NEWS: Junho/Julho (27/06 - 03/07) - 26 Semana de 2021
Cyber Security News !!!!

03/07
Android Apps with 5.8 million Installs Caught Stealing Users' Facebook Passwords - The Hacker News
Coop supermarket closes 500 stores after Kaseya ransomware attack - Bleeping Computer
Cyberattack shuts Swedish supermarket giant - Bangkok Post
Diavol ransomware appears in the threat landscape. Is it the work of the Wizard Spider gang? - Security Affairs
Hundreds of businesses, from Sweden to US, affected by cyberattack - The Straits Times
Insurers warned against cyberattacks - The Manila Times
Kaseya Supply-Chain Attack Hits Nearly 40 Service Providers With REvil Ransomware - The Hacker News
Kaseya VSA supply-chain ransomware attack hit hundreds of companies - Security Affairs
Latest ransomware attack appears to hit hundreds of American businesses - The Guardian
Nearly 200 companies targeted by cyber attacks in the United States - New Magazin research
Ransomware Attack on Florida IT Firm Hits 200 Companies - The Epoch Times
Ransomware Hits Hundreds of US Companies, Security Firm Says - Edge Media Network
Russia-linked group hacks 200 businesses with ransomware - Windsor Star
US chemical distributor shares info on DarkSide ransomware data theft - Bleeping Computer
Windows 11 Security Stink Reveals Massive Microsoft Ransomware Red Herring - Forbes

02/07
1 Thing Most Cyber Breaches Have in Common: Lack of Education - CNYBJ
Actively exploited PrintNightmare zero-day gets unofficial patch - Bleeping Computer
Babuk ransomware returns to target corporate networks - ITPro
Bengaluru cyber security firm claims data breach in Tamil Nadu PDS - The Indian Express
CISA Offers New Mitigation for PrintNightmare Bug - ThreatPost
Cyber attackers up the ante on embattled IT teams - ComputerWeekly
Cybercrime demands a new approach to cloud security - Techradar Pro
DC and Marvel superheroes top breached password lists - Tech Republic
Decision makers divided about cloud technology adoption - Help Net Security
Diavol ransomware linked to Trickbot botnet - ITPro
EA Ignored Vulnerabilities For Months Despite Warnings And Breaches - Digit
Firmware vulnerabilities in Netgear routers created network security risk - The Daily Swig
How facial recognition solutions can safeguard the hybrid workplace - Help Net Security
How mobile operators view security in the 5G era - Help Net Security
How the increase in work from home will impact corporate cybersecurity - ITPro Portal
International Action Cuts Off Access to VPN Service Used By Ransomware Groups - GTSC
Is your smartphone really safe from hackers? Here’s how to be sure - Metro
LinkedIn data breach: Data of 700 million users put for online sale - Technowize
Major South African Insurance Company Suffers Data Breach - Softpedia News
Microsoft adds second CVE for PrintNightmare remote code execution - ZDNet
Microsoft warns of critical PowerShell 7 code execution vulnerability - Bleeping Computer
Mongolian Certificate Authority Hacked to Distribute Backdoored CA Software - The Hacker News
Most enterprises started a modernization program due to the pandemic - Help Net Security
New Mirai-Inspired Botnet Could Be Using Your KGUARD DVRs in Cyber Attacks - The Hacker News
Police warn Worcestershire residents about scam calls that appear genuine - Evesham Journal
Practicefirst Notifies Affected Individuals of Data Incident - Cision PR Newswire
Privacy Takes a Hit In the High Court - Security Boulevard
Ransomware gangs are taking aim at 'soft target' industrial control systems - ZDNet
Record Year for Investigators in Healthcare Fraud Cases - InfoSecurity
Russia's APT28 Blamed for Brute Force Campaign Using Kubernetes - InfoSecurity
Single page web applications and how to keep them secure - Help Net Security
Smart Home Experiences Over 12,000 Cyber-Attacks in a Week - InfoSecurity
The Countdown Towards Zero Trust and MFA - InfoSecurity
The Ransomware Attack Is Blocking Health Care And Hospitals In Ireland - Swords Today
UK NCSC, US Agencies, Warn Of Russian Cyber Campaign - Silicon
US Department of Homeland Security toasts success of warp-speed drive to diversify cybersecurity workforce - The Daily Swig
US insurance giant AJG reports data breach after ransomware attack - Bleeping Computer
What people don’t know about negotiating a cyber attack ransom - Insurance Business
Why Healthcare Keeps Falling Prey to Ransomware and Other Cyberattacks - ThreatPost

