NEWS: Maio (23/05 - 29/05) - 21 Semana de 2021

29/05
American Soldiers Expose the U.S. Nuclear Missile Bunkers Secrets in Europe Through FlashCard Apps - TechNadu
Beware: Walmart phishing attack says your package was not delivered - Bleeping Computer
Bitcoin ATM Launderer ‘Superman29’ Forced to Forfeit $1.25 Million - TechNadu
Cyber attack fallout: DHBs can't be trusted with our data, so let's take it away from them - Stuff
Hands on with WSLg: Running Linux GUI apps in Windows 10 - Bleeping Computer
Massive Database Belonging to ‘Fractal Analytics’ Offered for Purchase - TechNadu
Mexican Lottery Blocks Access to Foreign IPs Following Avaddon Ransomware Attack - TechNadu
Microsoft: Russian hackers used 4 new malware in USAID phishing - Bleeping Computer
New Epsilon Red ransomware hunts unpatched Microsoft Exchange servers - Bleeping Computer
New Report Reveals Phishing Attacks Have Increased in the First Quarter of 2021 Compared to the Last Years’ Quarter - Digital Information World
Researchers Demonstrate 2 New Hacks to Modify Certified PDF Documents - The Hacker News
Secure Search is a Browser Hijacker – How to Remove it Now? - Security Affairs
SonicWall fixes an NSM On-Prem bug, patch it asap! - Security Affairs

28/05
Application security not a priority for financial services institutions - Help Net Security
Are You Safe From Malicious Insider Threats By Remote Workers? - Security Boulevard
Canada Post Announces Data Breach Affecting Almost 1 Million Customers - TechNadu
Canada Post disclosed a ransomware attack on a third-party service provider - Security Affairs
China-linked APT groups targets orgs via Pulse Secure VPN devices - Security Affairs
Chinese Cyber Espionage Hackers Continue to Target Pulse Secure VPN Devices - The Hacker News
Chinese cyberspies are targeting US, EU orgs with new malware - Bleeping Computer
CVE-2020-15782 flaw in Siemens PLCs allows remote hack - Security Affairs
FBI Issues Fortinet Flash Warning - InfoSecurity
FBI to share compromised passwords with Have I Been Pwned - Bleeping Computer
Grandchild of Rowhammer: ‘Half-Double’ Tactic Flips Farther Bits - Security Boulevard
How businesses can protect their brands and bottom lines against damage from illegal robocalls - Help Net Security
Identity crime victims struggling with financial, emotional and physical impacts - Help Net Security
It’s time to shift from verifying data to authenticating identity - Help Net Security
Klarna Users Report Being Able to Access Other People’s Accounts and Data - TechNadu
Mexico walls off national lottery sites after ransomware DDoS threat - Bleeping Computer
Microsoft details new sophisticated spear-phishing attacks from NOBELIUM - Security Affairs
Microsoft: Russian SVR hackers target govt agencies from 24 countries - Bleeping Computer
New Email Campaign From ‘NOBELIUM’ Indicates the Actor’s Development - TechNadu
New TSA security directive is a needed shock to the system - Help Net Security
Professionals are burned out and in need of a break - Help Net Security
Ransomware gangs' slow decryptors prompt victims to seek alternatives - Bleeping Computer
Researchers find four new malware tools created to exploit Pulse Secure VPN appliances - ZDNet
Researchers Warn of Facefish Backdoor Spreading Linux Rootkits - The Hacker News
SolarWinds Hackers Target Think Tanks With New 'NativeZone' Backdoor - The Hacker News
SolarWinds Hackers Targeting Government Agencies Via Email - Security Boulevard
SonicWall urges customers to 'immediately' patch NSM On-Prem bug - Bleeping Computer
US Jails Telemarketing Fraudster - InfoSecurity
Why cybersecurity products always defy traditional user reviews - Help Net Security

