NEWS: Março (06/03 - 12/03) - 10 Semana de 2022

Cyber Security and Information Security News - Daily Updates !!

12/03

After Nvidia & Samsung, gaming giant Ubisoft suffers cyber attack

Android malware Escobar steals your Google Authenticator MFA codes

Anonymous sent 7 million texts to Russians plus hacked 400 of their security cams

California City Reportedly Fell for Email Scam Hook, Line and Sinker

Cyber Security Incident Pushes Ubisoft to Issue Internal Password Reset

Data literacy: What it is and why it matters

Evolving Technology – The Impact on Cybersecurity

Fears of Russian cyber attacks spark alert in West Midlands

Healthcare providers must place patient data in a vault to ensure cybersecurity, says Dell

How to Block Spam Calls and Text Messages

Iranian APT: New Methods to Target Turkey, Arabian Peninsula

Legal firm: Jacksonville Spine Center suffered ransomware attack

Mobile attacks explosion, how to protect yourself?

New reporting requirements for US-based companies hacked by hackers

Online privacy becomes a growing concern as data becomes more accessible

Russia-Ukraine war raises global cyber security risk, study shows

Security Considerations for BYOD Policies

Taking a spring break trip? Here's how to protect your devices and identity on vacation

The Top 9 Types of Cyberattacks on Business Users

Threat Intel Report: Who Is Behind Staggering 190GB Samsung Galaxy Hack?

Ubisoft confirms 'cyber security incident', resets staff passwords

Veteran Qakbot Malware Is Increasingly Advanced and Varied

11/03

94% of SA companies targeted in phishing attacks over the last year

Anonymous Claims to Have Leaked Over 360,000 Files From Russian Federal Agency

Anonymous Hacks Russian Media Censoring Agency Roskomnadzor

BazarBackdoor Malware is Hitting Website Contact Forms to Evade AV Detection

Bridgestone Americas confirms ransomware attack, LockBit leaks data

Consumers demand a digital banking experience with security at its foundation

Cosumers don’t think they can dodge identity fraud

Cybersecurity Picture Inside Russia Grows More Complicated

Data Breach Alert: Ascension Michigan

Data Breach Alert: GreenSlate, LLC

Data Breach Alert: My Way Holdings, LLC dba Sunland Park Racetrack & Casino

Data Breach Alert: Westbrook Service Corporation

Data centres are still a tempting target for hackers: Here's how to improve your security

Education sector most likely to pay ransomware demand, report finds

English law firm fined £98k after data breach

FBI investigation continues into phishing scam involving Fresno

Financial firms could experience more cyber attacks this year

Google: We're spotting more Chrome browser zero-day flaws in the wild. Here's why

In a first, Ukraine leaks Russian intellectual property as act of war

IronNet's March Threat Intelligence Brief 2022

IsaacWiper Followed HermeticWiper Attack on Ukraine Orgs

Japanese beauty e-tailer Acro hit by third-party data breach; exposes more than 100,000 payment cards

LastPass vs 1Password: Battle of the password manager titans

Logan Health Facing Class Action Lawsuit Over Data Breach

Logan Health sued after data breach exposed 174,761 patients' health information

Meet The “No Normal” Of Cybersecurity

Mobile Malware And Phishing Scams Are Huge In 2022 — Here's How To Stay Safe

Montrose Regional Health experiences data breach

NetWalker ransomware affiliate extradited to the US for further charges

New ONE PIECE anime episodes delayed after Toei cyberattack

Nvidia Data Leak Exposed Proprietary Information but Wasn’t a Russian Ransomware Attack, Company Says

Organizations need to evolve their data management strategy

Polícia faz operação contra quadrilha especializada em golpes digitais

Raccoon Stealer Crawls Into Telegram

Russian based APT Groups Conduct Phishing Campaigns Targeting Ukraine

Russian defense firm Rostec shuts down website after DDoS attack

Scammers spread phishing emails from fake ‘Thailand Pass’ domains

Securities and Exchange Commission (SEC) Proposes Four-Day Breach Notification Rules

Singapore: At least 280 victims lose S$1.2m to phone call phishing scams

Shipping fraud quickly emerging as one of the top fraud types

This phishing attack hijacks email chains to power up an ancient botnet

Top criminal law firm fined £98k after cyber attack led to court bundles being leaked on dark web

Tuckers Solicitors fined £98,000 by ICO over data breach

Ubisoft says 'cyber security incident' last week shows no evidence of data breach

UK ferry operator Wightlink flags potential data breach after ‘highly sophisticated’ cyber-attack

Ukrainian Man Arrested for Alleged Role in Ransomware Attack on Kaseya, Others

US Officials seize $28 million in crypto, Canadian Ransomware suspect handed to the US

Vodafone and Mercado Libre Likely Hit by Ransomware Attacks

Walmart Security Chief Criticizes Data Breach Prevention Strategies

What is fueling the adoption of passwordless authentication?

