Cyber Security and Information Security News - Daily Updates !! Weekly Review

10/09

Beware grandparent scams in South Africa – perhaps the worst of them all

Cyprus participates in European Cyber Security Challenge

Fresh US sanctions on Iran’s ministry over cyberattack on Albania

Hack Microsoft Teams with a GIF? It’s possible, the proof

How to avoid the new scam on Instagram that promises the blue tick but steals your account control

How to Recognize and Dispose of Malicious Emails

National Cyber security Has Been Labeled “incompetent” And “displeasing” By The Gov. After FBR Database Was Attacked

Official urges contemporary learning like AI, cyber security

Shiba Inu’s AWS credentials leaked

Suffolk County continues investigation into possible cyber intrusion

UK’s flagship cyber security conference to he held in Belfast

U.S. Imposes New Sanctions on Iran Over Cyberattack on Albania

Wartime phishing alert, do not send donations to Georgianlegion.net; requests cybersecurity

Why Phishing Attacks Are on the Rise in the Remote Age

09/09

3 Keys to Defending Against Escalating Cyber Attacks

3rd edition of ‘Cybersecurity Innovation Series’ concludes in Dubai, endorsed by UAE’s Cyber Security Council

6 Top API Security Risks! Favored Targets for Attackers If Left Unmanaged

$30 Million worth of cryptocurrency stolen by Lazarus from Axie Infinity was recovered

An increase in cyber attack fines highlights firms’ need to tighten security

Ataque hacker: prefeitura do Rio transfere para outubro conversão de crédito da Nota Carioca em desconto no IPTU. Entenda

Axie Infinity recupera R$ 155 milhões em criptomoedas após ataque hacker

Berlin sets up hotline for cyber-security attacks

Better than a fix: Tightening backup and restore helps financial services companies innovate

CISA announces RFI for critical infrastructure cyber reporting mandate

Coinbase funds lawsuit against Tornado Cash cryptomixer sanctions

Conta oficial do Flamengo no Instagram sofre ataque hacker

Cyber security threats on the rise: how should organisations react

Experts warn of attacks exploiting zero-day in WordPress BackupBuddy plugin

Framing cybersecurity as a tax on businesses

Governo dos EUA recupera US$ 30 milhões de jogo Axie Infinity após hack

Hacker lucra US$ 370.000 em hack de ‘flash loan’ à plataforma da Avalanche

Hackers Exploit Zero-Day in WordPress BackupBuddy Plugin in ~5 Million Attempts

High-risk ConnectWise Automate vulnerability fixed, admins urged to patch ASAP

How the US government’s cyber priorities will impact businesses

IHG sofre ataque hacker

Iran-linked DEV-0270 group abuses BitLocker to encrypt victims’ devices

Lampion malware returns in phishing attacks abusing WeTransfer

Major UK bus operator hit by cyber attack

Most educational institutions store sensitive data in the cloud. Is it safe?

Organizations don’t trust AI enough to forego human-driven decision-making

Patreon confirms it 'parted ways' with its 'entire' cyber security team

Repeated cyberattacks across the Western Balkans highlight need for an organized approach to security

Riyadh to host the 5th edition of the Gulf Congress on Cyber Security

School District of Elmbrook victim of cyber attacks

September 2022 Patch Tuesday forecast: No sign of cooling off

Survey reports on 2022 cyber security spending trends

The challenges of achieving ISO 27001

The future of cyber security

The Week in Ransomware - September 9th 2022 - Schools under fire

These hackers used Log4Shell vulnerability to target US energy firms

US imposes sanctions on Iran over cyber activities, cyber attack on Albania

US sanctions Iran’s Ministry of Intelligence over Albania cyberattack

U.S. Seizes Cryptocurrency Worth $30 Million Stolen by North Korean Hackers

US Treasury sanctioned Iran ’s Ministry of Intelligence over Albania cyberattack

Vice Society claims LAUSD ransomware attack, theft of 500GB of data

Why cybersecurity should be your physical security priority

You should know that most websites share your in-site search queries with third parties

08/09

3 most prominent ransomware gangs CIOs and CISOs need to watch out for

5 Key Findings from Recent Data Breach Investigations Report

A Summer of Security? It Can Only Be Done With a Zero-trust Approach

APAC accounts for 1/4 of global malicious emails in 2022

Bumblebee malware adds post-exploitation tool for stealthy infections

California's largest public school district Los Angeles Unified suffers a ransomware attack