27/05
22 people indicted on malware, credit card fraud charges - HackRead
5 Efficient Ways to Prevent Fraud in Fintech - Built in
Apple Inexplicably Delays Fixing a WebKit Flaw That Has Available Patch and Exploit - TechNadu
‘BazaFlix’ Fakes Movie Streaming Service to Distribute Malware - TechNadu
Belgium Investigating Attack on Interior Ministry Network - Gov Info Security
Bose Reveals Data Breach After Ransomware Attack - Softpedia News
Canada Post discloses data breach after malware attack - HackRead
Canada Post hit by data breach after supplier ransomware attack - Bleeping Computer
Chinese Hackers Caught Using UN Website to Target Uyghur Muslims - TechNadu
Data Breach at Canada Post - InfoSecurity
Data Wiper Malware Disguised as Ransomware Targets Israeli Entities - Softpedia News
DHS mandates pipeline companies report breaches within 12 hours - WBAL
Enterprise networks vulnerable to 20-year-old exploits - Help Net Security
Expert View: Colleges could be prime targets for cyber-attacks this fall - Louisville Business First
Fake human rights organization, UN branding used to target Uyghurs in ongoing cyberattacks - ZDNet
FBI: APT hackers breached US local govt by exploiting Fortinet bugs - Bleeping Computer
Fujitsu SaaS Hack Sends Govt. of Japan Scrambling - ThreatPost
Health Data Breach Tally's 2021 Surge Continues - GOV Info Security
Homeland Security unveils new cybersecurity requirements for pipeline operators - TechRepublic
Human Rights Commission calls for a freeze on 'high-risk' facial recognition - ZDNet
In Wake Of Colonial Attack, Pipelines Now Must Report Cybersecurity Breaches - WSIU
Japanese government agencies suffer data breaches after Fujitsu hack - Bleeping Computer
Klarna battles serious data breach, with reports of leaked user info - Sifted
Open-source tool Yor automatically tags IaC resources for traceability and auditability - Help Net Security
Quantum computing investments on the rise - Help Net Security
The evolution of the modern CISO - Help Net Security
The state of enterprise preparedness for ransomware attacks - Help Net Security
Various Japanese government entities had data stolen in cyber attack: Report - ZDNet

26/05
11 UK Banking Brands Hit by Phishing Kits According to Akamai’s Security Report - The Fintech Times
22 Americans Indicted Over Card-Skimming Scam - InfoSecurity
A Prequel to Ransomware - InfoSecurity
Apple just fixed a security flaw that allowed malware to take screenshots on Macs - ZDNet
Apple Patches Zero-Day XCSSET Exploit - Security Boulevard
Belgium’s Interior Ministry uncovers 2-year-long compromise of its network - Help Net Security
Bluetooth bugs open the door for attackers to impersonate devices - ZDNet
Bose Reveals Ransomware Attack Impacting Staff - InfoSecurity
City of Tulsa won't pay ransomware demand - Cities Today
Clover Park School District investigating possible ransomware attack - Kiro7
Cybersecurity leaders lacking basic cyber hygiene - Help Net Security
Enhancing cyber resilience in the oil and gas industry - Help Net Security
Everything You Need To Know About Ransomware - NewsGram
Four proactive steps to make identity governance a business priority - Help Net Security
Hacker Claims to Be Holding Databases Stolen From Tezpur University - TechNadu
Irish Health Service Operator Still Struggling With Ransomware Attack - Euro Weekly
Label standard and best practices for Kubernetes security - Help Net Security
NHS to Share Patient Data with Third Parties, Fueling Privacy and Security Fears - InfoSecurity
Ransomware Attack Still Disrupting IT Systems of New Zealand Hospitals - Insurance Journal
Ransomware attribution: Missing the true perpetrator? - Help Net Security
Ransomware: Dramatic increase in attacks is causing harm on a significant scale - ZDNet
Ransomware Trends: Six Notable Ransomware Attacks from 2021 - Malicious Life
Scripps Ransomware Attack Nears Fourth Week, Some Systems Still Down - KPBS
TeamTNT Has Compromised Nearly 50,000 Vulnerable Kubernetes Endpoints - TechNadu
UK Police Suffered Thousands of Data Breaches in 2020 - InfoSecurity
Volunteer Service Abroad targetted by 'sophisticated' ransomware attack - Stuff
Why is patch management so difficult to master? - Help Net Security

