NEWS: Maio (23/05 - 29/05) - 21 Semana de 2021

29/05

American Soldiers Expose the U.S. Nuclear Missile Bunkers Secrets in Europe Through FlashCard Apps - TechNadu

Beware: Walmart phishing attack says your package was not delivered - Bleeping Computer

Bitcoin ATM Launderer ‘Superman29’ Forced to Forfeit $1.25 Million - TechNadu

Cyber attack fallout: DHBs can't be trusted with our data, so let's take it away from them - Stuff

Hands on with WSLg: Running Linux GUI apps in Windows 10 - Bleeping Computer

Massive Database Belonging to ‘Fractal Analytics’ Offered for Purchase - TechNadu

Mexican Lottery Blocks Access to Foreign IPs Following Avaddon Ransomware Attack - TechNadu

Microsoft: Russian hackers used 4 new malware in USAID phishing - Bleeping Computer

New Epsilon Red ransomware hunts unpatched Microsoft Exchange servers - Bleeping Computer

New Report Reveals Phishing Attacks Have Increased in the First Quarter of 2021 Compared to the Last Years’ Quarter - Digital Information World

Researchers Demonstrate 2 New Hacks to Modify Certified PDF Documents - The Hacker News

Secure Search is a Browser Hijacker – How to Remove it Now? - Security Affairs

SonicWall fixes an NSM On-Prem bug, patch it asap! - Security Affairs

28/05

Application security not a priority for financial services institutions - Help Net Security

Are You Safe From Malicious Insider Threats By Remote Workers? - Security Boulevard

Canada Post Announces Data Breach Affecting Almost 1 Million Customers - TechNadu

Canada Post disclosed a ransomware attack on a third-party service provider - Security Affairs

China-linked APT groups targets orgs via Pulse Secure VPN devices - Security Affairs

Chinese Cyber Espionage Hackers Continue to Target Pulse Secure VPN Devices - The Hacker News

Chinese cyberspies are targeting US, EU orgs with new malware - Bleeping Computer

CVE-2020-15782 flaw in Siemens PLCs allows remote hack - Security Affairs

FBI Issues Fortinet Flash Warning - InfoSecurity

FBI to share compromised passwords with Have I Been Pwned - Bleeping Computer

Grandchild of Rowhammer: ‘Half-Double’ Tactic Flips Farther Bits - Security Boulevard

How businesses can protect their brands and bottom lines against damage from illegal robocalls - Help Net Security

Identity crime victims struggling with financial, emotional and physical impacts - Help Net Security

It’s time to shift from verifying data to authenticating identity - Help Net Security

Klarna Users Report Being Able to Access Other People’s Accounts and Data - TechNadu

Mexico walls off national lottery sites after ransomware DDoS threat - Bleeping Computer

Microsoft details new sophisticated spear-phishing attacks from NOBELIUM - Security Affairs

Microsoft: Russian SVR hackers target govt agencies from 24 countries - Bleeping Computer

New Email Campaign From ‘NOBELIUM’ Indicates the Actor’s Development - TechNadu

New TSA security directive is a needed shock to the system - Help Net Security

Professionals are burned out and in need of a break - Help Net Security

Ransomware gangs' slow decryptors prompt victims to seek alternatives - Bleeping Computer

Researchers find four new malware tools created to exploit Pulse Secure VPN appliances - ZDNet

Researchers Warn of Facefish Backdoor Spreading Linux Rootkits - The Hacker News

SolarWinds Hackers Target Think Tanks With New 'NativeZone' Backdoor - The Hacker News

SolarWinds Hackers Targeting Government Agencies Via Email - Security Boulevard

SonicWall urges customers to 'immediately' patch NSM On-Prem bug - Bleeping Computer

US Jails Telemarketing Fraudster - InfoSecurity

Why cybersecurity products always defy traditional user reviews - Help Net Security

27/05

22 people indicted on malware, credit card fraud charges - HackRead

5 Efficient Ways to Prevent Fraud in Fintech - Built in

Apple Inexplicably Delays Fixing a WebKit Flaw That Has Available Patch and Exploit - TechNadu

‘BazaFlix’ Fakes Movie Streaming Service to Distribute Malware - TechNadu

Belgium Investigating Attack on Interior Ministry Network - Gov Info Security

Bose Reveals Data Breach After Ransomware Attack - Softpedia News

Bruhat Bengaluru Mahanagara Palike (BBMP) shuts down Public Health Activities, Surveillance and Tracking (PHAST) portal over fears of data breach - The Hindu

Canada Post discloses data breach after malware attack - HackRead

Canada Post hit by data breach after supplier ransomware attack - Bleeping Computer

Chinese Hackers Caught Using UN Website to Target Uyghur Muslims - TechNadu

Data Breach at Canada Post - InfoSecurity

Data Wiper Malware Disguised as Ransomware Targets Israeli Entities - Softpedia News

DHS mandates pipeline companies report breaches within 12 hours - WBAL

Enterprise networks vulnerable to 20-year-old exploits - Help Net Security

Expert View: Colleges could be prime targets for cyber-attacks this fall - Louisville Business First

