NEWS: Março (06/03 - 12/03) - 10 Semana de 2022
Cyber Security and Information Security News - Daily Updates !!

12/03
After Nvidia & Samsung, gaming giant Ubisoft suffers cyber attack
Android malware Escobar steals your Google Authenticator MFA codes
Anonymous sent 7 million texts to Russians plus hacked 400 of their security cams
California City Reportedly Fell for Email Scam Hook, Line and Sinker
Cyber Security Incident Pushes Ubisoft to Issue Internal Password Reset
Data literacy: What it is and why it matters
Evolving Technology – The Impact on Cybersecurity
Fears of Russian cyber attacks spark alert in West Midlands
Healthcare providers must place patient data in a vault to ensure cybersecurity, says Dell
How to Block Spam Calls and Text Messages
Iranian APT: New Methods to Target Turkey, Arabian Peninsula
Legal firm: Jacksonville Spine Center suffered ransomware attack
Mobile attacks explosion, how to protect yourself?
New reporting requirements for US-based companies hacked by hackers
Online privacy becomes a growing concern as data becomes more accessible
Russia-Ukraine war raises global cyber security risk, study shows
Security Considerations for BYOD Policies
Taking a spring break trip? Here's how to protect your devices and identity on vacation
The Top 9 Types of Cyberattacks on Business Users
Threat Intel Report: Who Is Behind Staggering 190GB Samsung Galaxy Hack?
Ubisoft confirms 'cyber security incident', resets staff passwords
Veteran Qakbot Malware Is Increasingly Advanced and Varied
11/03
94% of SA companies targeted in phishing attacks over the last year
Anonymous Claims to Have Leaked Over 360,000 Files From Russian Federal Agency
Anonymous Hacks Russian Media Censoring Agency Roskomnadzor
BazarBackdoor Malware is Hitting Website Contact Forms to Evade AV Detection
Bridgestone Americas confirms ransomware attack, LockBit leaks data
Consumers demand a digital banking experience with security at its foundation
Cosumers don’t think they can dodge identity fraud
Cybersecurity Picture Inside Russia Grows More Complicated
Data Breach Alert: Ascension Michigan
Data Breach Alert: GreenSlate, LLC
Data Breach Alert: My Way Holdings, LLC dba Sunland Park Racetrack & Casino
Data Breach Alert: Westbrook Service Corporation
Data centres are still a tempting target for hackers: Here's how to improve your security
Education sector most likely to pay ransomware demand, report finds
English law firm fined £98k after data breach
FBI investigation continues into phishing scam involving Fresno
Financial firms could experience more cyber attacks this year
Google: We're spotting more Chrome browser zero-day flaws in the wild. Here's why
In a first, Ukraine leaks Russian intellectual property as act of war
IronNet's March Threat Intelligence Brief 2022
IsaacWiper Followed HermeticWiper Attack on Ukraine Orgs
LastPass vs 1Password: Battle of the password manager titans
Logan Health Facing Class Action Lawsuit Over Data Breach
Logan Health sued after data breach exposed 174,761 patients' health information
Meet The “No Normal” Of Cybersecurity
Mobile Malware And Phishing Scams Are Huge In 2022 — Here's How To Stay Safe
Montrose Regional Health experiences data breach
NetWalker ransomware affiliate extradited to the US for further charges
New ONE PIECE anime episodes delayed after Toei cyberattack
Organizations need to evolve their data management strategy
Polícia faz operação contra quadrilha especializada em golpes digitais
Raccoon Stealer Crawls Into Telegram
Russian based APT Groups Conduct Phishing Campaigns Targeting Ukraine
Russian defense firm Rostec shuts down website after DDoS attack
Scammers spread phishing emails from fake ‘Thailand Pass’ domains
Securities and Exchange Commission (SEC) Proposes Four-Day Breach Notification Rules
Singapore: At least 280 victims lose S$1.2m to phone call phishing scams
Shipping fraud quickly emerging as one of the top fraud types
This phishing attack hijacks email chains to power up an ancient botnet
Top criminal law firm fined £98k after cyber attack led to court bundles being leaked on dark web
Tuckers Solicitors fined £98,000 by ICO over data breach
Ubisoft says 'cyber security incident' last week shows no evidence of data breach
UK ferry operator Wightlink flags potential data breach after ‘highly sophisticated’ cyber-attack
Ukrainian Man Arrested for Alleged Role in Ransomware Attack on Kaseya, Others
US Officials seize $28 million in crypto, Canadian Ransomware suspect handed to the US
Vodafone and Mercado Libre Likely Hit by Ransomware Attacks
Walmart Security Chief Criticizes Data Breach Prevention Strategies
What is fueling the adoption of passwordless authentication?
