NEWS: Julho (10/07 - 16/07) - 28 Semana de 2022
Cyber Security and Information Security News - Daily Updates !! Weekly Review

16/07
California legal system exposes details of concealed firearms permit holders
Cyber Attack Threat In North Korea Reaches Its Peak
Email scams are getting more personal
Hackers are targeting industrial systems with malware
Hackers pose as journalists to breach news media org’s networks
In 2022, what are the bitcoin scams that need to be avoided?
Lagarde, the target of a cyber-attack after receiving a fake SMS from Angela Merkel
Phishing emails may target shoppers with post-Prime Day offers
Rhode Island sewer-system operator hit by cyber attack
Scam warning: Britons lose £8,855 to credit card payment fraud - 'Act with caution!'
Shanghai data breach exposes suppression of 'white-hat' security research in China
Smart device warning: Homes 'exposed' to more than 12,000 attacks per week
Tiny Mantis Botnet Can Launch More Powerful DDoS Attacks Than Mirai
US Warns of Risk of Hiring N. Korean IT Workers
VN has lowest rate of financial cyber-attacks in Southeast Asia
Warning over fake energy bills as scammers target consumers amid cost of living crisis
What is phishing: Types of attacks and how to prevent them
Why is the public sector a prime target for cybercriminals?
15/07
A new group on the ransomware scene? BianLian claims to have hacked Mooresville Schools
Arquivos da CIA: quem é Joshua Schulte, hacker condenado por um dos maiores vazamentos da história
Attackers scan 1.6 million WordPress sites for vulnerable plugin
Chinese authorities summon Alibaba executives over data breach
Cyber security: Nigeria improving on global ranking – Pantami
Experts warn of attacks on sites using flawed Kaswara Modern WPBakery Page Builder Addons
Exploring Intelligent Ways to Redefine Defence Cybersecurity
Falling Cryptocurrency Market Stalling Cybercrime Activity
Financial Firms Failing to Fix Authentication Breaches
Firms Not Planning for Supply Chain Threats
Google: Poor Software Fixes Cause Half of all Zero-Days
Holy Ghost ransomware operation is linked to North Korea
How to address the ongoing risk of Log4j exploitation and prepare for the future
New Cache Side Channel Attack Can De-Anonymize Targeted Online Users
North Korean Hackers Targeting Small and Midsize Businesses with H0lyGh0st Ransomware
Outsourcing security is the only solution for many smaller teams
Q-Day: The problem with legacy public key encryption
Ransomware attacks on educational institutions shoot up sharply: Sophos’ report
RedAlert, LILITH, and 0mega, 3 new ransomware in the wild
Telangana: From 2022-23, these three government colleges will offer Cyber Security courses
TEXEM UK warns of emerging cyber-security threats in Nigeria
The proliferation of money mules and how behavioral biometrics can combat this form of fraud
This tiny botnet is launching the most powerful DDoS attacks yet
Tor Browser now bypasses internet censorship automatically
University of Windsor restores ‘vast majority’ of systems after security breach
14/07
1.9 Million Healthcare Records Breached in Ransomware Attack
10,000 organisations targeted by phishing attack that bypasses multi-factor authentication
A Simple Formula for Getting Your IT Security Budget Approved
Amazon-related phishing sites approach 900 on Amazon Prime Day
Apetito, Exela and G4S among seven alleged victims of ransomware gang Hive
Bandai Namco finally confirms massive cyber attack as ransomware outfit claims responsibility
‘BazarCall’ Malware Uses Call Centers to Target Small Businesses: CFC
BlackCat Ransomware Group Deploys Brute Ratel Pen Testing Kit
Businesses are adding more endpoints, but can’t manage them all
Conventional cybersecurity approaches are falling short
Counteracting Nation-State-Sponsored Cyberattack Groups
Cyber Essential’s Password-Based Authentication Requirements
Data Breaches Linked to Ransomware Declined in Q2 2022
Data of Nearly 2M Patients Exposed in Ransomware Attack on Healthcare Debt Collection Firm
Data Security's Secret: Data As An Asset
Deakin Uni Students Suffer Smishing Attack, Data Breach
Experts concerned about ransomware groups creating searchable databases of victim data
Fewer Fall Victim to Data Breaches as Attackers Switch to Business in 2022
Former CIA Engineer Convicted of Leaking 'Vault 7' Hacking Secrets to Wikileaks
French telecom operator La Poste Mobile suffers a Lockbit ransomware attack
HavanaCrypt ransomware poses as a Google software update app
How attackers abuse Quickbooks to send phone scam emails
ICO Calls for Review of Government “Private” Messaging
Is Cryptocurrency's Crash Causing Headaches for Ransomware Gangs?
