driver fight hacked, contributor data released on the web

Sugar daddy dating site CEO uses his own creation to see the light

The importance of implementing a zero trust strategy

The rise of the super malicious insider: Yes, we need to worry

Three-Fifths of Cyber-Attacks in 2021 Were Malware-Free

Ucrânia sofre ataque hacker. E site de Ministério da Defesa cai

Ukraine Claims 'Hybrid Warfare' Already Underway

Ukraine: Military defense agencies and banks hit by cyberattacks

Ukraine Ministry of Defense confirms DDoS attack; state banks lose connectivity

Ukrainian military agencies, banks hit by DDoS attacks, defacements

Unskilled hacker linked to years of attacks on aviation, transport sectors

VMware patches released for vulnerabilities found during China's Tianfu Cup

Warning over mysterious hackers that have been targeting aerospace and defence industries for years

Whitepaper: 5 steps to improved MFA adoption

Why Red Team Testing is Crucial for Businesses

Windows 10 KB5010415 update released with 35 bug fixes, improvements

Windows 11's Android apps feature now available in the US

Windows 11 KB5010414 update brings long-awaited taskbar improvements

14/02

74% of stolen funds from ransomware attacks went to Russian-affiliated wallet addresses in 2021 (Report)

2021 Marred by Aggressive APTs; RDP Attacks up 897%

Abuse survivors £25k compensation after HIA Interim Advocate's Office data breach

Adobe: Zero-Day Magento 2 RCE Bug Under Active Attack

Attackers Publicly Demanding Ransom From Hacked Instagram Account Owners in a Brazen Phishing Campaign

Battling ransomware: The importance of cybersecurity for businesses

Beware of deepfakes, catfishing and social engineering on this Valentine’s Day

BlackByte Gang Launches Ransomware Attack on San Francisco 49ers

BlackByte Tackles the SF 49ers & US Critical Infrastructure

California community college suffers ransomware attack; shuts down email for ten days

Could Biology Hold the Clue to Better Cybersecurity?

Critical Security Flaws Reported in Moxa MXview Network Management Software

Data Breach at Morley Companies

Database mess up – US marketing firm exposed data of 7 million users

DOL says hundreds of thousands of Washingtonians impacted by data breach

Emergency Magento update fixes zero-day bug exploited in attacks

Fake Dating Sites Aiming to Swindle Your Money & Identity

Fake Windows website dropped Redline malware as Windows 11 upgrade

FBI: BlackByte ransomware breached US critical infrastructure

From the back office to the till: Cybersecurity challenges facing global retailers

Government agencies warn of sophisticated, high-impact ransomware

Hackers Injected Credit Card Skimmers to 500 Stores Running With Magento

Hackers leak names of ‘Freedom Convoy’ donors after GiveSendGo breach

Healthcare clearinghouse to pay $1.12M to settle data breach

How Roblox ‘Beamers’ Get Rich Stealing from Children

How To Play The Long Game In Cybersecurity

Is Your Company Vaccinated Against Ransomware?

Local Authority Sets Aside £380k for Cyber-Attack Recovery

Multi-billion-pound dealer group Emil Frey targeted by ransomware attackers

National Cybersecurity Alliance and PCI Security Standards Council Issue Joint Bulletin on Ransomware Attack

NFT Buyers Beware: Journey of a Crypto Scammer and How to Stop Them

Online fraud skyrocketing: Gaming, streaming, social media, travel and ecommerce hit the most

Over 28,000 Vulnerabilities Disclosed in 2021: Report

PCI SSC and the National Cybersecurity Alliance issue bulletin to highlight ransomware threat

Phone fraud more prevalent in Norway than other Nordics

QNAP extends critical updates for some unsupported NAS devices

Ransomware attacks drive Zero Trust security adoption — Sophos

Ransomware prevention: How organizations can fight back

Ransomware Threat Intel: You're Soaking In It!

Russia-Affiliated Addresses Received 74% of Ransomware Revenue Last Year: Chainalysis

San Francisco 49ers allegedly hit with a ransomware attack

Securing Remote Workers With Firewall-as-a-Service

Sensitive business addresses among 500,000 published in COVID data breach

Six tips for security teams to protect organizational data

Sophos expert on how ransomware attacks are driving ZTNA adoption

Spanish Police Arrest SIM Swappers Who Stole Money from Victims Bank Accounts

Sports brand Mizuno hit with ransomware attack delaying orders

Strengthening cyber resilience in a data driven age

The importance of implementing security scanning in the software development lifecycle

This is how scammers are using the energy crisis to con us

Threat Actors Organize: Welcome to Ransomware Inc

Three reasons why XDR should drive your IT strategy

Trend Micro blocks 94bil cyber-threats in 2021 as malicious actors stepped up their game

Tripwire for War? The Dangers of Cyberattacks and Their ‘Fuzzy' Rules of Engagement

UK, US and Australia issue joint alert on ransomware attacks

US companies hacked – Swisscom, Sunrise and Salt . affected

Using mobile networks for cyber attacks as part of a warfare strategy

Why Ransomware Groups Such as BlackCat Are Turning to Rust

Why ransomware is such a big risk to retail

13/02

Don’t be swindled in finding love

Enterprises Lag Behind MFA Usage Rates Despite Widespread Consumer Adoption

Germany’s Mabanaft Says First Test After Hack Wasn’t Successful

Global cybersecurity authority issue advisory against ransomware

Hackers exploiting new Microsoft, Oracle, Apple bugs: US agency

On Valentine's Day, cyber fraudsters find their way to scam couples, youngsters for holiday packages, gifts

Pune: Pharmacy company cheated of Rs 1.9 crore via phishing attack

Ransomware: these hackers release your data… in exchange for a like

Risk perception of growing cyber threat

San Francisco 49ers attacked by BlackByte ransomware group ahead of Super Bowl

San Francisco 49ers Hit By Ransomware Attack

San Francisco 49ers' network hit by gang's ransomware attack; team notifies law enforcement

Windows 10 warning: Terrifying bug is back and every PC owner needs to be on high alert

NEWS: Janeiro (06/02 - 12/02) - 06 Semana de 2022