NEWS: Julho (17/07 - 23/07) - 29 Semana de 2022
Cyber Security and Information Security News - Daily Updates !! Weekly Review

23/07
23 terabytes of Chinese citizen’s personal data available for just 10 bitcoins
An Entire Canadian Town Is Being Extorted By Ransomware Cyber Criminals
Atlassian: Confluence hardcoded password was leaked, patch now!
Chrome use subject to restrictions in Dutch schools over data security concerns
City of Newport advising past, current employees of potential data loss
Cybersecurity Alert Issued For Scarily Realistic-Appearing YouTube Ad Malware On Google Search
Cybersmartness makes web safe for children
Data breaches can have ripple effects on businesses years after
Email scam warning issued across the UK and tips to help you avoid the phishing attacks
FBI seized $500,000 worth of bitcoin obtained from Maui ransomware attacks
Here are the top phone security threats in 2022 and how to avoid them
Industry Analyst Firm Ranks Accenture as Top Cybersecurity Service Provider
iPhone WARNING over 9 common mistakes that expose your device – they could cost you
Majority of Malaysian firms concerned about growing attack surface, says Trend Micro
Massive Microsoft 365 outage caused by faulty ECS deployment
Microsoft to begin from July 27 blocking Office Macros by default
Neopets Hacker Tries To Sell 69 Million Users' Account Information for Bitcoin
North Korean hackers attack EU targets with Konni RAT malware
Police warn PayPal and energy bill scams are in circulation
SonicWall fixed critical SQLi in Analytics and GMS products
T-Mobile agrees to give money to customers affected by 2021 data breach
T-Mobile settles to pay $350M to customers whose personal information was stolen
Top 7 NFT Scams to Look Out For
Uber admits massive 2016 data breach coverup, cooperates with feds
Uber avoids federal prosecution over data breach that exposed data of 57 million users
Verified Twitter Vulnerability Exposes Data from 5.4 Million Accounts
Zelle Scams: Protect Yourself to Stop Thieves in Their Tracks
22/07
A CISO’s ‘How-To Guide’ for Active Directory security
Atlassian: Confluence hardcoded password was leaked, patch now!
Bellingham Public Library investigating after data breach
Benson Health Notifies 28,913 Patients About May 2021 Data Breach
Bitdefender identifies 192 active ransomware families worldwide
Central Florida construction firm: Ex-employee snatched personal records in data breach
Cyber-attacks on Port of Los Angeles have doubled since pandemic
Cyberthreats impacting Australian and New Zealand businesses: Fortinet
Defending the Edge Data Center
Digital security giant Entrust breached by ransomware gang
Empire of Hacking: U.S. is the Biggest Threat to Cyber Security
Former Employee Brings Suit Against Hospital and HR Company Following Ransomware Attack
Global Firms Fear the Worst Over Risk Management Failures
Google Bringing the Android App Permissions Section Back to the Play Store
Google Chrome security update fixes 'high risk' flaws
Hacked Ukrainian Radio Stations Broadcast Fake News About President Zelensky’s Health
Hacker selling Twitter account data of 5.4 million users for $30k
Hackers breach Ukrainian radio network to spread fake news about Zelenskiy
How kitemarks are kicking off IoT regulation
How To Avoid 5 Nagging Security Issues With Blockchain
Identity-based fraud and ATO attacks
Interisle Reports a 61% Increase in Phishing in Annual Study
Israeli Spyware Vendor Uses Chrome 0day to Target Journalists
Kaspersky puts spotlight on malicious ransomware group Luna
LinkedIn most impersonated brand in phishing attacks
Majority of global companies struggle to assess cyber risks
Malware: On sale for the price of a pint on dark web
Malware-as-a-Service Creating New Cybercrime Ecosystem
Microsoft Resumes Blocking Office VBA Macros by Default After 'Temporary Pause'
Mixed Messages as Neopets Scrambles to Respond to Mega Breach
Neopets Data Breach Includes Personal Info Of Over 69 Million Accounts
New Biden administration rules give pipeline operators more flexibility to combat cyber threats
Nottinghamshire County Council fraud teams stopped two cyber attacks and prevented £527k in losses
One-third of businesses are reckless with customer data: poll
Orgs Struggling to Balance Security and End-User Experience
PayPal Used to Send Malicious “Double Spear” Invoices
Perth Festival, Black Swan Theatre and other arts organisations hit by major data breach
Quick Study: Cyber Resiliency and Risk
Ransomware Attacks Against Higher Ed Increase
Ransomware attacks threaten the NHS
Robots Join the Fight for Cyber Security
Small businesses are easy targets for cyberattacks: Report
Social Engineering Threats And Mitigation
SonicWall: Patch critical SQL injection bug immediately
Spinneys suspects some customer data was compromised in last week’s cyber attack
Tackling The Double Threat From Ransomware And Stolen Credentials
The biggest cyber-crime threat is also the one that nobody wants to talk about
The top 5 most dangerous habits online
Top 5 phishing statistics of 2022
Ukrainian Radio Stations Hacked to Broadcast Fake News About Zelenskyy's Health
Unprotected Entry into the Metaverse Brings Accrued Cyber Risks
USA’s plan to build its cyber workforce, improve skills-based pathways to cyber jobs
Visibility into runtime threats against mobile apps and APIs still lacking
WannaCry five years on: lessons we can learn
What Is Single Sign-On (SSO) and What Are Its Benefits?