Itapemirim é alvo de ataque hacker que pede R$ 250 milhões em Bitcoin
Journalists Emerge as Favored Attack Target for APTs
Journalists increasingly targeted with phishing attacks, while news media also used as lures
LendingTree class action alleges data breach exposed data of 200K customers
‘Lives are at stake’: hacking of US hospitals highlights deadly risk of ransomware
Mantis botnet behind the record-breaking DDoS attack in June
Microsoft: 10,000 Organizations Targeted in Large-Scale Phishing Campaign
Microsoft Details App Sandbox Escape Bug Impacting Apple iOS, iPadOS, macOS Devices
Microsoft is telling Mac users to get patching. Here's why
NATO Announces Virtual Rapid Response Cybersecurity Capability
New Retbleed speculative execution CPU attack bypasses Retpoline fixes
Only 26% of small businesses see cyber security as a ‘top priority’
Pakistani Hackers Targeting Indian Students in Latest Malware Campaign
PayPal phishing kit added to hacked WordPress sites for full ID theft
PayPal-themed phishing kit allows complete identity theft
Ransomware activity rose by 21% in Q2 - Report
Ransomware attack on US healthcare debt collector exposes 1.9m patient records
Ransomware attacks surge in education sector
Security Awareness and Training Crucial to Preventing Healthcare Phishing Attacks
Shanghai data breach details confirmed
Singapore talks up OT security, looks to add medical devices to labelling scheme
State-Backed Hackers Targeting Journalists in Widespread Espionage Campaigns
State-Sponsored Hackers Targeting Journalists
Tenet Healthcare Sued Over Data Breach; San Francisco Settles Data Breach Lawsuit
The future of SOCs: Automation where it matters
The industrial internet of things is still a big mess when it comes to security
The Top 7 Signs of a Phishing Scam
The Uber Tapes: can a data breach be ethical?
Twitter outage shows "Something went wrong" error message
Uniswap V3 LPs Lose Millions in Fake Token Phishing Attack
What these two companies learned from their cyberattack experiences
Will FIDO passwordless authentication save cyber security?
