top of page

NEWS: Setembro (04/09 - 10/09) - 36 Semana de 2022

Cyber Security and Information Security News - Daily Updates !! Weekly Review

10/09


Beware grandparent scams in South Africa – perhaps the worst of them all


Cyprus participates in European Cyber Security Challenge


Fresh US sanctions on Iran’s ministry over cyberattack on Albania


Hack Microsoft Teams with a GIF? It’s possible, the proof


How to avoid the new scam on Instagram that promises the blue tick but steals your account control


How to Recognize and Dispose of Malicious Emails


National Cyber security Has Been Labeled “incompetent” And “displeasing” By The Gov. After FBR Database Was Attacked


Official urges contemporary learning like AI, cyber security


Shiba Inu’s AWS credentials leaked


Suffolk County continues investigation into possible cyber intrusion


UK’s flagship cyber security conference to he held in Belfast


U.S. Imposes New Sanctions on Iran Over Cyberattack on Albania


Wartime phishing alert, do not send donations to Georgianlegion.net; requests cybersecurity


Why Phishing Attacks Are on the Rise in the Remote Age


09/09


3 Keys to Defending Against Escalating Cyber Attacks


3rd edition of ‘Cybersecurity Innovation Series’ concludes in Dubai, endorsed by UAE’s Cyber Security Council


6 Top API Security Risks! Favored Targets for Attackers If Left Unmanaged


$30 Million worth of cryptocurrency stolen by Lazarus from Axie Infinity was recovered


An increase in cyber attack fines highlights firms’ need to tighten security


Ataque hacker: prefeitura do Rio transfere para outubro conversão de crédito da Nota Carioca em desconto no IPTU. Entenda


Axie Infinity recupera R$ 155 milhões em criptomoedas após ataque hacker


Berlin sets up hotline for cyber-security attacks


Better than a fix: Tightening backup and restore helps financial services companies innovate


CISA announces RFI for critical infrastructure cyber reporting mandate


Coinbase funds lawsuit against Tornado Cash cryptomixer sanctions


Conta oficial do Flamengo no Instagram sofre ataque hacker


Cyber security threats on the rise: how should organisations react


Experts warn of attacks exploiting zero-day in WordPress BackupBuddy plugin


Framing cybersecurity as a tax on businesses


Governo dos EUA recupera US$ 30 milhões de jogo Axie Infinity após hack


Hacker lucra US$ 370.000 em hack de ‘flash loan’ à plataforma da Avalanche


Hackers Exploit Zero-Day in WordPress BackupBuddy Plugin in ~5 Million Attempts


High-risk ConnectWise Automate vulnerability fixed, admins urged to patch ASAP


How the US government’s cyber priorities will impact businesses


IHG sofre ataque hacker


Iran-linked DEV-0270 group abuses BitLocker to encrypt victims’ devices


Lampion malware returns in phishing attacks abusing WeTransfer


Major UK bus operator hit by cyber attack


Most educational institutions store sensitive data in the cloud. Is it safe?


Organizations don’t trust AI enough to forego human-driven decision-making


Patreon confirms it 'parted ways' with its 'entire' cyber security team


Repeated cyberattacks across the Western Balkans highlight need for an organized approach to security


Riyadh to host the 5th edition of the Gulf Congress on Cyber Security


School District of Elmbrook victim of cyber attacks


September 2022 Patch Tuesday forecast: No sign of cooling off


Survey reports on 2022 cyber security spending trends


The challenges of achieving ISO 27001


The future of cyber security


The Week in Ransomware - September 9th 2022 - Schools under fire


These hackers used Log4Shell vulnerability to target US energy firms


US imposes sanctions on Iran over cyber activities, cyber attack on Albania


US sanctions Iran’s Ministry of Intelligence over Albania cyberattack


U.S. Seizes Cryptocurrency Worth $30 Million Stolen by North Korean Hackers


US Treasury sanctioned Iran ’s Ministry of Intelligence over Albania cyberattack


Vice Society claims LAUSD ransomware attack, theft of 500GB of data


Why cybersecurity should be your physical security priority


You should know that most websites share your in-site search queries with third parties


08/09


3 most prominent ransomware gangs CIOs and CISOs need to watch out for


5 Key Findings from Recent Data Breach Investigations Report


A Summer of Security? It Can Only Be Done With a Zero-trust Approach


APAC accounts for 1/4 of global malicious emails in 2022


Bumblebee malware adds post-exploitation tool for stealthy infections


California's largest public school district Los Angeles Unified suffers a ransomware attack