21/07
10 Ways to Prevent Ransomware Attacks on Your Data
60% of IT leaders are not confident about their secure cloud access
8220 Gang Cloud Botnet infected 30,000 host globally
37,800 people sent privacy breach notifications linked to N.L. cyberattack
Albania Continues Investigations into Cyberattack as Online Services Resume
Apple fixes multiple flaws in iOS, iPadOS, macOS, tvOS, and watchOS devices
AppViewX raises $20 million to help businesses reduce risk
Ataque de ransomware cai 34% no 2º tri, mas quadro é preocupante
Atlassian fixes critical flaws in Confluence, Jira, Bitbucket and other products, update quickly!
Atlassian Rolls Out Security Patch for Critical Confluence Vulnerability
Banks have opportunity to plug digital identity gap in metaverse
Biggest Cyberattacks So Far this Year, Explosive Ransomware Protection Market Forecast
Cassava unveils its first cyber security centre in SA
China Fines Didi Global $1.19bn for “Heinous” Data Security Infringements
Chrome zero-day used to infect journalists with Candiru spyware
Client-side CSAM scanning proposal raises security and privacy fears
CloudMensis backdoor spies on users of compromised Macs
Costa Rica Disables Servers due to Cyber-Attack Threat
Council blocks TWO cyber attacks targeting over £500,000
Cresce o número de ataques de ransomware nos últimos anos
Cyber security school launched in PH
Didi slapped with $1.1B fine for breaching China data security laws
Employee or employer: who’s to blame for a cyber breach?
European OEM ropes in L&T Tech to prevent cyber attack
Google blocks site of largest computing society for being ‘harmful’
Governments must do more to fight ransomware, says insurance industry
Hacker enfrenta julgamento por serviço de aluguel de vírus
Hackers invadem perfil da revista Exame no Twitter para vender NFTs
Hackers Target Ukrainian Software Company Using GoMet Backdoor
Hackers Use Evilnum Malware to Target Cryptocurrency and Commodities Platforms
How Conti ransomware hacked and encrypted the Costa Rican government
How organizations can implement a complete data strategy
Inmarsat deploys cybersecurity guidance
Introducing the book: Managing the Dynamic Nature of Cyber Security
Lightning Framework, a previously undetected malware that targets Linux systems
Magecart Supply Chain Attacks Hit Hundreds of Restaurants
Microsoft adds default protection against RDP brute-force attacks
Microsoft starts blocking Office macros by default, once again
New ‘Lightning Framework’ Linux malware installs rootkits, backdoors
New Linux Malware Framework Lets Attackers Install Rootkit on Targeted Systems
New Redeemer ransomware version promoted on hacker forums
Ransomware attacks drop 34% in Q2, but experts warn of potential ‘uptick’
Ransomware attacks slowing as 2022 wears on
Ransomware Compromises Slump 34% in Q2
Ransomware Luna criptografa sistemas Windows, Linux e ESXi
Siemens Energy to list its cyber security tool with AWS Marketplace
The importance of secure passwords can’t be emphasized enough
The Kronos Ransomware Attack: What You Need to Know So Your Business Isn't Next
The New Weak Link in SaaS Security: Devices
The rise and continuing popularity of LinkedIn-themed phishing
Threat actors target software firm in Ukraine using GoMet backdoor
Time to update all of your Apple gadgets ASAP
UK Regulator Issues Record Fines as Financial Crime Surges
US Government Launches Campaign to Boost Cybersecurity Apprenticeships
Windows 11 now blocks RDP brute-force attacks by default
20/07
96% of Organizations Faced Phishing Attempts in the Past Year, New Survey Reveals
Akamai uncovers sophisticated PayPal phishing scam
Albanian government services suffer ‘massive’ cyber attack
Benefits of Data Loss Prevention
Beware Web3 – The Wild West Has Gone Online