13/07
$8 million stolen in large-scale Uniswap airdrop phishing attack
A ransomware attack on a debt collection firm could be one of 2022’s biggest health data breaches
Afni, Inc. Announces Data Breach
Amazon Prime Day Shoppers Must Be Aware of Phishing: 897 Sites Are Live Imitating the Retail Giant
Android security: How this new malware has become a top smartphone threat
Australian university suffers data breach of 47,000 students
Bandai Namco says customer data may be at risk after ransomware attack
Best practices for cyber resilience
British Jeweller Graff Pays $7.5M to Cyber Hackers; Files Lawsuit Against Insurer
Check Point names most wanted malware
CSC Reports Spike in Fake Baby Formula, Semiconductor Domains
Cyber attackers strike flood monitoring system in Goa, India
Cyber Warfare Enters the Mainstream: Businesses Could Be Caught in Crossfire Without Preparation
Dark Data Management: Mitigating the Risks of the Invisible
Data breach at CHRISTUS Spohn detected
Data Breach Lawsuit: Gaming Company Razer Sues Capgemini for $7 Million Razer claims app
Data Privacy a Growing Consideration for Biometrics in IAM
Data-wiping attacks are on the rise
Education institutions increasingly being hit with ransomware: Report
Elden Ring publisher hit by ransomware attack
Feds Offer $5 Million for Information on North Korean Cyber Threats
Hackers increasingly targeting schools with ransomware, report says
HavanaCrypt Ransomware Masquerades as a Fake Google Update
Highmark Health, WellDyneRx, Others Report Healthcare Data Breaches
HMRC phishing scams and how to avoid them
How CIOs Can Prepare for Increasing Cybersecurity Threats in 2022
How to protect your small business from scammers
Human error remains a key challenge in Fintech security
Identifying blind spots: OT infrastructure vulnerability
Increased ransomware attacks on educational institutions
Internet Searches Reveal Surprisingly Prevalent Ransomware
Large-Scale Phishing Campaign Bypasses MFA
Maintaining Health Data Security, Resilience With Autonomous Governance
Mangatoon data breach: 23m user accounts stolen from poorly-secured Elasticsearch database
Marriott Hotels suffers another data breach
Microsoft Patch Tuesday: 86 flaws, four critical, one being used in attacks
Microsoft warning: This phishing attack can skip your defenses and has hit 10,000 firms already
Microsoft Warns of Large-Scale AiTM Phishing Attacks Against Over 10,000 Organizations
NCSC and ICO tell solicitors to rethink advice
New 'Retbleed' Speculative Execution Attack Affects AMD and Intel CPUs
New UEFI firmware flaws impact over 70 Lenovo laptop models
Over 4,000 confirmed ransomware incidents in 2021, task force says
Phone, email and Social Security numbers may have been stolen from Mooresville schools
Ransomware Activity Resurges in Q2
Researchers Uncover New Variants of the ChromeLoader Browser Hijacking Malware
San Francisco city, county medical data privacy $400K class action settlement
Schools among those hit hardest by ransomware
Summer Is Here, But Here’s Why It’s Not Time To Let Your Guard Down
Survey Surfaces Raft of Industrial IoT Security Challenges
The enemy of vulnerability management? Unrealistic expectations
The weaponizing of smartphone location data on the battlefield
Who are the best fraud fighters?
Why Hackers are Increasingly Targeting Digital Supply Chains
12/07
3 Critical Elements Of Effective Insider Risk Managemen
7 Effective Tips for Ransomware Negotiations
A look at the bring your own browser (BYOB) approach
A robust cybersecurity framework is necessary for UAE’s SME sector to thrive: Real Secure
Aerojet Rocketdyne Pays $9m Settlement Over Whistleblower Allegations
Are your site’s tracking technologies breaking the law?
As cyber threats evolve and persist, a pressing need to build greater resilience
Associated Eye Care Partners Issues Notifications About December 2020 Data Breach
Atacantes distribuem ransomware HavanaCrypt disfarçado de atualizações do Google
Australian maximum-security prison suffers a destructive cyber attack
Avoiding Death by a Thousand Scripts: Using Automated Content Security Policies
Bandai Namco, publicadora de Elden Ring, pode ter sido vítima de ataque ransomware
Bandai Namco Reportedly Subjected to Ransomware Attack
Better security helps employees to innovate
Biggest Security Concerns Around NFTs
British watchdogs warn on cyber-attack ransoms
Business lessons learned from the Colonial Pipeline attack
CFC warns of new ‘BazarCall’ ransomware attacks
Confronting the Cybersecurity Compliance Challenge
Criminals are now posing as security companies to trick you into installing malware
Cyber Insurers Looking for New Risk Assessment Models
Cybersecurity, data protection and inadequate IT budgets are top of mind for IT professionals
Data Breaches and Cyber Attacks Quarterly Review: Q2 2022
Debt-Collection Company Reports Data Breach Impacting 657 Providers
Digital security expert in cyber attack warning for Dundee residents
Disneyland Instagram, Facebook Accounts Defaced