Fake human rights organization, UN branding used to target Uyghurs in ongoing cyberattacks - ZDNet

FBI: APT hackers breached US local govt by exploiting Fortinet bugs - Bleeping Computer

Fujitsu SaaS Hack Sends Govt. of Japan Scrambling - ThreatPost

Health Data Breach Tally's 2021 Surge Continues - GOV Info Security

Homeland Security unveils new cybersecurity requirements for pipeline operators - TechRepublic

Human Rights Commission calls for a freeze on 'high-risk' facial recognition - ZDNet

In Wake Of Colonial Attack, Pipelines Now Must Report Cybersecurity Breaches - WSIU

Japanese government agencies suffer data breaches after Fujitsu hack - Bleeping Computer

Klarna battles serious data breach, with reports of leaked user info - Sifted

Open-source tool Yor automatically tags IaC resources for traceability and auditability - Help Net Security

Quantum computing investments on the rise - Help Net Security

The evolution of the modern CISO - Help Net Security

The state of enterprise preparedness for ransomware attacks - Help Net Security

Various Japanese government entities had data stolen in cyber attack: Report - ZDNet

26/05

11 UK Banking Brands Hit by Phishing Kits According to Akamai’s Security Report - The Fintech Times

22 Americans Indicted Over Card-Skimming Scam - InfoSecurity

A Prequel to Ransomware - InfoSecurity

Apple just fixed a security flaw that allowed malware to take screenshots on Macs - ZDNet

Apple Patches Zero-Day XCSSET Exploit - Security Boulevard

Belgium’s Interior Ministry uncovers 2-year-long compromise of its network - Help Net Security

Bluetooth bugs open the door for attackers to impersonate devices - ZDNet

Bose Reveals Ransomware Attack Impacting Staff - InfoSecurity

City of Tulsa won't pay ransomware demand - Cities Today

Clover Park School District investigating possible ransomware attack - Kiro7

Cybersecurity leaders lacking basic cyber hygiene - Help Net Security

Enhancing cyber resilience in the oil and gas industry - Help Net Security

Everything You Need To Know About Ransomware - NewsGram

Four proactive steps to make identity governance a business priority - Help Net Security

Hacker Claims to Be Holding Databases Stolen From Tezpur University - TechNadu

Irish Health Service Operator Still Struggling With Ransomware Attack - Euro Weekly

Label standard and best practices for Kubernetes security - Help Net Security

Microsoft Discovers New Android Ransomware Activates When Pressing Home Button—Poses as Law Enforcement Message - Tech Time

NHS to Share Patient Data with Third Parties, Fueling Privacy and Security Fears - InfoSecurity

Ransomware Attack Still Disrupting IT Systems of New Zealand Hospitals - Insurance Journal

Ransomware attribution: Missing the true perpetrator? - Help Net Security

Ransomware: Dramatic increase in attacks is causing harm on a significant scale - ZDNet

Ransomware Trends: Six Notable Ransomware Attacks from 2021 - Malicious Life

Scripps Ransomware Attack Nears Fourth Week, Some Systems Still Down - KPBS

TeamTNT Has Compromised Nearly 50,000 Vulnerable Kubernetes Endpoints - TechNadu

UK Police Suffered Thousands of Data Breaches in 2020 - InfoSecurity

Volunteer Service Abroad targetted by 'sophisticated' ransomware attack - Stuff

Why is patch management so difficult to master? - Help Net Security

25/05

A leadership guide for mitigating security risks with low code platforms - Help Net Security

After Ireland, massive ransomware attack now shuts down New Zealand hospitals - Hindu Tech

Apple says it’s time to update your iPhone… again - ZDNet

Attack that held U.S. pipeline hostage could happen in Canada: cyberprotection chief - Times Colonist

Audio equipment giant Bose hit by ransomware attack, data breach - HackRead

Bose Hit By Ransomware, Refuses To Pay Ransom - Forbes

BPJS Kesehatan Denies Misconduct in Data Breach Allegation - Tempo CO

Consumers ID theft concerns only growing - Help Net Security

Consumers jittery after data breach at Domino’s Pizza - The Economics Times

Cybersecurity experts question CERT-In inaction on rampant data breaches - The Economics Times

Data Breach: Activists may drag Cybersecurity regulator to court - The Economics Times Telecom

Data Stolen From the ‘CEFCO’ Gas Station Chain Appear in “Marketo Leaks” - TechNadu

Double extortion attacks causing significant business disruption - Security Brief

E-tailers See Surge in Automated Fraud - InfoSecurity

Encrochat drug dealer betrayed by his love of cheese - ZDNet

FWaaS market continues to grow - Help Net Security

GDPR Anniversary: Security Leaders More Concerned About Litigation Than Fines - InfoSecurity

Happy birthday GDPR: IoT impact and practical tips for compliance - Help Net Security

In 2020, cybercriminals tried to break the bank - Information Age

Insurance Firm CNA Pays $40m To Ransomware Criminals - Silicon CO UK

Iranian hacking group Agrius pretends to encrypt files for a ransom, destroys them instead - ZDNet