BJC Healthcare Settles Data Breach Lawsuit Stemming from 2020 Phishing Attack
Black Basta ransomware gang claims responsibility for Knauf cyberattack
Browser exploits: A Concerning Revival Led by the Lazarus Group
Building a cyber resilience strategy for a geopolitically unstable world
China to fine Didi more than $1 billion for data breaches: Report
Conti’s Reign of Chaos: Costa Rica in the Crosshairs
Cyber risk management: Navigating an unpredictable business environment
Cyberattacks Increased by 60% In Tourism Sector This Year
Data breach average cost tops $9.5M, according to report
Deep learning delivers proactive cyber defense
DOJ Recovers $500K Paid to North Korean Ransomware Actors
Fake Passports are Sold on the Dark Web with Stolen Identity Data
FBI recovers $500,000 healthcare orgs paid to Maui ransomware
Four new ransomware groups to be aware of
Government claims 7726 service has cut scam texts but consumers still report high fraud levels
GPS tracker exploit puts the world’s most high-value individuals in real-world danger
Hacked ATMs Lead to Compromised Personal Information
HavanaCrypt Ransomware Poses as Google Update
How DevOps Teams Can Defend Against API Attacks
Huntress acquires security awareness training platform Curricula for $22 million
Israeli cybersecurity researchers: New phishing scam mimics popular language learning apps
June 2022 Healthcare Data Breach Report
Justice Department Seizes $500K From North Korean Ransomware Group
Legal Experts Concerned Over New UK Digital Reform Bill
LinkedIn most faked brand in Phishing attacks
Magecart Serves Up Card Skimmers on Restaurant-Ordering Systems
Minors using Discord servers to spread malware for cash
New Luna ransomware encrypts Windows, Linux, and ESXi systems
New Rust-based Ransomware Family Targets Windows, Linux, and ESXi Systems
Only 1/4 of small businesses see cybersecurity as a top priority
Phishing Scams Were the Biggest Contributor to Singapore’s Cyber Attacks
Popular business web apps fail to implement critical password requirements
QR Codes and CAPTCHA Tests: New Scams in a Digital Age
Ransomware is indiscriminatory – prepare for everything to fail
Russian Hackers Target Ukrainians Via Copycat DoS App
Scam warning: Canadians receiving fake $90 Rogers rebate after outage
Surge in online scams, hacks expected ahead of FIFA World Cup, expert warns
Tesco warns millions of shoppers over voucher scam that preys on cost of living crisis
The fallout from Alibaba’s huge data breach
The Pandemic’s Lasting Effects: Are Cyber Attacks One Of Them?
The past, present and future of Metasploit
The top 10 reasons your employees are falling prey to phishing scams
This Cloud Botnet Has Hijacked 30,000 Systems to Mine Cryptocurrencies
Unpatched GPS Tracker Bugs Could Let Attackers Disrupt Vehicles Remotely
Unprotected entry into the Metaverse brings accrued cyber risks
US recovers half million dollars stolen by North Korean hackers from hospitals
Vulnerabilities in popular GPS tracker could allow hackers to remotely stop cars
What threats and challenges are CISOs and CROs most focused on?
Why SBOMs aren’t the silver bullet they’re portrayed as
19/07
10 Cybersecurity Compliance Statistics That Show Why You Must Up Your Cybersecurity Game
82% of global insurers expect the rise in cyber insurance premiums to continue
20K jobs up for grabs at Indy cybersecurity conference
Air-gapped systems leak data via SATA cable WiFi antennas
Albanian Government Hit by “Massive Cyber-Attack”
Belgium says Chinese hackers attacked its Ministry of Defense
Brazil surpasses US in breached users in Q2 2022
Chinese authorities to fine Didi $1 billion following cyber security review
CISA Post-Quantum Cryptography Initiative: Too Little, Too Late?