Car Dealers need to beware of ransomware attacks rather than hackers wanting data, warns expert

CBC Group, Inc. Files Official Notice of a Data Breach Compromising Consumers’ Social Security Numbers

Chinese Hackers Target Government Officials in Europe, South America, and Middle East

Cisco Releases Security Patches for New Vulnerabilities Impacting Multiple Products

City confirms internet, email service outage due to ransomware cyberattack

Classified NATO documents stolen from Portugal, now sold on darkweb

CO Urology Practice Resolves Healthcare Data Breach Lawsuit With Settlement

Coding session: Introduction to JavaScript fuzzing

Customers affected by Capital One data breach have limited days to file a claim

Cyber Attacks Having Direct Impact on Patient Care

Cyberattacks against U.S. hospitals mean higher mortality rates, study finds

Cyberattacks lead to higher mortality rate in hospitals: study

Cybersecurity Woes, Lax Patching Put Media Companies At Risk

Data breach exposes records of 2.5 million student loan borrowers

Eurocell employee details exposed in major cyber attack

EvilProxy service allows hackers to utilize advanced phishing tactics

Former Conti Ransomware Members Join Initial Access Broker Group Targeting Ukraine

Genesis Health Care, Inc. Reports Data Breach Following Period of Unauthorized Access

GIFShell attack creates reverse shell using Microsoft Teams GIFs

Hackers gain access to staff bank account details at Derbyshire's Eurocell

Hackers Repeatedly Targeting Financial Services in French-Speaking African Countries

Healthcare fintechs targeted by cybercriminals

Hive Ransomware goes public on Massy Stores infiltration

Hospice cyberattack leaves staff unable to access patient records

How Healthcare Cyberattacks Can Impact Patient Safety, Care Delivery

How many times was Stratford University hacked?

How to deal with with unprecedented levels of regulatory change

Intercontinental Hotels Group cyberattack disrupts business operations

IT executives claim supply chain partners expose them to ransomware

Jordania: SMS-phishing on the rise, public urged to exercise caution

Layer 7 DDoS Attacks on the Rise

Los Angeles Unified School District (LAUSD) not out of woods with cyberattack, security experts say

Microsoft Warns of Ransomware Attacks by Iranian Phosphorus Hacker Group

Nation-state attacks are a growing threat to video conferencing

NATO-Member Albania Cut Ties With Iran Over Cyber-Attack

New Vulnerabilities Reported in Baxter's Internet-Connected Infusion Pumps

No, the Christchurch hot pools weren’t ‘hacked’ – the council just messed up

North Korean Lazarus hackers take aim at U.S. energy providers

North Korean Lazarus Hackers Targeting Energy Providers Around the World

NSO Group's Recent Difficulties Could Shape the Future of the Spyware Industry

Over 10% of Enterprise IT Assets Found Missing Endpoint Protection

Over 80% of the top websites leak user searches to advertisers

Portugal government cyber attack allegedly leaks “hundreds” of classified NATO documents

Rachel Dillon’s fitness app exposes users after major data breach

Ransomware as a Service

Ransomware Attack on L.A. Schools Could Signal Larger Threat, Warn Cyber Experts

Ransomware Campaigns Linked to Iranian Govt's DEV-0270 Hackers

Ransomware Has a Larger Impact on Retail Organizations

Ransomware Variant Continues to Limit Colorado County

Researchers Reveal New Iranian Threat Group APT42

Robinhood's $20 Million Data Breach Settlement: How Much Money Could You Be Owed?

Savannah College of Art and Design (SCAD) suffers data breach, 'limited number' of current and former students, employees impacted

Shopify Fails to Prevent Known Breached Passwords

Stealthy Linux Malware Shikitega Deploying Monero Cryptominer

Survey of SMBs Reveals Sharp Increase in Cyberattack Quantity and Sophistication, Creating Unprecedented Opportunities for MSPs

Suspected Ransomware Attack on InterContinental Hotels Affected Over 4,000 Guests

The 10 worst ransomware attacks ever

The North Face Warns of Major Credential Stuffing Campaign

The Russia-Ukraine War Exemplifies the Rise of Hybrid Conflicts: Latin America Should Pay Attention

The top apps for malware downloads

Ukraine Shutters Two More Russian Bot Farms

Zyxel Format String Flaw Let Attackers Execute Unauthorized Remote Code

Warning issued about Vice Society ransomware gang after attacks on schools

Where financial institutions must shore up their cybersecurity

Why the Telecom Industry Must Prioritize Cybersecurity

With cyber insurance costs increasing, can smaller firms avoid getting priced out?

