NEWS: Setembro (04/09 - 10/09) - 36 Semana de 2022
Cyber Security and Information Security News - Daily Updates !! Weekly Review

10/09
Beware grandparent scams in South Africa – perhaps the worst of them all
Cyprus participates in European Cyber Security Challenge
Fresh US sanctions on Iran’s ministry over cyberattack on Albania
Hack Microsoft Teams with a GIF? It’s possible, the proof
How to avoid the new scam on Instagram that promises the blue tick but steals your account control
How to Recognize and Dispose of Malicious Emails
Official urges contemporary learning like AI, cyber security
Shiba Inu’s AWS credentials leaked
Suffolk County continues investigation into possible cyber intrusion
UK’s flagship cyber security conference to he held in Belfast
U.S. Imposes New Sanctions on Iran Over Cyberattack on Albania
Wartime phishing alert, do not send donations to Georgianlegion.net; requests cybersecurity
Why Phishing Attacks Are on the Rise in the Remote Age
09/09
3 Keys to Defending Against Escalating Cyber Attacks
6 Top API Security Risks! Favored Targets for Attackers If Left Unmanaged
$30 Million worth of cryptocurrency stolen by Lazarus from Axie Infinity was recovered
An increase in cyber attack fines highlights firms’ need to tighten security
Axie Infinity recupera R$ 155 milhões em criptomoedas após ataque hacker
Berlin sets up hotline for cyber-security attacks
Better than a fix: Tightening backup and restore helps financial services companies innovate
CISA announces RFI for critical infrastructure cyber reporting mandate
Coinbase funds lawsuit against Tornado Cash cryptomixer sanctions
Conta oficial do Flamengo no Instagram sofre ataque hacker
Cyber security threats on the rise: how should organisations react
Experts warn of attacks exploiting zero-day in WordPress BackupBuddy plugin
Framing cybersecurity as a tax on businesses
Governo dos EUA recupera US$ 30 milhões de jogo Axie Infinity após hack
Hacker lucra US$ 370.000 em hack de ‘flash loan’ à plataforma da Avalanche
Hackers Exploit Zero-Day in WordPress BackupBuddy Plugin in ~5 Million Attempts
High-risk ConnectWise Automate vulnerability fixed, admins urged to patch ASAP
How the US government’s cyber priorities will impact businesses
Iran-linked DEV-0270 group abuses BitLocker to encrypt victims’ devices
Lampion malware returns in phishing attacks abusing WeTransfer
Major UK bus operator hit by cyber attack
Most educational institutions store sensitive data in the cloud. Is it safe?
Organizations don’t trust AI enough to forego human-driven decision-making
Patreon confirms it 'parted ways' with its 'entire' cyber security team
Riyadh to host the 5th edition of the Gulf Congress on Cyber Security
School District of Elmbrook victim of cyber attacks
September 2022 Patch Tuesday forecast: No sign of cooling off
Survey reports on 2022 cyber security spending trends
The challenges of achieving ISO 27001
The Week in Ransomware - September 9th 2022 - Schools under fire
These hackers used Log4Shell vulnerability to target US energy firms
US imposes sanctions on Iran over cyber activities, cyber attack on Albania
US sanctions Iran’s Ministry of Intelligence over Albania cyberattack
U.S. Seizes Cryptocurrency Worth $30 Million Stolen by North Korean Hackers
US Treasury sanctioned Iran ’s Ministry of Intelligence over Albania cyberattack
Vice Society claims LAUSD ransomware attack, theft of 500GB of data
Why cybersecurity should be your physical security priority
You should know that most websites share your in-site search queries with third parties
08/09
3 most prominent ransomware gangs CIOs and CISOs need to watch out for
5 Key Findings from Recent Data Breach Investigations Report
A Summer of Security? It Can Only Be Done With a Zero-trust Approach
APAC accounts for 1/4 of global malicious emails in 2022
Bumblebee malware adds post-exploitation tool for stealthy infections
California's largest public school district Los Angeles Unified suffers a ransomware attack
Car Dealers need to beware of ransomware attacks rather than hackers wanting data, warns expert