What is Ransomware-as-a-Service (RaaS)?

10/03

90% of MSPs Hit By a Successful Cyber-Attack in the Past 18 Months

AI Accountability Framework Created to Guide Use of AI in Security

Alleged Kaseya Attacker Extradited to US

Bugcrowd's top bug bounty reward increases to $1 million

Businesses under pressure as consumers exercise their privacy rights

Colorado Elections Clerk Charged with Identity Theft

Conti Group Spent $6m on Salaries, Tools and Services in a Year

Conti Ransomware Group Continues to Threaten Healthcare

Data Breach Alert: Crossroads Health

Defending Against Cyber-Threats – Think Like an Attacker

Does the future of digital identity offer us greater security and convenient experiences?

Ex-Canadian government official is extradited to US to face hacking charges for 'NetWalker' ransomware attacks that targeted hospitals and police during the pandemic: Feds seize $28.2M in cryptocurrency

Extortion Attempt on Samsung Leads to Data Breach, Leak of Bootloader and Authentication Source Code

Firm fined almost £100,000 over ransomware attack

Growing Frequency and Rising Costs of Ransomware Attacks on Schools Highlight New Report

In a world of deepfakes, this billion-dollar startup wants you to trust AI-powered ID checks

ITOps teams are getting buried beneath too many disparate solutions for endpoint management

It's time to stop hoping that cybersecurity problems will just go away

Latin e-commerce giant Mercado Libre hacked

Leaked correspondence and files expose infamous Conti ransomware gang

Malware disguised as security tool targets Ukraine's IT Army

Microsoft: There's a critical shortage of women in cybersecurity, and we need to do something about it

MuddyWater targets Middle Eastern and Asian countries in phishing attacks

New Exploit Bypasses Existing Spectre-V2 Mitigations in Intel and Arm CPUs

New Mexico credit union investigating claims made by known ransomware provider

Organizations need to change their current password usage and policies, and do it fast

Organizations taking nearly two months to remediate critical risk vulnerabilities

Over 90% of Exposed Russian Cloud Databases Compromised

Qakbot Botnet Sprouts Fangs, Injects Malware into Email Threads

Qakbot Debuts New Technique

RagnarLocker ransomware struck 52 critical infrastructure entities within two years – FBI

Russia May Use Ransomware Payouts to Avoid Sanctions

Securities and Exchange Commission (SEC) wants public companies to report breaches within four days

Still too many parents don’t monitor their children’s online activity

UK Security Agency Issues New Guidance on Data Center Protection

War in Ukraine: What type of cyber attacks can we expect next?

Watch out for this phishing attack that hijacks your email chats to spread malware

Why are CAPTCHAs still used?

Wightlink Suffers ‘Sophisticated’ Cyber Attack Exposing Customers' Details

09/03

Arizona Attorney General Issues Consumer Advisory Regarding Social Media Scams

Bermuda Monetary Authority (BMA) reports new phishing scheme to police

Car Dealership Employees Begin Legal Case Following Breach

China Hacked U State Government networks with the help of APT41

Chinese APT41 Group Compromises Six US Government Networks

Chinese phishing actors consistently targeting EU diplomats

Consumers fed up with passwords and KBAs, looking to voice enabled technology as the future

Critical RCE Bugs Found in Pascom Cloud Phone System Used by Businesses

Cyber Attacks On Remote Workers Continue

Cyber Insurance Is a Perfect Storm: Risk Quantification Can Rescue It

Cyberattacks are intensifying amid war, Czech experts warn

Data privacy laws are an opportunity to become more honest in reaching your target audience

February 2022’s Most Wanted Malware: Emotet Remains Number One While Trickbot Slips Even Further Down the Index

Giftmart Instagram (Instagift) Phishing Scam Alert

Government agencies in Ukraine targeted in cyber-attacks deploying MicroBackdoor malware

Hybrid work trend ensures another year of online vulnerability

In-the-wild DDoS attack can be launched from a single packet to create terabytes of traffic