07/09

7 free online cybersecurity courses you can take right now

As Cybersecurity Week begins, Beijing claims US attacked Uni doing military research

Authorities Take Down Prolific WT1SHOP Cybercrime Marketplace

Critical RCE Vulnerability Affects Zyxel NAS Devices — Firmware Patch Released

Croatia’s Span opens cyber security centre in Zagreb

Defeat social engineering attacks by growing your cyber resilience

FBI K-12 Ransomware Warning as LAUSD is Hit

FBI seeks Bitcoin wallet information of ransomware attackers

German Firms Tighten Cybersecurity Against New Threats

Gulf Business Machines buys majority in Dubai cybersecurity firm Coordinates

Hackers invadem aplicativo e mandam dezenas de táxis ao mesmo endereço

India Cyber Security Market Report 2022-2027: Evolving BYOD Trend & Surging Demands Security Protocols and Processes

India, UK organise virtual cybersecurity exercise for 26 countries

Instituições de ensino sofrem cada vez mais ataques de ransomware

InterContinental Hotels Group confirms cyber attack, experts suggest ransomware

Japan investigates potential Russian Killnet cyber attacks

Mental Malware and the rise of disinformation

Mirai Variant MooBot Botnet Exploiting D-Link Router Vulnerabilities

Montenegro Blames Slowed Court Processes on Cyber-Attacks

Moobot botnet is back and targets vulnerable D-Link routers

Most IT leaders think partners, customers make their business a ransomware target

Pakistan government labels its own cybersecurity team 'incompetent'

Preventing a cyberattack is more cost effective than reacting to one – so why aren’t more businesses investing in proactive cybersecurity programs?

REPLY: Solve Security Riddles in a 24-hour Marathon - Countdown to the Reply Cyber Security Challenge Open to Security Lovers From All Over the World

Researchers publish post-quantum upgrade to the Signal protocol

State edtech leaders say schools have insufficient cybersecurity funding

There is no secure critical infrastructure without identity-based access

Threat of Go-Ahead bus disruption as company manages 'cyber security incident'

UK Privacy Regulator Fines Halfords for Spam Deluge

UK transport firm Go-Ahead hit by cyber attack

Zyxel addressed a critical RCE flaw in its NAS devices

WHSmith high street sales ‘adversely impacted’ following Funky Pigeon cyber attack

06/09

62% of consumers see fraud as an inevitable risk of online shopping

45 mil Malindo Air passenger records allegedly obtained from data breach appear on online forum

Apple strengthens security and privacy in iOS 16

BlackCat ransomware gang targets Italian energy company GSE, steals 700 GB of data

Brighton bus and train company uncovers cyber attack

Chinese PII Breach: It Hits Differently There

DeadBolt is hitting QNAP NAS devices via zero-day bug, what to do?

EvilProxy phishing-as-a-service with MFA bypass emerged on the dark web

Go-Ahead cyberattack might derail UK public transport services

Go-Ahead hit by cyber security 'incident' before takeover process completes

Government guide for supply chain security: The good, the bad and the ugly

Hackers steal KeyBank customer data in a third-party data breach

Half of Firms Report Supply Chain Ransomware Compromise

How to Improve Mean Time to Detect for Ransomware

Instagram fined 405 million euros by Irish regulators for data breach

Integrating Live Patching in SecDevOps Workflows

Internet fraud on the rise, police warn of phishing or spoofing

Interpol Busts Asian Sextortion Syndicate

Is Zimbabwe ready for cyber-warfare? Is country at risk of cyberattacks over its Russia support?

London's Biggest Bus Operator Hit by Cyber "Incident"

Los Angeles school district reports ransomware attack

Major UK transport company Go-Ahead battles cyber-attack

New EvilProxy Phishing Service Allowing Cybercriminals to Bypass 2-Factor Security

New Worok cyber-espionage group targets governments, high-profile firms

Nigeria, others battle state-sponsored cyber threats

QNAP Warns of New DeadBolt Ransomware Attacks Exploiting Photo Station Flaw

Researchers Find New Android Spyware Campaign Targeting Uyghur Community

Samsung confirms it was hit by a data breach

Samsung reports second data breach in 6 months

Second largest U.S. school district Los Angeles Unified (LAUSD) hit by ransomware

TA505 Hackers Using TeslaGun Panel to Manage ServHelper Backdoor Attacks

This overlooked cybersecurity risk could create an ocean of trouble for us all

What’s polluting your data lake?