CISA Set to Open London Office
Cloud Native and the Hype of Security
Cyber Safety Review Board classifies Log4j as ‘endemic vulnerability’
Cyber security experts issue warning after latest breach
Cyber Security Insurance Market May See a Big Move : Major Giants AXA, Beazley, Allianz
Cyber-war game case study: Preparing for a ransomware attack
Data breach at debt collector affects almost 2M healthcare patients
Data is the new oil — how companies can shield themselves from cyber attacks
Data Protection Investments Fail to Blunt Ransomware Impact
Defence Cyber Security Market Report, Latest Trends, Industry Opportunity & Forecast to 2028
Don’t Trust But Verify: Getting to Zero Trust for OT and IoT
Druva Unveils Industry’s First Data Posture and Observability Innovations for Cyber Attack Readiness
EU warns of Russian cyberattack spillover, escalation risks
Experts Uncover New CloudMensis Spyware Targeting Apple macOS Users
FBI: Fake Crypto Apps Have Cost Investors $43m
First CSRB Report Tackles on Ongoing Log4j Risk
Former Conti Actors Remain Active in Cybercrime Underworld
Fort Hays State University (FHSU) earns redesignation as a Center for Excellence in Cyber Defense
Google deal to buy Mandiant clears key antitrust hurdle
Hacker tenta extorquir dinheiro ao Roblox mas a plataforma recusou cooperar
Hackers russos miram em países da OTAN em novo cibercrime
Hackers se passam por funcionários do Twitter para roubar contas de jornalistas
Hackers steal 50,000 credit cards from 300 U.S. restaurants
Hackers turn to cloud storage services in attempt to hide their attacks
Health Care System Still Vulnerable to Cyber Attack: Opposition
How adversaries are leveraging pentesting tools to launch attacks
How Weak Passwords Lead to Ransomware Attacks
India records 36.29 lakh cyber security incidents since 2019 till June this year, says Govt
Juha Saarinen: Maybe don't listen to cyber security experts?
Malicious Android apps with 300K installs found on Google Play
New Air-Gap Attack Uses SATA Cable as an Antenna to Transfer Radio Signals
New CloudMensis malware backdoors Macs to steal victims’ data
New MacOS Backdoor Communicates Via Public Cloud
Popular vehicle GPS tracker gives hackers admin privileges over SMS
Preventing the next cyber attack incident at your local school
Removing the blind spots that allow lateral movement
Russian hackers use fake DDoS app to infect pro-Ukrainian activists
Russian SVR hackers use Google Drive, Dropbox to evade detection
Security Experts Warn of Two Primary Client-Side Risks Associated with Data Exfiltration and Loss
Sensitive Roblox data stolen in yet another cyber attack
Steps to strengthen the cyber attack recovery position
The benefits of cyber security awareness training within universities
Trellix underlines MSP cyber threats
TSE prevê ataque hacker no primeiro turno das eleições
US Cybersecurity Agency CISA to Open London Office
What NATO’s virtual rapid response cyber capability means for the fight against cyber warfare
Why diverse recruitment is the key to closing the cyber-security skills gap
Why the cloud is the new rainmaker for cybersecurity
18/07
5 Cybersecurity Questions CFOs Should Ask CISOs
2021 was worst year for ransomware attacks. How FBI says cybercrimes affected Idahoans
A Closer Look At Wiper Malware
A New Cybercrime Mindset: The Web Attack Lifecycle
Academic health center pays $875K fine in data breach
Albania: Cyber Attack, President Calls on Institutions to Take Measures
Albania Blames ‘Massive Cyber Attack’ as Govt Servers go Down
Beware of password-cracking software for PLCs and HMIs!
