Daily News - Dezembro (15/12 - 21/12) - 51 Semana de 2024

Information Security, Cyber Security, Privacy and Hacking News --- Daily Updates !! Weekly Resume...

!!! Security Is a Lifestyle Weekly News !!!

17/12

1-Click RCE Attack in Kerio Control UTM Let Attackers Gain Root Access To the Firewall

All Major European Financial Firms Suffer Supplier Breaches

Balancing security and user experience to improve fraud prevention strategies

CISA Warns of Adobe & Windows Kernel Driver Exploited in Attacks

Cisco to Acquire Threat Detection Company SnapAttack to Power Splunk

FBI biometrics division website outage claimed by Mr Hamza

Hackers actively exploiting Windows flaw to gain system privileges, CISA warns

Hackers Exploit Microsoft Management Console to Drop Backdoor Payloads on Windows

Hackers Leverage Red Team Tools in RDP Attacks Via TOR & VPN for Data Exfiltration

IntelBroker publishes partial Cisco data

Kali Linux 2024.4 released! 14 new shiny tools added

Malvertising on steroids serves Lumma infostealer

Nigerian Crypto-Romance Scam Leads to Nearly 800 Arrests

RCE Vulnerability in 1,000,000 WordPress Sites Lets Attackers Gain Control Over Backend

The shifting security landscape: 2025 predictions and challenges

Unlock and load: officials caught using Israeli spyware to snoop on Android users

16/12

390,000 WordPress credentials compromised via phishing, GitHub repos

AI deepfakes are targeting women in politics at alarming rates

Alleged Data Breach at ApolloGames.com Exposes Sensitive CRM Data

Alleged Data Breach at CREFSP Exposes Full Database in São Paulo

Alleged Data Breach at Delhi Public Primary School Itarsi Exposes Sensitive Records

Alleged Data Breach at HemenBahis Exposes Sensitive User Information

Alleged Data Breach at Rozavam.ru Exposes Sensitive Customer Information

Alleged Data Breach at SAIC in Brazil Exposes Sensitive Information

Alleged Data Breach at World Leadership Academy Exposes Sensitive Information

Alleged Data Breach Exposes Sensitive Legal Proceedings Data in Colombia

Alleged Leak of 1.5 Billion URL Login Credentials Raises Online Security Concerns

Alleged Leak of 200 Million URL Login Credentials Raises Privacy Concerns

Amnesty Accuses Serbia of Tracking Journalists and Activists with Spyware

Arctic Wolf Acquires BlackBerry’s Cylance Assents For $160 Million in Cash

Authorities arrest 800 crypto romance scammers in Nigeria targeting Americans, Europeans

BADBOX malware hits 30,000 Android devices - make sure you update now

Byte Federal Data Breach Exposes 58,000 Customer Records

Cicada3301 Ransomware Claims Attack on French Peugeot Dealership

CISA and EPA Warn: Internet-Exposed HMIs Pose Serious Cybersecurity Risks to Water Systems

Cl0p Ransomware Exploits Cleo Vulnerability, Threatens Data Leaks

Clop ransomware gang confirms it is actively exploiting Cleo MFT vulnerabilities

Clop ransomware gang confirms responsibility for Cleo data theft attack

Cl0p ransomware group says it was behind Cleo attacks

CoinLurker, Next-Gen Tool Used by Threat Actors in Modern Cyberattacks

Combating the rising threat of AI-powered phishing attacks

ConnectOnCall breach exposes health data of over 910,000 patients

Critical Mullvad VPN Vulnerabilities Let Attackers Execute Malicious Code

CVE Assigned to Cleo Vulnerability as Cl0p Ransomware Group Takes Credit for Exploitation

Cyber attack forced Watsonville Community Hospital staff to rely on pen and paper to attend to patients

Cyber attack on SRP Federal Credit Union compromised the data of 240,000 individuals

Cyber Daily announces return of the Australian Cyber Summit for 2025

Cyberattack Targets Rhode Island’s RIBridges System, Compromising Sensitive Resident Information

Data Governance in DevOps: Ensuring Compliance in the AI Era

December 2024 Cyble Report: Malware, Phishing, and IoT Vulnerabilities on the Rise

DeceptionAds Delivers 1M+ Daily Impressions via 3,000 Sites, Fake CAPTCHA Pages

Deepfakes and AI attacks are worker's biggest security worries

Deloitte Alerts Rhode Island to Significant Data Breach in RIBridges System

ESET: RansomHub most active ransomware group in H2 2024

Evasive Node.js loader masquerading as game hack

Fake Captcha Campaign Highlights Risks of Malvertising Networks

Fake CAPTCHAs reaching millions: who’s responsible for malvertising mayhem?