Car Dealers need to beware of ransomware attacks rather than hackers wanting data, warns expert


CBC Group, Inc. Files Official Notice of a Data Breach Compromising Consumers’ Social Security Numbers


Chinese Hackers Target Government Officials in Europe, South America, and Middle East


Cisco Releases Security Patches for New Vulnerabilities Impacting Multiple Products


City confirms internet, email service outage due to ransomware cyberattack


Classified NATO documents stolen from Portugal, now sold on darkweb


CO Urology Practice Resolves Healthcare Data Breach Lawsuit With Settlement


Coding session: Introduction to JavaScript fuzzing


Customers affected by Capital One data breach have limited days to file a claim


Cyber Attacks Having Direct Impact on Patient Care


Cyberattacks against U.S. hospitals mean higher mortality rates, study finds


Cyberattacks lead to higher mortality rate in hospitals: study


Cybersecurity Woes, Lax Patching Put Media Companies At Risk


Data breach exposes records of 2.5 million student loan borrowers


Eurocell employee details exposed in major cyber attack


EvilProxy service allows hackers to utilize advanced phishing tactics


Former Conti Ransomware Members Join Initial Access Broker Group Targeting Ukraine


Genesis Health Care, Inc. Reports Data Breach Following Period of Unauthorized Access


GIFShell attack creates reverse shell using Microsoft Teams GIFs


Hackers gain access to staff bank account details at Derbyshire's Eurocell


Hackers Repeatedly Targeting Financial Services in French-Speaking African Countries


Healthcare fintechs targeted by cybercriminals


Hive Ransomware goes public on Massy Stores infiltration


Hospice cyberattack leaves staff unable to access patient records


How Healthcare Cyberattacks Can Impact Patient Safety, Care Delivery


How many times was Stratford University hacked?


How to deal with with unprecedented levels of regulatory change


Intercontinental Hotels Group cyberattack disrupts business operations


IT executives claim supply chain partners expose them to ransomware


Jordania: SMS-phishing on the rise, public urged to exercise caution


Layer 7 DDoS Attacks on the Rise


Los Angeles Unified School District (LAUSD) not out of woods with cyberattack, security experts say


Microsoft Warns of Ransomware Attacks by Iranian Phosphorus Hacker Group


Nation-state attacks are a growing threat to video conferencing


NATO-Member Albania Cut Ties With Iran Over Cyber-Attack


New Vulnerabilities Reported in Baxter's Internet-Connected Infusion Pumps


No, the Christchurch hot pools weren’t ‘hacked’ – the council just messed up


North Korean Lazarus hackers take aim at U.S. energy providers


North Korean Lazarus Hackers Targeting Energy Providers Around the World


NSO Group's Recent Difficulties Could Shape the Future of the Spyware Industry


Over 10% of Enterprise IT Assets Found Missing Endpoint Protection


Over 80% of the top websites leak user searches to advertisers


Portugal government cyber attack allegedly leaks “hundreds” of classified NATO documents


Rachel Dillon’s fitness app exposes users after major data breach


Ransomware as a Service


Ransomware Attack on L.A. Schools Could Signal Larger Threat, Warn Cyber Experts


Ransomware Campaigns Linked to Iranian Govt's DEV-0270 Hackers


Ransomware Has a Larger Impact on Retail Organizations


Ransomware Variant Continues to Limit Colorado County


Researchers Reveal New Iranian Threat Group APT42


Robinhood's $20 Million Data Breach Settlement: How Much Money Could You Be Owed?


Savannah College of Art and Design (SCAD) suffers data breach, 'limited number' of current and former students, employees impacted


Shopify Fails to Prevent Known Breached Passwords


Stealthy Linux Malware Shikitega Deploying Monero Cryptominer


Survey of SMBs Reveals Sharp Increase in Cyberattack Quantity and Sophistication, Creating Unprecedented Opportunities for MSPs


Suspected Ransomware Attack on InterContinental Hotels Affected Over 4,000 Guests


The 10 worst ransomware attacks ever


The North Face Warns of Major Credential Stuffing Campaign


The Russia-Ukraine War Exemplifies the Rise of Hybrid Conflicts: Latin America Should Pay Attention


The top apps for malware downloads


Ukraine Shutters Two More Russian Bot Farms


Zyxel Format String Flaw Let Attackers Execute Unauthorized Remote Code


Warning issued about Vice Society ransomware gang after attacks on schools


Where financial institutions must shore up their cybersecurity


Why the Telecom Industry Must Prioritize Cybersecurity


With cyber insurance costs increasing, can smaller firms avoid getting priced out?