India Among Top 3 Countries Most Affected by Ransomware Attacks

Ireland: Ex-INM chief had email account rebuilt in secret data operation

Manufacturing felt brunt of cyberattacks in 2021 as supply chain woes grew

Mercado Libre latest hacking victim of LAPSUS$ group

Mid-market tackling high rate of costly attacks, worsened by complex, siloed defences and staff burnout

New password fraud scam on social media accounts

Over half of London councils lack cyber insurance

Ragnar ransomware gang hit 52 critical US orgs, says FBI

Responding to heightened cyberattack risk: Focus on the basics

Samsung confirms data breach after hackers leak internal source code

Scammers use a BANK'S phone number to tell customers their account has been suspended and steal their cash - here's what to look out for

Securing healthcare: An IT health check on the state of the sector

Shoppers furious over Hula Hoops and McCoys crisps shortage due to Russian cyber attack

The Cyberwar Toolkit: 8 Surefire Ways to Protect Your Data and Identity Online

The group responsible for Nvidia ransomware attack has now added Samsung to its victim list

U.S. charges two siblings in $124 million cryptocurrency fraud

Understanding US Defense Department’s relaxed cybersecurity protocols under CMMC 2.0

West Midlands braces for Russian cyber attacks after council targeted by hackers

What's next for Russian cyber?

08/03

4 Types of Hackers That You Probably Didn’t Know Existed

5 steps that simplify IoT security for OEMs

70% of breached passwords are still in use

76% of American SMEs are concerned about EV security

Access:7 vulnerabilities impact medical and IoT devices

Applying Dynamic Response Measures To Fight Ransomware

Ascension Michigan data breach exposed 27K patient records

Ataque hacker provoca instabilidade no site da Urbs para recarga de cartão transporte

Automation is the Top Cloud Security Priority

CISA: Patch actively exploited Firefox zero-days until March 21st

Critical "Access:7" Supply Chain Vulnerabilities Impact ATMs, Medical and IoT Devices

Cybersecurity predictions and best practices in 2022

DDoS attacks now use new record-breaking amplification vector

Dirty Pipe Exploit Rings Alarm Bells in the Linux Community

E-commerce giant Mercado Libre confirms source code data breach

Easily exploitable Linux bug gives root access to attackers (CVE-2022-0847)

Emotet growing slowly but steadily since November resurgence

Facebook the 2021 Most Targeted Site by Phishing Scams! Around 14% of Fake Pages Copy FB

FBI: Ragnar Locker ransomware breached 52 US critical infrastructure orgs

Fraud detection and prevention costs merchants more than fraud itself

Gardaí trawl leaked files of HSE cyber gang

Google: Russia, China, Belarus state hackers target Ukraine, Europe

Grupo hacker vaza quase 200 GB de dados da Samsung; empresa confirma ataque

HC3 Report Reveals Cyberattack Trends and Provides Insights to Improve Healthcare Cybersecurity

Hive ransomware gang targets Romanian oil firm in its latest cyberattack

HP patches 16 UEFI firmware bugs allowing stealthy malware infections

ICS vulnerability disclosures surge 110% over the last four years

Improve your organization’s cyber hygiene with CIS CSAT Pro

Increasing risks for industrial control systems

Increasing security for single page applications (SPAs)

Logan Health Notifies Patients of Data Breach That Affected Thousands of Montanans

Malware Is Disguising Itself As NVIDIA GPU Drivers

March 2022 Patch Tuesday: Microsoft fixes RCEs in RDP client, Exchange Server

Mercado Livre sofre ataque hacker e diz que dados de 300 mil usuários foram acessados

Mercado Livre sofre vazamento e hackers do ConecteSUS podem ser os responsáveis

Millions of APC Smart UPS Devices Can Be Remotely Hacked, Damaged

Minnesota School District's Hacked Email Causes Concern

Oi simula invasão hacker para testar vulnerabilidade

Oklahoma Hospital Data Breach Impacts 92,000 People

Omicron Covid scam texts pretending to be NHS swindles £531,000 from Brits

Phishing attempts from FancyBear and Ghostwriter stepping up says Google

Ransomware Attack Trends: Critical Infrastructure In The Crosshairs

Romania's largest refinery Petromidia under cyberattack

Samsung confirms data breach

Samsung Confirms Data Breach After Hackers Leak Galaxy Source Code

Scores of US Critical Infrastructure Firms Hit by Ransomware

Similarities and Difference Between Ransomware and DDoS Extortion Attacks

Software Supply Chain Security Turns to Risk Mitigation

State of IoT and OT security in the Middle East

T-Mobile Data Breach; Consumers Urged to Protect Their Information

The Human Factor in Data Security Breaches

TLStorm exploits expose more than 20 million UPS units to takeover. Was yours one of them?