Fake job tasks are costing victims millions, FTC warns

FBI spots HiatusRAT malware attacks targeting web cameras, DVRs

FBI subdivision firewall access listed by potential Schneider Electric hacker

FBI Targets 764 Network: Man Faces 30 Years for Cyberstalking, CSAM

Firmware Security: Identifying Risks to Implement Best Cybersecurity Practices

First man in the US sent to prison for hiding bitcoin profit

Hacker bounty fever: dopamine spikes and millions of dollars

Hackers Attacking YouTube Creators with Weponized Collaboration Requests

Hackers Claim to Have Stolen 17 Million Patient Records from PIH Health

Hackers Exploiting Google Search Ads to Launch Malvertising Campaigns

Hackers Exploiting Microsoft Teams to Gain Remote Access to User’s System

Hackers targeting thousands of YouTubers with fake collaboration offers and infostealers

Here’s what human collaboration with AI looks like

How companies can address bias and privacy challenges in AI models

Huge cybercrime attack sees 390,000 WordPress websites hit, details stolen

Kadokawa reportedly gives in to ransomware demand

Kaiser Permanente Employees Targeted via Malicious Google Search Ads to Deploy SocGholish

Malicious ads push Lumma infostealer via fake CAPTCHA pages

Malware Hidden in Fake Business Proposals Hits YouTube Creators

Massive Data Breach at Texas Tech University Health Sciences Centers: What You Need to Know

Medical Payment Company Facing Lawsuit in Nebraska Over Data Breach

Multiple flaws in Volkswagen Group’s infotainment unit allow for vehicle compromise

MUT-1244 targeting security researchers, red teamers, and threat actors

Namibia’s state telecom provider says hackers leaked data after it refused to pay ransom

Nebraska AG files lawsuit against Change Healthcare following data breach

New Android NoviSpy spyware linked to Qualcomm zero-day bugs

New Glutton Malware Exploits Popular PHP Frameworks Like Laravel and ThinkPHP

New HDMI standard to be announced at CES 2025

New Investment Scam Leverages AI, Social Media Ads to Target Victims Worldwide

NoviSpy Spyware Installed on Journalist's Phone After Unlocking It With Cellebrite Tool

Ofcom Issues Guidance for Tech Firms to Tackle Online Harms

Overlooking platform security weakens long-term cybersecurity posture

Phishing campaign targets Kaiser Permanente employees using Google Ads

Ransomware attack investigation continuing in Wood County

Ransomware attack targets Rhode Island public benefits system

Rhode Island confirms data breach after Brain Cipher ransomware attack

Rhode Island hit by data breach as hackers demand ransom

Rhode Island left scrambling as Deloitte confirms breach likely impacting thousands

Russia Recruits Ukrainian Kids for Sabotage and Reconnaissance

Schools are facing greater cybersecurity threats than ever before

Security experts respond to Krispy Kreme cyber attack

Security leaders top 10 takeaways for 2024

Serbian Authorities Use Novispy Spyware & Cellebrite Forensic Tools to Hack Journalists

Serbian government cracked phones with Cellebrite to install spyware, report says

Serbian government used Cellebrite to unlock phones, install spyware

Telecom Namibia Hit by Massive Cyberattack: Over 400,000 Files Leaked

Texas Tech University Health Sciences Center and Texas Tech Health El Paso Announce Massive Data Breach

Texas Tech University System data breach impacts 1.4 million patients

Thousands of Rhode Island citizens have data stolen after social services hit by cyberattack

Tic TAC Alert: A Remote Code Execution Vulnerability in Medical Imaging

Top healthcare company exposes data on millions of patients - find out if you're affected

Trapster Community: Open-source, low-interaction honeypot

Two men arrested for 'hazardous drone' ops in Boston adding to UAP hysteria

Ukrainian Minors Recruited for Cyber Ops and Reconnaissance in Russian Airstrikes

US government warns water firms to secure infrastructure at risk online

US sanctions Chinese firm over potentially deadly ransomware attack

US set to allow tech giants to control access to AI chips

Why You Need Cyber Resilience and Defence in Depth

Windows kernel bug now exploited in attacks to gain SYSTEM privileges

With DORA approaching, financial institutions must strengthen their cyber resilience

YouTube Creators Targeted in Global Phishing Campaign

15/12

2024 in retrospect: Lessons learned and cyber strategies shaping future of critical infrastructure

Alleged Data Breach at Fédération Française de Football (FFF) Exposes Sensitive Information

Alleged Data Breach at Meat Expert Forum Exposes User Information

Alleged Data Breach at NivteIndia.in Exposes Sensitive User Information

Alleged Data Breach at University of Georgia Exposes Sensitive Information

Alleged Data Breach in Shandong Exposes Courier and Engineering Personnel Database

Alleged Leak of 5 Billion URL Login Credentials Raises Serious Security Concerns

Clop ransomware claims responsibility for Cleo data theft attacks

Curl Vulnerability Let Attackers Access Sensitive Information

Cyberattack in Rhode Island: Sensitive data breach, hackers demand ransom

Cyberattack reported against Israeli banking services

Exploring Cyber-Darkness: How Moscow Undermines The West Via The Dark Web – Analysis

NotLockBit ransomware targets Apple users with advanced file-locking and data exfiltration

Organizations should improve employee-wide cybersecurity awareness

PUMAKIT, a sophisticated rootkit that uses advanced stealth mechanisms

Resecurity introduces Government Security Operations Center (GSOC) at NATO Edge 2024

Rhode Island cyberattack underscores security issues with digital public assistance programs

Rhode Island hit by data breach as hackers demand ransom

Winnti hackers target other threat actors with new Glutton PHP backdoor

Yates County approves cyber security upgrades and contract renewals

Daily News - Dezembro (08/12 - 14/12) - 50 Semana de 2024