07/09


7 free online cybersecurity courses you can take right now


As Cybersecurity Week begins, Beijing claims US attacked Uni doing military research


Authorities Take Down Prolific WT1SHOP Cybercrime Marketplace


Critical RCE Vulnerability Affects Zyxel NAS Devices — Firmware Patch Released


Croatia’s Span opens cyber security centre in Zagreb


Defeat social engineering attacks by growing your cyber resilience


FBI K-12 Ransomware Warning as LAUSD is Hit


FBI seeks Bitcoin wallet information of ransomware attackers


German Firms Tighten Cybersecurity Against New Threats


Gulf Business Machines buys majority in Dubai cybersecurity firm Coordinates


Hackers invadem aplicativo e mandam dezenas de táxis ao mesmo endereço


India Cyber Security Market Report 2022-2027: Evolving BYOD Trend & Surging Demands Security Protocols and Processes


India, UK organise virtual cybersecurity exercise for 26 countries


Instituições de ensino sofrem cada vez mais ataques de ransomware


InterContinental Hotels Group confirms cyber attack, experts suggest ransomware


Japan investigates potential Russian Killnet cyber attacks


Mental Malware and the rise of disinformation


Mirai Variant MooBot Botnet Exploiting D-Link Router Vulnerabilities


Montenegro Blames Slowed Court Processes on Cyber-Attacks


Moobot botnet is back and targets vulnerable D-Link routers


Most IT leaders think partners, customers make their business a ransomware target


Pakistan government labels its own cybersecurity team 'incompetent'


Preventing a cyberattack is more cost effective than reacting to one – so why aren’t more businesses investing in proactive cybersecurity programs?


REPLY: Solve Security Riddles in a 24-hour Marathon - Countdown to the Reply Cyber Security Challenge Open to Security Lovers From All Over the World


Researchers publish post-quantum upgrade to the Signal protocol


State edtech leaders say schools have insufficient cybersecurity funding


There is no secure critical infrastructure without identity-based access


Threat of Go-Ahead bus disruption as company manages 'cyber security incident'


UK Privacy Regulator Fines Halfords for Spam Deluge


UK transport firm Go-Ahead hit by cyber attack


Zyxel addressed a critical RCE flaw in its NAS devices


WHSmith high street sales ‘adversely impacted’ following Funky Pigeon cyber attack


06/09


62% of consumers see fraud as an inevitable risk of online shopping


45 mil Malindo Air passenger records allegedly obtained from data breach appear on online forum


Apple strengthens security and privacy in iOS 16


BlackCat ransomware gang targets Italian energy company GSE, steals 700 GB of data


Brighton bus and train company uncovers cyber attack


Chinese PII Breach: It Hits Differently There


DeadBolt is hitting QNAP NAS devices via zero-day bug, what to do?


EvilProxy phishing-as-a-service with MFA bypass emerged on the dark web


Go-Ahead cyberattack might derail UK public transport services


Go-Ahead hit by cyber security 'incident' before takeover process completes


Government guide for supply chain security: The good, the bad and the ugly


Hackers steal KeyBank customer data in a third-party data breach


Half of Firms Report Supply Chain Ransomware Compromise


How to Improve Mean Time to Detect for Ransomware


Instagram fined 405 million euros by Irish regulators for data breach


Integrating Live Patching in SecDevOps Workflows


Internet fraud on the rise, police warn of phishing or spoofing


Interpol Busts Asian Sextortion Syndicate


Is Zimbabwe ready for cyber-warfare? Is country at risk of cyberattacks over its Russia support?


London's Biggest Bus Operator Hit by Cyber "Incident"


Los Angeles school district reports ransomware attack


Major UK transport company Go-Ahead battles cyber-attack


New EvilProxy Phishing Service Allowing Cybercriminals to Bypass 2-Factor Security


New Worok cyber-espionage group targets governments, high-profile firms


Nigeria, others battle state-sponsored cyber threats


QNAP Warns of New DeadBolt Ransomware Attacks Exploiting Photo Station Flaw


Researchers Find New Android Spyware Campaign Targeting Uyghur Community


Samsung confirms it was hit by a data breach


Samsung reports second data breach in 6 months


Second largest U.S. school district Los Angeles Unified (LAUSD) hit by ransomware


TA505 Hackers Using TeslaGun Panel to Manage ServHelper Backdoor Attacks


This overlooked cybersecurity risk could create an ocean of trouble for us all


What’s polluting your data lake?