Urgent warning as experts say hackers are targeting your stimulus check payments in five ways

What is XSS? Cross-site scripting attacks explained

Widely used UPS devices can be hijacked and destroyed remotely

Zywave Agrees to $11 Million Fund to Settle ITC Data Breach Lawsuit

07/03

Anonymous hacked Russian streaming services to broadcast war footage

BBC targeted with 383,278 spam, phishing and malware attacks every day

Counterfeit and Pirated Imports Surge During Pandemic

Critical Bugs in TerraMaster TOS Could Open NAS Devices to Remote Hacking

Critical Firefox Zero-Day Bugs Allow RCE, Sandbox Escape

Developing threat updates: MuddyWater, HermeticWiper and Cyclops target Ukraine amid Crisis

Every business is a cybersecurity business

FBI: Govt officials impersonated in widespread extortion schemes

Hilliard City Schools evaluating protocols after releasing 4,200 names of students in public-information request

How an 8-character password could be cracked in less than an hour

How frustrated and burned out are security analysts?

How to check Android 12 permissions with the Privacy Dashboard

IT leaders confident in their ability to manage a ransomware attack: They should know better

Long delay before Cybersecurity NSW notified of Accellion hack

Microsoft fixes critical Azure bug that exposed customer data

Mozilla addresses two actively exploited zero-day flaws in Firefox

Mozilla fixes Firefox zero-days exploited in the wild (CVE-2022-26485, CVE-2022-26486)

Mozilla fixes two critical Firefox flaws that are being actively exploited

Musk Warns Starlink Could Attract Russian Bombs

O que é preciso saber sobre o novo reconhecimento facial nos aeroportos dos EUA

Piracy OK: Russia to ease software licensing rules after sanctions

Rompetrol gas station network hit by Hive ransomware

Samsung confirms Galaxy source code breach but says no customer information was stolen

Samsung confirms data breach as Lapsus$ hackers leak its source code

Samsung confirms hackers stole Galaxy devices source code

Samsung é hackeada e tem dados sobre Galaxy roubados

Samsung Source Codes Stolen

SharkBot, the new generation banking Trojan distributed via Play Store

Trading in your old phone soon? Here's how to get it ready

Ukraine Set to Join NATO Cyber Hub

Ukrainian CERT Warns Citizens of Phishing Attacks Using Compromised Accounts

Understanding How Hackers Recon

06/03

5 Ways to Protect Your Email as Cybersecurity Concerns Grow

Adafruit discloses data leak from ex-employee's GitHub repo

Anonymous offers $52,000 worth of Bitcoin to Russian troops for surrendered tank. Is it fake news?

Cyber attacks by Iran hackers on rise

Cyberrisk Management Tips for Businesses Amid the Russia-Ukraine War

Don't fall for the new val tag scam

Email security bill of rights for a zero-trust world

Experts fear for Suffolk's cyber-security after Russian invasion of Ukraine

Fake apps, imposter websites and social media posts - red flags to watch to avoid scammers

Gmail warning: This email says it protects your PC but does the opposite - delete it now

Hackers claim to have discovered a large Samsung data breach, including encryption keys and source code

Hackers Threaten To Leak "Nvidia's Most Closely Guarded" Secrets

Hacking-as-a-Service has rendered cyberspace more vulnerable

MercadoLibre anunciado na lista de vazamentos do Lapsus$

Navigate the unknowns of tomorrow in this must-read report for CISOs, CTOs, and CIOs

Radware calls for companies to review their cyber security posture in light of current events

Ransomware may not be the ‘impossible problem’ for businesses

Safeguarding patient data is crucial for Pharmaceutical companies

Sea Transportation: Cyber Security Stumbles

Small Business Cybersecurity Concerns Amid Russia-Ukraine Crisis

Solana Network Gets Hit with Phishing Attacks

T-Mobile Users Should Take Action After Data Hack, DC AG Warns

Tips to protect yourself from cyberattacks with crisis in Ukraine: Betty Lin-Fisher

Ukraine Situation Drives New Cyber Attack Reporting Mandates

Ways to avoid ransomware attacks

Why Hasn't Russia Launched a Major Cyber Attack Against Ukraine?

NEWS: Fevereiro (27/02 - 05/03) - 09 Semana de 2022