Worok Hackers Target High-Profile Asian Companies and Governments

05/09

75% increase in ransomware attacks targeting Linux systems in 2022

A new malware has been mimicking Google Translate

A new SharkBot variant bypassed Google Play checks again

Anonymous trolls Russia by causing major traffic jam in Moscow

Após ataque, hackers estão vendendo dados do Gov.br

Attacker Posts Fake XRP Giveaway on PwC Venezuela Twitter Account

Australians warned over ‘malicious’ new email scam using NASA photo to hack your device

Balkan Investigative Reporting Network (BIRN) Hit by Cyber-Attacks After Turkish Fraudster Investigation

Bank and Payment Scams: Bitcoin PayPal, M&T, and Zelle

Beware! Fraudsters may steal your money: Know how to identify phishing mails and stay protected

BlackByte ransomware attack on San Francisco 49ers claimed over 20K victims

Can a VPN Protect You From Ransomware?

Carson City Rotarians to learn about cyber-attack prevention during Tuesday meeting

China accuses United States of hacking top space and aviation university

China strongly condemns U.S. cyber attacks on China's Northwestern Polytechnical University

Corretora de criptomoedas ameaça hacker após ser roubada

Corrigida falha do Windows Defender que identificava Chromium e Electron como Ransomware Hive

Cyber-attacks in future will be about machine learning and automation around attacking and discovery of vulnerabilities - Asaf Hecht, CyberArk

EvilProxy Phishing-As-A-Service With MFA Bypass Emerged In Dark Web

EvilProxy Phishing Toolkit Spotted on Dark Web Forums

Fake Antivirus and Cleaner Apps Caught Installing SharkBot Android Banking Trojan

Google Chrome zero-day flaw: Users urged to install update 'immediately'

Hack on North Korea peace forum exposes participants’ personal information

Hacker Leaks Names and Addresses of Over 40,000 Karachi Citizens

High Risks, Scarce Skills Drive Swiss Cybersecurity Market

How Okta is regaining customer trust after a cyber attack

How to address IoT security challenges?

India sees spike in ransomware, banking malware in H1 2022

Interpol dismantles sextortion ring, warns of increased attacks

IRS (US Internal Revenue Service) Leaks 120,000 Taxpayers' Personal Details

Kaspersky discovers active malicious campaigns targeting mobile users in APAC

Keybank's Customer Information Stolen By Hackers Via Third-party Provider

Microsoft Defender causes 'mass confusion' after legitimate apps trigger ransomware alerts

Midea: ataque de ransomware?

New EvilProxy service lets all hackers use advanced phishing tactics

New Rules for Crypto Exchanges to Stop Sanctions Evaders

Nmap 7.93, the 25th anniversary edition, has been released

Prefeitura do Rio retoma atendimento de CadÚnico suspenso desde ataque 'hacker'

QNAP patches zero-day used in new Deadbolt ransomware attacks

Ransomware attacks on Linux to surge

Ransomware Attackers Abuse Genshin Impact Anti-Cheat System to Disable Antivirus

Ransomware’s rise: What can be done about it

Samsung Reveals New US Data Breach

Samsung sofre ataque hacker e tem dados de clientes vazados

SharkBot Malware Resurfaces on Google Play to Steal Users' Credentials

Supply chain risk is a top security priority as confidence in partners wanes

TikTok Denies Data Breach Reportedly Exposing Over 2 Billion Users' Information

TikTok denies security breach after hackers leak user data, source code

US spy agency blamed for cyber attacks on Xi'an university

What Is Your Security Team Profile? Prevention, Detection, or Risk Management

Windows Defender identified Chromium, Electron apps as Hive Ransomware

Your vendors are likely your biggest cybersecurity risk

04/09

Action Fraud warn over fake E.ON scam email

Brightsolid launches new defence against cyber-attack

Conta do Twitter da PwC Venezuela é hackeada

Cybercriminals exploit LNKs to spread malware families

Fremantle apologise for AFL data breach

Get the hackers on your side

Hackers acquire info on current and former students and staff at Savannah College of Art and Design

Hackers send cabs to same location in Russia, creates huge traffic jam

Hackers who hit Luxembourg turn on Italy

Hoxhunt Primed to Spread Gamified Phishing Awareness in the Enterprise