01/07
3 Steps to Strengthen Your Ransomware Defenses - The Hacker News
9 Trojan Apps With 5.8 Million Downloads Discovered on Play Store - TechNadu
Chinese hacking group impersonates Afghan president to infiltrate government agencies - ZDNet
CISA: Disable Windows Print Spooler on servers not used for printing - Bleeping Computer
Criminal VPN Service Dismantled by Global Police - InfoSecurity
Employers permanently moving to a more flexible work model - Help Net Security
Enhancing cloud security with a two-step cryptography technique - Help Net Security
eSafety says tweeting commisioner will not qualify as a formal Online Safety Act request - ZDNet
Exploit for Critical Windows Flaw Is Out but a Fixing Patch Isn’t - TechNadu
Facebook Sues 4 Vietnamese for Hacking Accounts and $36 Million Ad Fraud - The Hacker News
First-of-its-Kind SASE Accreditation Course Launched - InfoSecurity
Freshly scraped LinkedIn data of 88,000 US business owners shared online - Security Affairs
Google Chrome will get an HTTPS-Only Mode for secure browsing - Bleeping Computer
Gozi Virus Arrest Made in Colombia - InfoSecurity
Hackers breached a data server of the University Medical Center - Security Affairs
IndigoZebra APT Hacking Campaign Targets the Afghan Government - The Hacker News
Industrial facilities progressively at risk of data theft and ransomware attacks - Help Net Security
Infosec Community Posts Solidarity Bikini Pics After Twitter Troll Outburst - InfoSecurity
Microsoft found auth bypass, system hijack flaws in Netgear routers - Security Affairs
NSA: Russian GRU hackers use Kubernetes to run brute force attacks - Bleeping Computer
PrintNightmare: Windows Zero-Day Accidentally Disclosed by Chinese Researchers - InfoSecurity
Protecting your organizations against BEC and other email attacks - Help Net Security
Putin Orders Twitter to Open Russian Office - InfoSecurity
Resilience by design: What security pros need to know about microlearning - Help Net Security
Rethinking Application Security in the API-First Era - The Hacker News
Robinhood ordered to pay $70 million over ‘harm’ caused to ‘millions' of traders - ZDNet
Secure AI is the foundation of trustworthy AI - Help Net Security
Twitter now lets you use security keys as the only 2FA method - Bleeping Computer
US CISA releases a Ransomware Readiness Assessment (RRA) tool - Security Affairs
WhatsApp Introducing “View Once” Feature for Disappearing Messages - TechNadu

30/06
An organization’s security posture will benefit from increased coordination - Help Net Security
‘Byju’ User Details Leaked Online Due to Server Misconfiguration - TechNadu
Chief Compliance Officers must embrace new leadership responsibilities - Help Net Security
Data Breaches Rise as Organizations Shift to the Cloud - Security Boulevard
Facebook Is Suing Account Hackers and Advertisement Scammers - TechNadu
GitHub Launches 'Copilot' — AI-Powered Code Completion Tool - The Hacker News
IBM expands its 5G partnerships with Verizon and Telefonica by leveraging cloud and AI - TDH
JFrog acquires Vdoo to provide security from development to device - ZDNet
Latest Phishing Campaign Steals Jobs Portal User Credentials - TechNadu
Linkedin undergoes Data breach, Personal Details of 92 percent people being sold online - TDH
Major threats to cloud infrastructure security include a lack of visibility and inadequate IAM - Help Net Security
McDonald’s Says It Collects No Biometric Information on Drive-Thrus - TechNadu
New data security rules instituted for US payment processing system - ZDNet
Researchers Leak PoC Exploit for a Critical Windows RCE Vulnerability - The Hacker News
Researchers Say ‘Voila’ App Is Safe to Use but Not Free of Risks - TechNadu
REvil’s Linux Version Targets VMware ESXi Virtual Machines - Security Boulevard
Russian-based DoubleVPN seized by law enforcement - Security Affairs
Singapore startup touts need to mitigate risks, automate cloud security - ZDNet
SMBs willing to spend more money to protect their data - Help Net Security
SolarWinds hackers remained hidden in Denmark’s central bank for months - Security Affairs
This VPN service used by ransomware gangs was just taken down by police - ZDNet
Threat modeling needs a reset - Help Net Security
XDR: Security’s new frontier - Help Net Security

29/06
4 Warning Signs of an Insecure App - Security Boulevard
Canberra dishes out AU$8 million to boost Aussie cyber skills - ZDNet
Cisco security devices targeted with CVE-2020-3580 PoC exploit - Help Net Security
Cobalt Strike Usage Explodes Among Cybercrooks - ThreatPost
Consumers neglecting mobile security despite growing number of threats - Help Net Security
Data for 700M LinkedIn Users Posted for Sale in Cyber-Underground - ThreatPost
Details of RCE Bug in Adobe Experience Manager Revealed - ThreatPost
Digital transformation needs data integrity to be successful - Help Net Security
DoubleVPN servers, logs, and account info seized by law enforcement - Bleeping Computer
Drip, drip, drip of hacker data continues ransomware trauma for Tulsa - Verdict
Experts developed a free decryptor for the Lorenz ransomware - Security Affairs
GitHub paid out over $500K through its bug bounty program for 203 flaws in 2020 - Security Affairs
Google now requires app developers to verify their address and use 2FA - The Hacker News
Google outlines new security practices for Nest devices - ZDNet
Google Play developer accounts to require 2FA and a physical address - ZDNet
How Offensive AI Can Disarm Cybersecurity - Security Boulevard
IBM Kestrel threat hunting language granted to Open Cybersecurity Alliance - ZDNet
Microsoft's Halo dev site breached using dependency hijacking - Bleeping Computer
Microsoft successfully hit by dependency hijacking again - Bleeping Computer
New API Lets App Developers Authenticate Users via SIM Cards - The Hacker News
New ransomware highlights widespread adoption of Golang language by cyberattackers - ZDNet
Ransomware: Paying up won't stop you from getting hit again, says cybersecurity chief - ZDNet
Regula: Open source policy engine for IaC security - Help Net Security
Researchers design new techniques to bolster computer security - Help Net Security
Russian hackers had months-long access to Denmark's central bank - Bleeping Computer
Survey finds massive gap in awareness of cyberattacks - ZDNet
Understanding Global IoT Security Regulations - Security Boulevard
Unpatched Virtual Machine Takeover Bug Affects Google Compute Engine - The Hacker News
Unstructured data still overshared inside and outside organizations - Help Net Security
Zero day malware reached an all-time high of 74% in Q1 2021 - Help Net Security
Windows 11 includes the DNS-over-HTTPS privacy feature - How to use - Bleeping Computer