BJC Healthcare data breach class action settlement
Centerspace, LP Files Notice of Data Breach Following Unauthorized Access to Consumer Data
Colorado police investigating ransomware attack on small town
Cybersecurity is a journey, not a destination
Cybersecurity Takes Center Stage
Data breach at debt collector affects almost 2M healthcare patients
Data of millions at risk if Malaysia faces cyberattack
Ex-hacker da CIA condenado a 80 anos de prisão por divulgar segredos
Experts Notice Sudden Surge in Exploitation of WordPress Page Builder Plugin Vulnerability
Flipkart’s Cleartrip confirms data breach after hackers put data for sale
Global ransomware activity surges again following a short decline in Q1
GoTyme Bank ‘heavily’ investing in cyber security
Hackers pose as Twitter employees, journalists in new breach tactics
Healthcare is now the industry most targeted by hackers
How the cybersecurity skills gap threatens your business
How to prepare your organization for a Slack or Office 365 breach
Industrial cybersecurity leaders are making considerable headway
Information Systems Are Intact, Says Albanian Government after Cyber Attack
Lawson Products, Inc. Reports Data Breach Affecting a Large Number of Data Types
Let’s Unpack the 10 Immutable Laws of Security Administration
Luxury jeweller sues insurer over cyber ransom
New phishing scams are tricking users into sharing their Twitter and Discord login information
New Study Finds Most Enterprise Vendors Failing to Mitigate Speculative Execution Attacks
NFT Artist DeeKay Twitter Hacked, Phishing Attack Steals $150k
Northcentral University Announces Data Breach Affecting Sensitive Student Information
Online payment fraud losses to exceed $343 billion
OpenDocument malware scams target hotels across the world
Pakistan-backed hacker outfit targets Indian students, educational institutions: Report
Pegasus Spyware Used Against Thailand’s Pro-Democracy Movement
Pegasus Spyware Used to Hack Devices of Pro-Democracy Activists in Thailand
Public Cloud Customers Admit Security Challenges
Ransomware Attempts Flag as Payments Also Decline
Roaming Mantis hits Android and iOS users in malware, phishing attacks
SEC’s cybersecurity proposals: Why visibility into risk is at the heart of it
SecurityWeek Analysis: Over 230 Cybersecurity M&A Deals Announced in First Half of 2022
Singapore: At least S$12,500 lost this month to Netflix phishing scams
Site Premint é alvo de ataque hacker que rouba NFTs dos usuários
Social Engineering: Definition, Examples, Types of Attacks and How to Prevent Them
Survey Suggests Zero-Trust IT Transition Will Take Time
The case for physically destroying — and not just wiping clean — old hard drives
The first formal verification of a prototype of Arm CCA firmware
The Potential Of Blockchain Technology To Address Healthcare’s Biggest Challenges
These moonlighting hackers are using ransomware against 'random' targets
TikTok Engaging in Excessive Data Collection
Treating Healthcare’s Insider Threat
TSE trabalha com previsão de ataque hacker no dia da eleição
What to look for when taking out a cyber insurance policy
Zero-day attacks climb as hackers get more sophisticated
17/07
A cyber threat to the users’ data on Google’s search engine is leaking private information
Albania Shuts Down Digital Services and Government Websites after Cyber Attack
Banks need best practices to fight rising cyberattacks
Cost of living warning: Energy bill scams on the rise - ‘Be extra vigilant!’
Email scams are getting so personal they even fool cybersecurity experts
GoDaddy Reports Data Breach: Impacted Customer Data from 1.2 Million Individuals
Hackers pedem R$250 milhões em bitcoins para liberar sistema de prefeitura do ES
Hacker Posts Internal Roblox Employee Documents Online
‘It looks so legit!’ Santander scam email includes full name and account number
Juniper Releases Patches for Critical Flaws in Junos OS and Contrail Networking
Lloyds Bank scam warning: Personal detail to spot that indicates an email is fake
Microsoft discovers email hack that circumvents two-factor authentication
New malware puts your banking applications at risk; know how to protect yourself
North Korean Hackers Using H0lyGh0st Ransomware To Attack & Demand 1.2 to 5 Bitcoins
Office Phishing Attack circumvents multi-factor authentication
Open source security needs automation as usage climbs amongst organisations
Spain: Guardia Civil warns of Whatsapp Coca-Cola scam offering mobile users €500 of fuel for €2
The State of Security: Malware in 2022
Using internet safely to tackle rising cyberattacks
What US Journalists Need To Know About The Foreign Hackers Targeting Them