Japanese Dating App ‘Omiai’ Hacked and User Data Stolen - TechNadu

Massive Data Breach at Domino’s; Information of 180 Million Users Available on Web - MoneyLife

Montana Focuses on Ransomware Defense, Shifting to Zero Trust - Montana GOV

Not as complex as we thought: Cyberattacks on operational technology are on the rise - ZDNet

Over 65% of Australians across all age brackets worry about privacy in new tech - ZDNet

Ransomware: Two-thirds of organisations say they'll take action to boost their defences - ZDNet

Ransomware, other cyber threats mount as medtech industry tries to adapt - MedTech Dive

Ransomware Attack Hits Insurance Giant AXA One Week After It Changes Cyber Insurance Policies in France - CPO Magazine

Ransomware note found on Cork hospital's private computer system - Sunday World

Russian dark web marketplace Hydra cryptocurrency transactions reached $1.37bn in 2020 - ZDNet

Scripps enters fourth week of ransomware attack - Del Mar Times

Scripps Health Admits Weeks-Long Computer Outage Due to ‘Ransomware’ - Times of San Diego

Security must become frictionless for companies to fully secure themselves - Help Net Security

Suspected Iranian hackers pose as ransomware operators to target Israeli organizations - CyberScoop

Ten days after ransomware attack, Irish health system struggling - KTIC FM

The average ransomware demand is now $170K. Here's how we can fight back - World Economic Forum

Thoughts on Biden’s cybersecurity Executive Order - Help Net Security

Three Years Later: Tips for Sustaining GDPR Compliance - InfoSecurity

UCSC Students Petition for More Protection After Data Breach - Government Technology

Victims lose millions to healthcare related eCrime - Help Net Security

Walmart apologizes for offensive, racist registration emails - Bleeping Computer

24/05

Air India discloses data of 4.5m passengers were stolen in SITA cyber attack - ZDNet

Air India: Supplier Breach Hit 4.5 Million Passengers - InfoSecurity

Amex Fined After Sending Over Four Million Spam Emails - InfoSecurity

Anker fixed an issue that caused access to Eufy video camera feeds to random users - Security Affairs

Can zero trust kill our need to talk about locations? - Help Net Security

Can Web Security Tools Prevent Data Breaches? - TechNadu

Congressional leaders, experts debate viability of Cybersecurity Safety Review Board described in Biden executive order - ZDNet

Crypto miners look beyond China as government threatens crackdown - ZDNet

Details Disclosed On Critical Flaws Affecting Nagios IT Monitoring Software - The Hacker News

FBI identifies 16 Conti ransomware attacks striking US healthcare, first responders - ZDNet

FBI intelligence analyst indicted for theft of cybersecurity, counterterrorism documents - ZDNet

FBI Logs Rapid Increase in Email Scams, Investment Fraud - Security Boulevard

How data manipulation could be used to trick fraud detection algorithms on e-commerce sites - Help Net Security

How do I select a data management solution for my business? - Help Net Security

How willing are enterprise leaders to use top emerging technologies? - Help Net Security

Insurance Giant Reportedly Paid $40 Million Ransom - InfoSecurity

Is There Hope for ICS and Supply Chain Security? - Security Boulevard

Returning to the office? Time to reassess privileged access permissions - Help Net Security

The state of AppSec and the journey to DevSecOps - Help Net Security

This massive phishing campaign delivers password-stealing malware disguised as ransomware - ZDNet

Zeppelin ransomware comes back to life with updated versions - Bleeping Computer

What To Do When Your Business Is Hacked - The Hacker News

23/05

5 Growing Trends to Watch in Banking Cybersecurity - Security Boulevard

A pair of TPG TrustedCloud customers were breached - ZDNet

Air India Data Breach: Hackers Access Personal Details Of 4.5 Million Customers - Forbes

Amex fined £90,000 for sending 4 million spam emails in a year - Bleeping Computer

Biden's plan for cyber is a day late and a dollar short - The Hill

Cyber Attackers are now leveraging Google and Microsoft to spread malicious content - Digital Information World

Cyber-Security Disasters Like Colonial Pipeline’s Happen By The Hundreds Every Day - Forbes

Data loss prevention strategies for hybrid working - People Matters

Domino's India suffers data breach, details of 18 crore orders on sale - Money Control

German cyber security chief fears hackers could target hospitals - Daily Times

HSE cyberattack: ‘Real risk’ stolen patient data will be published online - Breaking News IE

Impact of GDPR on Cloud Service Providers - Security Boulevard

Insurance Giant Reportedly Pays Hackers $40 Million Ransom - The Daily Wire

Microsoft Exchange admin portal blocked by expired SSL certificate - Bleeping Computer

One of the biggest US insurance companies reportedly paid hackers R558 million ransom after a cyberattack - Business Insider South Africa

Tulsa computer system hacks stopped by security shutdown - The Oklahoman

Verizon Data Breach Report Details How Threat Actors Commit Cybercrimes - Tech Times

NEWS: Maio (16/05 - 22/05) - 20 Semana de 2021