Chinese Hackers Target Government Officials in Europe, South America, and Middle East
Cisco Releases Security Patches for New Vulnerabilities Impacting Multiple Products
City confirms internet, email service outage due to ransomware cyberattack
Classified NATO documents stolen from Portugal, now sold on darkweb
CO Urology Practice Resolves Healthcare Data Breach Lawsuit With Settlement
Coding session: Introduction to JavaScript fuzzing
Customers affected by Capital One data breach have limited days to file a claim
Cyber Attacks Having Direct Impact on Patient Care
Cyberattacks against U.S. hospitals mean higher mortality rates, study finds
Cyberattacks lead to higher mortality rate in hospitals: study
Cybersecurity Woes, Lax Patching Put Media Companies At Risk
Data breach exposes records of 2.5 million student loan borrowers
Eurocell employee details exposed in major cyber attack
EvilProxy service allows hackers to utilize advanced phishing tactics
Former Conti Ransomware Members Join Initial Access Broker Group Targeting Ukraine
Genesis Health Care, Inc. Reports Data Breach Following Period of Unauthorized Access
GIFShell attack creates reverse shell using Microsoft Teams GIFs
Hackers gain access to staff bank account details at Derbyshire's Eurocell
Hackers Repeatedly Targeting Financial Services in French-Speaking African Countries
Healthcare fintechs targeted by cybercriminals
Hive Ransomware goes public on Massy Stores infiltration
Hospice cyberattack leaves staff unable to access patient records
How Healthcare Cyberattacks Can Impact Patient Safety, Care Delivery
How many times was Stratford University hacked?
How to deal with with unprecedented levels of regulatory change
Intercontinental Hotels Group cyberattack disrupts business operations
IT executives claim supply chain partners expose them to ransomware
Jordania: SMS-phishing on the rise, public urged to exercise caution
Layer 7 DDoS Attacks on the Rise
Los Angeles Unified School District (LAUSD) not out of woods with cyberattack, security experts say
Microsoft Warns of Ransomware Attacks by Iranian Phosphorus Hacker Group
Nation-state attacks are a growing threat to video conferencing
NATO-Member Albania Cut Ties With Iran Over Cyber-Attack
New Vulnerabilities Reported in Baxter's Internet-Connected Infusion Pumps
No, the Christchurch hot pools weren’t ‘hacked’ – the council just messed up
North Korean Lazarus hackers take aim at U.S. energy providers
North Korean Lazarus Hackers Targeting Energy Providers Around the World
NSO Group's Recent Difficulties Could Shape the Future of the Spyware Industry
Over 10% of Enterprise IT Assets Found Missing Endpoint Protection
Over 80% of the top websites leak user searches to advertisers
Portugal government cyber attack allegedly leaks “hundreds” of classified NATO documents
Rachel Dillon’s fitness app exposes users after major data breach
Ransomware Attack on L.A. Schools Could Signal Larger Threat, Warn Cyber Experts
Ransomware Campaigns Linked to Iranian Govt's DEV-0270 Hackers
Ransomware Has a Larger Impact on Retail Organizations
Ransomware Variant Continues to Limit Colorado County
Researchers Reveal New Iranian Threat Group APT42
Robinhood's $20 Million Data Breach Settlement: How Much Money Could You Be Owed?
Shopify Fails to Prevent Known Breached Passwords
Stealthy Linux Malware Shikitega Deploying Monero Cryptominer
Suspected Ransomware Attack on InterContinental Hotels Affected Over 4,000 Guests
The 10 worst ransomware attacks ever
The North Face Warns of Major Credential Stuffing Campaign
The Russia-Ukraine War Exemplifies the Rise of Hybrid Conflicts: Latin America Should Pay Attention
The top apps for malware downloads
Ukraine Shutters Two More Russian Bot Farms
Zyxel Format String Flaw Let Attackers Execute Unauthorized Remote Code
Warning issued about Vice Society ransomware gang after attacks on schools
Where financial institutions must shore up their cybersecurity
Why the Telecom Industry Must Prioritize Cybersecurity
With cyber insurance costs increasing, can smaller firms avoid getting priced out?