25/05
A leadership guide for mitigating security risks with low code platforms - Help Net Security
After Ireland, massive ransomware attack now shuts down New Zealand hospitals - Hindu Tech
Apple says it’s time to update your iPhone… again - ZDNet
Attack that held U.S. pipeline hostage could happen in Canada: cyberprotection chief - Times Colonist
Audio equipment giant Bose hit by ransomware attack, data breach - HackRead
Bose Hit By Ransomware, Refuses To Pay Ransom - Forbes
BPJS Kesehatan Denies Misconduct in Data Breach Allegation - Tempo CO
Consumers ID theft concerns only growing - Help Net Security
Consumers jittery after data breach at Domino’s Pizza - The Economics Times
Cybersecurity experts question CERT-In inaction on rampant data breaches - The Economics Times
Data Breach: Activists may drag Cybersecurity regulator to court - The Economics Times Telecom
Data Stolen From the ‘CEFCO’ Gas Station Chain Appear in “Marketo Leaks” - TechNadu
Double extortion attacks causing significant business disruption - Security Brief
E-tailers See Surge in Automated Fraud - InfoSecurity
Encrochat drug dealer betrayed by his love of cheese - ZDNet
FWaaS market continues to grow - Help Net Security
GDPR Anniversary: Security Leaders More Concerned About Litigation Than Fines - InfoSecurity
Happy birthday GDPR: IoT impact and practical tips for compliance - Help Net Security
In 2020, cybercriminals tried to break the bank - Information Age
Insurance Firm CNA Pays $40m To Ransomware Criminals - Silicon CO UK
Iranian hacking group Agrius pretends to encrypt files for a ransom, destroys them instead - ZDNet
Japanese Dating App ‘Omiai’ Hacked and User Data Stolen - TechNadu
Massive Data Breach at Domino’s; Information of 180 Million Users Available on Web - MoneyLife
Montana Focuses on Ransomware Defense, Shifting to Zero Trust - Montana GOV
Not as complex as we thought: Cyberattacks on operational technology are on the rise - ZDNet
Over 65% of Australians across all age brackets worry about privacy in new tech - ZDNet
Ransomware: Two-thirds of organisations say they'll take action to boost their defences - ZDNet
Ransomware, other cyber threats mount as medtech industry tries to adapt - MedTech Dive
Ransomware Attack Hits Insurance Giant AXA One Week After It Changes Cyber Insurance Policies in France - CPO Magazine
Ransomware note found on Cork hospital's private computer system - Sunday World
Russian dark web marketplace Hydra cryptocurrency transactions reached $1.37bn in 2020 - ZDNet
Scripps enters fourth week of ransomware attack - Del Mar Times
Scripps Health Admits Weeks-Long Computer Outage Due to ‘Ransomware’ - Times of San Diego
Security must become frictionless for companies to fully secure themselves - Help Net Security
Suspected Iranian hackers pose as ransomware operators to target Israeli organizations - CyberScoop
Ten days after ransomware attack, Irish health system struggling - KTIC FM
The average ransomware demand is now $170K. Here's how we can fight back - World Economic Forum
Thoughts on Biden’s cybersecurity Executive Order - Help Net Security
Three Years Later: Tips for Sustaining GDPR Compliance - InfoSecurity
UCSC Students Petition for More Protection After Data Breach - Government Technology
Victims lose millions to healthcare related eCrime - Help Net Security
Walmart apologizes for offensive, racist registration emails - Bleeping Computer

24/05
Air India discloses data of 4.5m passengers were stolen in SITA cyber attack - ZDNet
Air India: Supplier Breach Hit 4.5 Million Passengers - InfoSecurity
Amex Fined After Sending Over Four Million Spam Emails - InfoSecurity
Anker fixed an issue that caused access to Eufy video camera feeds to random users - Security Affairs
Can zero trust kill our need to talk about locations? - Help Net Security
Can Web Security Tools Prevent Data Breaches? - TechNadu
Crypto miners look beyond China as government threatens crackdown - ZDNet
Details Disclosed On Critical Flaws Affecting Nagios IT Monitoring Software - The Hacker News
FBI identifies 16 Conti ransomware attacks striking US healthcare, first responders - ZDNet
FBI intelligence analyst indicted for theft of cybersecurity, counterterrorism documents - ZDNet
FBI Logs Rapid Increase in Email Scams, Investment Fraud - Security Boulevard
How data manipulation could be used to trick fraud detection algorithms on e-commerce sites - Help Net Security
How do I select a data management solution for my business? - Help Net Security
How willing are enterprise leaders to use top emerging technologies? - Help Net Security
Insurance Giant Reportedly Paid $40 Million Ransom - InfoSecurity
Is There Hope for ICS and Supply Chain Security? - Security Boulevard
Returning to the office? Time to reassess privileged access permissions - Help Net Security
The state of AppSec and the journey to DevSecOps - Help Net Security
This massive phishing campaign delivers password-stealing malware disguised as ransomware - ZDNet
Zeppelin ransomware comes back to life with updated versions - Bleeping Computer
What To Do When Your Business Is Hacked - The Hacker News

23/05
5 Growing Trends to Watch in Banking Cybersecurity - Security Boulevard
A pair of TPG TrustedCloud customers were breached - ZDNet
Air India Data Breach: Hackers Access Personal Details Of 4.5 Million Customers - Forbes
Amex fined £90,000 for sending 4 million spam emails in a year - Bleeping Computer
Biden's plan for cyber is a day late and a dollar short - The Hill
Cyber Attackers are now leveraging Google and Microsoft to spread malicious content - Digital Information World
Cyber-Security Disasters Like Colonial Pipeline’s Happen By The Hundreds Every Day - Forbes
Data loss prevention strategies for hybrid working - People Matters
Domino's India suffers data breach, details of 18 crore orders on sale - Money Control
German cyber security chief fears hackers could target hospitals - Daily Times
HSE cyberattack: ‘Real risk’ stolen patient data will be published online - Breaking News IE
Impact of GDPR on Cloud Service Providers - Security Boulevard
Insurance Giant Reportedly Pays Hackers $40 Million Ransom - The Daily Wire
Microsoft Exchange admin portal blocked by expired SSL certificate - Bleeping Computer
One of the biggest US insurance companies reportedly paid hackers R558 million ransom after a cyberattack - Business Insider South Africa
Tulsa computer system hacks stopped by security shutdown - The Oklahoman
Verizon Data Breach Report Details How Threat Actors Commit Cybercrimes - Tech Times