What is Ransomware-as-a-Service (RaaS)?
10/03
90% of MSPs Hit By a Successful Cyber-Attack in the Past 18 Months
AI Accountability Framework Created to Guide Use of AI in Security
Alleged Kaseya Attacker Extradited to US
Bugcrowd's top bug bounty reward increases to $1 million
Businesses under pressure as consumers exercise their privacy rights
Colorado Elections Clerk Charged with Identity Theft
Conti Group Spent $6m on Salaries, Tools and Services in a Year
Conti Ransomware Group Continues to Threaten Healthcare
Data Breach Alert: Crossroads Health
Defending Against Cyber-Threats – Think Like an Attacker
Does the future of digital identity offer us greater security and convenient experiences?
Extortion Attempt on Samsung Leads to Data Breach, Leak of Bootloader and Authentication Source Code
Firm fined almost £100,000 over ransomware attack
Growing Frequency and Rising Costs of Ransomware Attacks on Schools Highlight New Report
In a world of deepfakes, this billion-dollar startup wants you to trust AI-powered ID checks
ITOps teams are getting buried beneath too many disparate solutions for endpoint management
It's time to stop hoping that cybersecurity problems will just go away
Latin e-commerce giant Mercado Libre hacked
Leaked correspondence and files expose infamous Conti ransomware gang
Malware disguised as security tool targets Ukraine's IT Army
MuddyWater targets Middle Eastern and Asian countries in phishing attacks
New Exploit Bypasses Existing Spectre-V2 Mitigations in Intel and Arm CPUs
New Mexico credit union investigating claims made by known ransomware provider
Organizations need to change their current password usage and policies, and do it fast
Organizations taking nearly two months to remediate critical risk vulnerabilities
Over 90% of Exposed Russian Cloud Databases Compromised
Qakbot Botnet Sprouts Fangs, Injects Malware into Email Threads
RagnarLocker ransomware struck 52 critical infrastructure entities within two years – FBI
Russia May Use Ransomware Payouts to Avoid Sanctions
Securities and Exchange Commission (SEC) wants public companies to report breaches within four days
Still too many parents don’t monitor their children’s online activity
UK Security Agency Issues New Guidance on Data Center Protection
War in Ukraine: What type of cyber attacks can we expect next?
Watch out for this phishing attack that hijacks your email chats to spread malware
Wightlink Suffers ‘Sophisticated’ Cyber Attack Exposing Customers' Details
09/03
Arizona Attorney General Issues Consumer Advisory Regarding Social Media Scams
Bermuda Monetary Authority (BMA) reports new phishing scheme to police
Car Dealership Employees Begin Legal Case Following Breach
China Hacked U State Government networks with the help of APT41
Chinese APT41 Group Compromises Six US Government Networks
Chinese phishing actors consistently targeting EU diplomats
Consumers fed up with passwords and KBAs, looking to voice enabled technology as the future
Critical RCE Bugs Found in Pascom Cloud Phone System Used by Businesses
Cyber Attacks On Remote Workers Continue
Cyber Insurance Is a Perfect Storm: Risk Quantification Can Rescue It
Cyberattacks are intensifying amid war, Czech experts warn
Data privacy laws are an opportunity to become more honest in reaching your target audience
Giftmart Instagram (Instagift) Phishing Scam Alert
Government agencies in Ukraine targeted in cyber-attacks deploying MicroBackdoor malware
Hybrid work trend ensures another year of online vulnerability
In-the-wild DDoS attack can be launched from a single packet to create terabytes of traffic
India Among Top 3 Countries Most Affected by Ransomware Attacks
Ireland: Ex-INM chief had email account rebuilt in secret data operation
Manufacturing felt brunt of cyberattacks in 2021 as supply chain woes grew
Mercado Libre latest hacking victim of LAPSUS$ group
New password fraud scam on social media accounts
Over half of London councils lack cyber insurance
Ragnar ransomware gang hit 52 critical US orgs, says FBI
Responding to heightened cyberattack risk: Focus on the basics
Samsung confirms data breach after hackers leak internal source code
Securing healthcare: An IT health check on the state of the sector
Shoppers furious over Hula Hoops and McCoys crisps shortage due to Russian cyber attack
The Cyberwar Toolkit: 8 Surefire Ways to Protect Your Data and Identity Online
The group responsible for Nvidia ransomware attack has now added Samsung to its victim list
U.S. charges two siblings in $124 million cryptocurrency fraud
Understanding US Defense Department’s relaxed cybersecurity protocols under CMMC 2.0
West Midlands braces for Russian cyber attacks after council targeted by hackers
What's next for Russian cyber?