07/09
7 free online cybersecurity courses you can take right now
As Cybersecurity Week begins, Beijing claims US attacked Uni doing military research
Authorities Take Down Prolific WT1SHOP Cybercrime Marketplace
Critical RCE Vulnerability Affects Zyxel NAS Devices — Firmware Patch Released
Croatia’s Span opens cyber security centre in Zagreb
Defeat social engineering attacks by growing your cyber resilience
FBI K-12 Ransomware Warning as LAUSD is Hit
FBI seeks Bitcoin wallet information of ransomware attackers
German Firms Tighten Cybersecurity Against New Threats
Gulf Business Machines buys majority in Dubai cybersecurity firm Coordinates
Hackers invadem aplicativo e mandam dezenas de táxis ao mesmo endereço
India, UK organise virtual cybersecurity exercise for 26 countries
Instituições de ensino sofrem cada vez mais ataques de ransomware
InterContinental Hotels Group confirms cyber attack, experts suggest ransomware
Japan investigates potential Russian Killnet cyber attacks
Mental Malware and the rise of disinformation
Mirai Variant MooBot Botnet Exploiting D-Link Router Vulnerabilities
Montenegro Blames Slowed Court Processes on Cyber-Attacks
Moobot botnet is back and targets vulnerable D-Link routers
Most IT leaders think partners, customers make their business a ransomware target
Pakistan government labels its own cybersecurity team 'incompetent'
Researchers publish post-quantum upgrade to the Signal protocol
State edtech leaders say schools have insufficient cybersecurity funding
There is no secure critical infrastructure without identity-based access
Threat of Go-Ahead bus disruption as company manages 'cyber security incident'
UK Privacy Regulator Fines Halfords for Spam Deluge
UK transport firm Go-Ahead hit by cyber attack
Zyxel addressed a critical RCE flaw in its NAS devices
WHSmith high street sales ‘adversely impacted’ following Funky Pigeon cyber attack
06/09
62% of consumers see fraud as an inevitable risk of online shopping
45 mil Malindo Air passenger records allegedly obtained from data breach appear on online forum
Apple strengthens security and privacy in iOS 16
BlackCat ransomware gang targets Italian energy company GSE, steals 700 GB of data
Brighton bus and train company uncovers cyber attack
Chinese PII Breach: It Hits Differently There
DeadBolt is hitting QNAP NAS devices via zero-day bug, what to do?
EvilProxy phishing-as-a-service with MFA bypass emerged on the dark web
Go-Ahead cyberattack might derail UK public transport services
Go-Ahead hit by cyber security 'incident' before takeover process completes
Government guide for supply chain security: The good, the bad and the ugly
Hackers steal KeyBank customer data in a third-party data breach
Half of Firms Report Supply Chain Ransomware Compromise
How to Improve Mean Time to Detect for Ransomware
Instagram fined 405 million euros by Irish regulators for data breach
Integrating Live Patching in SecDevOps Workflows
Internet fraud on the rise, police warn of phishing or spoofing
Interpol Busts Asian Sextortion Syndicate
Is Zimbabwe ready for cyber-warfare? Is country at risk of cyberattacks over its Russia support?
London's Biggest Bus Operator Hit by Cyber "Incident"
Los Angeles school district reports ransomware attack
Major UK transport company Go-Ahead battles cyber-attack
New EvilProxy Phishing Service Allowing Cybercriminals to Bypass 2-Factor Security
New Worok cyber-espionage group targets governments, high-profile firms
Nigeria, others battle state-sponsored cyber threats
QNAP Warns of New DeadBolt Ransomware Attacks Exploiting Photo Station Flaw
Researchers Find New Android Spyware Campaign Targeting Uyghur Community
Samsung confirms it was hit by a data breach
Samsung reports second data breach in 6 months
Second largest U.S. school district Los Angeles Unified (LAUSD) hit by ransomware
TA505 Hackers Using TeslaGun Panel to Manage ServHelper Backdoor Attacks
This overlooked cybersecurity risk could create an ocean of trouble for us all
What’s polluting your data lake?