Worok Hackers Target High-Profile Asian Companies and Governments


05/09


75% increase in ransomware attacks targeting Linux systems in 2022


A new malware has been mimicking Google Translate


A new SharkBot variant bypassed Google Play checks again


Anonymous trolls Russia by causing major traffic jam in Moscow


Após ataque, hackers estão vendendo dados do Gov.br


Attacker Posts Fake XRP Giveaway on PwC Venezuela Twitter Account


Australians warned over ‘malicious’ new email scam using NASA photo to hack your device


Balkan Investigative Reporting Network (BIRN) Hit by Cyber-Attacks After Turkish Fraudster Investigation


Bank and Payment Scams: Bitcoin PayPal, M&T, and Zelle


Beware! Fraudsters may steal your money: Know how to identify phishing mails and stay protected


BlackByte ransomware attack on San Francisco 49ers claimed over 20K victims


Can a VPN Protect You From Ransomware?


Carson City Rotarians to learn about cyber-attack prevention during Tuesday meeting


China accuses United States of hacking top space and aviation university


China strongly condemns U.S. cyber attacks on China's Northwestern Polytechnical University


Corretora de criptomoedas ameaça hacker após ser roubada


Corrigida falha do Windows Defender que identificava Chromium e Electron como Ransomware Hive


Cyber-attacks in future will be about machine learning and automation around attacking and discovery of vulnerabilities - Asaf Hecht, CyberArk


EvilProxy Phishing-As-A-Service With MFA Bypass Emerged In Dark Web


EvilProxy Phishing Toolkit Spotted on Dark Web Forums


Fake Antivirus and Cleaner Apps Caught Installing SharkBot Android Banking Trojan


Google Chrome zero-day flaw: Users urged to install update 'immediately'


Hack on North Korea peace forum exposes participants’ personal information


Hacker Leaks Names and Addresses of Over 40,000 Karachi Citizens


High Risks, Scarce Skills Drive Swiss Cybersecurity Market


How Okta is regaining customer trust after a cyber attack


How to address IoT security challenges?


India sees spike in ransomware, banking malware in H1 2022


Interpol dismantles sextortion ring, warns of increased attacks


IRS (US Internal Revenue Service) Leaks 120,000 Taxpayers' Personal Details


Kaspersky discovers active malicious campaigns targeting mobile users in APAC


Keybank's Customer Information Stolen By Hackers Via Third-party Provider


Microsoft Defender causes 'mass confusion' after legitimate apps trigger ransomware alerts


Midea: ataque de ransomware?


New EvilProxy service lets all hackers use advanced phishing tactics


New Rules for Crypto Exchanges to Stop Sanctions Evaders


Nmap 7.93, the 25th anniversary edition, has been released


Prefeitura do Rio retoma atendimento de CadÚnico suspenso desde ataque 'hacker'


QNAP patches zero-day used in new Deadbolt ransomware attacks


Ransomware attacks on Linux to surge


Ransomware Attackers Abuse Genshin Impact Anti-Cheat System to Disable Antivirus


Ransomware’s rise: What can be done about it


Samsung Reveals New US Data Breach


Samsung sofre ataque hacker e tem dados de clientes vazados


SharkBot Malware Resurfaces on Google Play to Steal Users' Credentials


Supply chain risk is a top security priority as confidence in partners wanes


TikTok Denies Data Breach Reportedly Exposing Over 2 Billion Users' Information


TikTok denies security breach after hackers leak user data, source code


US spy agency blamed for cyber attacks on Xi'an university


What Is Your Security Team Profile? Prevention, Detection, or Risk Management


Windows Defender identified Chromium, Electron apps as Hive Ransomware


Your vendors are likely your biggest cybersecurity risk


04/09


Action Fraud warn over fake E.ON scam email


Brightsolid launches new defence against cyber-attack


Conta do Twitter da PwC Venezuela é hackeada


Cybercriminals exploit LNKs to spread malware families


Fremantle apologise for AFL data breach


Get the hackers on your side


Hackers acquire info on current and former students and staff at Savannah College of Art and Design


Hackers send cabs to same location in Russia, creates huge traffic jam


Hackers who hit Luxembourg turn on Italy


Hoxhunt Primed to Spread Gamified Phishing Awareness in the Enterprise