28/06
A closer look at Google Workspace privacy and data security - Help Net Security
Apple is pursuing notable Chinese product leakers ahead of its debut - TDH
Aqua Security: 50% of new Docker instances attacked within 56 minutes - VentureBeat
DMARC: The First Line of Defense Against Ransomware - The Hacker News
EA ignored domain vulnerabilities for months despite warnings and breaches - ZDNet
Former Health Secretary Faces Probe Over Use of Personal Emails - InfoSecurity
GitHub bug bounties: payouts surge past $1.5 million mark - ZDNet
Hackers Trick Microsoft Into Signing Netfilter Driver Loaded With Rootkit Malware - The Hacker News
Hackney Council and Its Citizens Are Still Hostages to Cyberattack Situation - TechNadu
How IoT is keeping businesses connected in an expanding network - Help Net Security
Kentucky Healthcare System Exposes Patients’ PHI - InfoSecurity
Leaked Windows 11 screenshots show new File Explorer, Settings app - Bleeping Computer
Many companies believe it is important to protect employee privacy, yet few are effective in doing so - Help Net Security
Mercedes Benz Data Leak Includes Card and Social Security Details - InfoSecurity
Microsoft Edge Bug Could've Let Hackers Steal Your Secrets for Any Site - The Hacker News
Microsoft investigates threat actor distributing malicious Netfilter Driver - Security Affairs
Microsoft Says ‘NOBELIUM’ Hackers Are Still Actively Targeting American Firms - TechNadu
Microsoft support agent and some basic customer details hit by SolarWinds attackers - ZDNet
Ministry of Defence employee charged in child pornography case - ZDNet
Navigating the complexity of ransomware negotiations - Help Net Security
Own an old WD My Book Live? Disconnect it from the internet right now - ZDNet
Reported HMRC-Branded Phishing Scams Grew by 87% During COVID-19 - InfoSecurity
Seamless EU-UK Data Flows to Continue Following Adequacy Decisions - InfoSecurity
Sensitive Defense Documents Found at Bus Stop - InfoSecurity
Six typosquatting packages in PyPI repository laced with crypto miner - Security Affairs
SMEs strongly positioned in the data protection sector - Help Net Security
The builder for Babuk Locker ransomware was leaked online - Security Affairs
The Builder of the ‘Babuk Locker’ Ransomware Has Leaked Online - TechNadu
The IBBI Has Leaked the Data of Companies Undergoing Insolvency Procedures - TechNadu
USB threats could critically impact business operations - Help Net Security
Zero-day Exploit Found in Adobe Experience Manager - InfoSecurity
YouTube blocked testimonials about missing Uyghurs in China: Report - ZDNet

27/06
Biden Administration Aims to Tackle Cybersecurity After Pipeline Hack - Communal News
Cisco ASA vulnerability actively exploited after exploit released - Bleeping Computer
Crackonosh Monero miner made $2M after infecting 222,000 Win systems - Security Affairs
Cryptomining highest in terms of attempted attacks - Borneo Post Online
Cybersecurity issues put Peloton in the news ... again - The Palm Beach Post
Electronic medical records back online after ransomware attack at The Villages hospital - Villages News
Families being notified following data breach of yearbook, graduation apparel supplier - WBay
How IoMT can protect healthcare from cyber attacks - Healthcare
Mercedes-Benz’s data breach compromised crucial data of 1000 customers - Techstory
Microsoft says new breach discovered in probe of suspected SolarWinds hackers - Zee Business
Political campaigns worry they're next for ransomware hits - The Hill
Pro-Palestinian hackers steal info on hundreds of thousands of Israeli students - The Times of Israel
Protect your small business from ransomware attacks - Daily Inter Lake
Stay Safe from Snapchat 2FA Text Message Scam - The Teal Mango
Vigilantes fighting online scams may be doing more harm than good - Scroll
Warning: Fake SMS containing malware is in circulation - Social Post
Western Digital My Book Live hard drives remotely wiped by hackers - HackRead