Worok Hackers Target High-Profile Asian Companies and Governments
05/09
75% increase in ransomware attacks targeting Linux systems in 2022
A new malware has been mimicking Google Translate
A new SharkBot variant bypassed Google Play checks again
Anonymous trolls Russia by causing major traffic jam in Moscow
Após ataque, hackers estão vendendo dados do Gov.br
Attacker Posts Fake XRP Giveaway on PwC Venezuela Twitter Account
Australians warned over ‘malicious’ new email scam using NASA photo to hack your device
Bank and Payment Scams: Bitcoin PayPal, M&T, and Zelle
Beware! Fraudsters may steal your money: Know how to identify phishing mails and stay protected
BlackByte ransomware attack on San Francisco 49ers claimed over 20K victims
Can a VPN Protect You From Ransomware?
Carson City Rotarians to learn about cyber-attack prevention during Tuesday meeting
China accuses United States of hacking top space and aviation university
China strongly condemns U.S. cyber attacks on China's Northwestern Polytechnical University
Corretora de criptomoedas ameaça hacker após ser roubada
Corrigida falha do Windows Defender que identificava Chromium e Electron como Ransomware Hive
EvilProxy Phishing-As-A-Service With MFA Bypass Emerged In Dark Web
EvilProxy Phishing Toolkit Spotted on Dark Web Forums
Fake Antivirus and Cleaner Apps Caught Installing SharkBot Android Banking Trojan
Google Chrome zero-day flaw: Users urged to install update 'immediately'
Hack on North Korea peace forum exposes participants’ personal information
Hacker Leaks Names and Addresses of Over 40,000 Karachi Citizens
High Risks, Scarce Skills Drive Swiss Cybersecurity Market
How Okta is regaining customer trust after a cyber attack
How to address IoT security challenges?
India sees spike in ransomware, banking malware in H1 2022
Interpol dismantles sextortion ring, warns of increased attacks
IRS (US Internal Revenue Service) Leaks 120,000 Taxpayers' Personal Details
Kaspersky discovers active malicious campaigns targeting mobile users in APAC
Keybank's Customer Information Stolen By Hackers Via Third-party Provider
Microsoft Defender causes 'mass confusion' after legitimate apps trigger ransomware alerts
New EvilProxy service lets all hackers use advanced phishing tactics
New Rules for Crypto Exchanges to Stop Sanctions Evaders
Nmap 7.93, the 25th anniversary edition, has been released
Prefeitura do Rio retoma atendimento de CadÚnico suspenso desde ataque 'hacker'
QNAP patches zero-day used in new Deadbolt ransomware attacks
Ransomware attacks on Linux to surge
Ransomware Attackers Abuse Genshin Impact Anti-Cheat System to Disable Antivirus
Ransomware’s rise: What can be done about it
Samsung Reveals New US Data Breach
Samsung sofre ataque hacker e tem dados de clientes vazados
SharkBot Malware Resurfaces on Google Play to Steal Users' Credentials
Supply chain risk is a top security priority as confidence in partners wanes
TikTok Denies Data Breach Reportedly Exposing Over 2 Billion Users' Information
TikTok denies security breach after hackers leak user data, source code
US spy agency blamed for cyber attacks on Xi'an university
What Is Your Security Team Profile? Prevention, Detection, or Risk Management
Windows Defender identified Chromium, Electron apps as Hive Ransomware
Your vendors are likely your biggest cybersecurity risk
04/09
Action Fraud warn over fake E.ON scam email
Brightsolid launches new defence against cyber-attack
Conta do Twitter da PwC Venezuela é hackeada
Cybercriminals exploit LNKs to spread malware families
Fremantle apologise for AFL data breach
Hackers acquire info on current and former students and staff at Savannah College of Art and Design
Hackers send cabs to same location in Russia, creates huge traffic jam
Hackers who hit Luxembourg turn on Italy
Hoxhunt Primed to Spread Gamified Phishing Awareness in the Enterprise