08/03
4 Types of Hackers That You Probably Didn’t Know Existed
5 steps that simplify IoT security for OEMs
70% of breached passwords are still in use
76% of American SMEs are concerned about EV security
Access:7 vulnerabilities impact medical and IoT devices
Applying Dynamic Response Measures To Fight Ransomware
Ascension Michigan data breach exposed 27K patient records
Ataque hacker provoca instabilidade no site da Urbs para recarga de cartão transporte
Automation is the Top Cloud Security Priority
CISA: Patch actively exploited Firefox zero-days until March 21st
Critical "Access:7" Supply Chain Vulnerabilities Impact ATMs, Medical and IoT Devices
Cybersecurity predictions and best practices in 2022
DDoS attacks now use new record-breaking amplification vector
Dirty Pipe Exploit Rings Alarm Bells in the Linux Community
E-commerce giant Mercado Libre confirms source code data breach
Easily exploitable Linux bug gives root access to attackers (CVE-2022-0847)
Emotet growing slowly but steadily since November resurgence
Facebook the 2021 Most Targeted Site by Phishing Scams! Around 14% of Fake Pages Copy FB
FBI: Ragnar Locker ransomware breached 52 US critical infrastructure orgs
Fraud detection and prevention costs merchants more than fraud itself
Gardaí trawl leaked files of HSE cyber gang
Google: Russia, China, Belarus state hackers target Ukraine, Europe
Grupo hacker vaza quase 200 GB de dados da Samsung; empresa confirma ataque
HC3 Report Reveals Cyberattack Trends and Provides Insights to Improve Healthcare Cybersecurity
Hive ransomware gang targets Romanian oil firm in its latest cyberattack
HP patches 16 UEFI firmware bugs allowing stealthy malware infections
ICS vulnerability disclosures surge 110% over the last four years
Improve your organization’s cyber hygiene with CIS CSAT Pro
Increasing risks for industrial control systems
Increasing security for single page applications (SPAs)
Logan Health Notifies Patients of Data Breach That Affected Thousands of Montanans
Malware Is Disguising Itself As NVIDIA GPU Drivers
March 2022 Patch Tuesday: Microsoft fixes RCEs in RDP client, Exchange Server
Mercado Livre sofre ataque hacker e diz que dados de 300 mil usuários foram acessados
Mercado Livre sofre vazamento e hackers do ConecteSUS podem ser os responsáveis
Millions of APC Smart UPS Devices Can Be Remotely Hacked, Damaged
Minnesota School District's Hacked Email Causes Concern
Oi simula invasão hacker para testar vulnerabilidade
Oklahoma Hospital Data Breach Impacts 92,000 People
Omicron Covid scam texts pretending to be NHS swindles £531,000 from Brits
Phishing attempts from FancyBear and Ghostwriter stepping up says Google
Ransomware Attack Trends: Critical Infrastructure In The Crosshairs
Romania's largest refinery Petromidia under cyberattack
Samsung Confirms Data Breach After Hackers Leak Galaxy Source Code
Scores of US Critical Infrastructure Firms Hit by Ransomware
Similarities and Difference Between Ransomware and DDoS Extortion Attacks
Software Supply Chain Security Turns to Risk Mitigation
State of IoT and OT security in the Middle East
T-Mobile Data Breach; Consumers Urged to Protect Their Information
The Human Factor in Data Security Breaches
TLStorm exploits expose more than 20 million UPS units to takeover. Was yours one of them?
Urgent warning as experts say hackers are targeting your stimulus check payments in five ways
What is XSS? Cross-site scripting attacks explained
Widely used UPS devices can be hijacked and destroyed remotely
Zywave Agrees to $11 Million Fund to Settle ITC Data Breach Lawsuit
07/03
Anonymous hacked Russian streaming services to broadcast war footage
BBC targeted with 383,278 spam, phishing and malware attacks every day
Counterfeit and Pirated Imports Surge During Pandemic
Critical Bugs in TerraMaster TOS Could Open NAS Devices to Remote Hacking
Critical Firefox Zero-Day Bugs Allow RCE, Sandbox Escape
Developing threat updates: MuddyWater, HermeticWiper and Cyclops target Ukraine amid Crisis
Every business is a cybersecurity business
FBI: Govt officials impersonated in widespread extortion schemes
How an 8-character password could be cracked in less than an hour
How frustrated and burned out are security analysts?
How to check Android 12 permissions with the Privacy Dashboard
IT leaders confident in their ability to manage a ransomware attack: They should know better
Long delay before Cybersecurity NSW notified of Accellion hack
Microsoft fixes critical Azure bug that exposed customer data
Mozilla addresses two actively exploited zero-day flaws in Firefox
Mozilla fixes Firefox zero-days exploited in the wild (CVE-2022-26485, CVE-2022-26486)
Mozilla fixes two critical Firefox flaws that are being actively exploited
Musk Warns Starlink Could Attract Russian Bombs
O que é preciso saber sobre o novo reconhecimento facial nos aeroportos dos EUA
Piracy OK: Russia to ease software licensing rules after sanctions
Rompetrol gas station network hit by Hive ransomware
Samsung confirms Galaxy source code breach but says no customer information was stolen
Samsung confirms data breach as Lapsus$ hackers leak its source code
Samsung confirms hackers stole Galaxy devices source code
Samsung é hackeada e tem dados sobre Galaxy roubados
SharkBot, the new generation banking Trojan distributed via Play Store
Trading in your old phone soon? Here's how to get it ready
Ukraine Set to Join NATO Cyber Hub
Ukrainian CERT Warns Citizens of Phishing Attacks Using Compromised Accounts
Understanding How Hackers Recon
06/03
5 Ways to Protect Your Email as Cybersecurity Concerns Grow
Adafruit discloses data leak from ex-employee's GitHub repo
Anonymous offers $52,000 worth of Bitcoin to Russian troops for surrendered tank. Is it fake news?
Cyber attacks by Iran hackers on rise
Cyberrisk Management Tips for Businesses Amid the Russia-Ukraine War
Don't fall for the new val tag scam
Email security bill of rights for a zero-trust world
Experts fear for Suffolk's cyber-security after Russian invasion of Ukraine
Fake apps, imposter websites and social media posts - red flags to watch to avoid scammers
Gmail warning: This email says it protects your PC but does the opposite - delete it now
Hackers Threaten To Leak "Nvidia's Most Closely Guarded" Secrets
Hacking-as-a-Service has rendered cyberspace more vulnerable
MercadoLibre anunciado na lista de vazamentos do Lapsus$
Navigate the unknowns of tomorrow in this must-read report for CISOs, CTOs, and CIOs
Radware calls for companies to review their cyber security posture in light of current events
Ransomware may not be the ‘impossible problem’ for businesses
Safeguarding patient data is crucial for Pharmaceutical companies
Sea Transportation: Cyber Security Stumbles
Small Business Cybersecurity Concerns Amid Russia-Ukraine Crisis
Solana Network Gets Hit with Phishing Attacks
T-Mobile Users Should Take Action After Data Hack, DC AG Warns
Tips to protect yourself from cyberattacks with crisis in Ukraine: Betty Lin-Fisher
Ukraine Situation Drives New Cyber Attack Reporting Mandates
Ways to avoid ransomware attacks
Why Hasn't Russia Launched a Major Cyber Attack Against Ukraine?