Daily News - Novembro (17/11 - 23/11)

Cyber Security, Hacking, Privacy and Information Security News --- Daily Updates !! Weekly Resume...

23/11

A cyberattack on gambling giant IGT disrupted portions of its IT systems

Detalhes do ataque de hackers chineses deixam oficiais americanos cada vez mais preocupados

EUA: série de ataques hacker podem causar criação de Força Cibernética

Financial phishing plagues SEA firms; Thailand hit hardest with 140K+ attacks

Hackers abuse Avast anti-rootkit driver to disable defenses

Hackers russos efetuam ataque nunca antes visto utilizando redes Wi-Fi comprometidas

‘Immediate security action’ taken after prison maps leaked on dark web

Microsoft seized 240 sites used by the ONNX phishing service

Nearly 60,000 Ransomware Attacks Detected In First-Half 2024, Kaspersky Reports

New threat report from Cato Networks reveals ransomware gangs recruiting penetration testers to improve effectiveness of attacks

North Korean Hackers Steal $10M with AI-Driven Scams and Malware on LinkedIn

Pacific Pulmonary Medical Group patient information dumped by Everest Ransomware Team

Prison layouts reportedly leaked on dark web

Ransomware-as-a-Service group BianLian opts for unique model

Russia-Linked Hacker Group TAG-110 Hits 60+ Targets Across Asia and Europe in Espionage Blitz

Russian Connected To Multimillion-Dollar Ransomware Gang Extradited To US

The rise and fall of the ‘Scattered Spider’ hackers

22/11

5 hackers charged in the US over Scattered Spider hacking campaigns

7-Zip affected by dangerous vulnerability: users must update the app manually

9 Months After Breach, Change Healthcare Billing Back Online

17 hottest IT security certs for higher pay today

2000+ Palo Alto Firewalls Hacked Exploiting New Vulnerabilities

145,000+ Unsecured ICS Devices Exposed To Attackers

AI and Open Source Security: The Critical Role of AI-Powered Fuzzing in Finding Flaws

Andrew Tate’s controversial online “university” breached, 800K users’ data stolen

APT-K-47 Uses Hajj-Themed Lures to Deliver Advanced Asyncshell Malware

Aspen Healthcare says hackers stole patient's healthcare data from its systems

Bojangles data leak: “It’s breach time!”

CERT-In Flags Critical Vulnerabilities in Zoom: Update Your Apps Now

China-linked hackers target Linux systems with new spying malware

CISA Warns of Apple & Oracle Agile Vulnerabilities Exploited in Wild

Cybercriminals turn to pen testers to test ransomware efficiency

Deepfake attacks occur every five minutes

DOJ Takes Down Global Cybercrime Hub PopeyeTools, Seizes Cryptocurrency

DOJ Told Google To Sell Chrome To End Search Monopoly

Exchange Upbit dá início a reembolso de usuários após ataque hacker

Fintech giant Finastra says hacker stole data from its internal network

Five Ransomware Groups Responsible for 40% of Cyber-Attacks in 2024

Ford debunks data breach claims, confirms no customer impact

Hackers board Palo Alto vulnerability bandwagon: over 2,000 firewalls hacked and counting

Hackers breach US firm over Wi-Fi from Russia in 'Nearest Neighbor Attack'

Hackers Leveraging Google Docs & Weebly Services To Attack Telecom Industries

I deleted my personal info from the internet with this service (and it's on sale for Black Friday)

Italy plans crackdown on database hacks

Manufacturing Sector in the Crosshairs of Advanced Email Attacks

Meta boots over 2M fake accounts originating from overseas scam centers

Microsoft, Meta, and DOJ Disrupt Global Cybercrime and Fraudulent Networks

Microsoft rolls out Recall to Windows Insiders with Copilot+ PCs

Microsoft Seizes 240 Domains Used By phishing-As-A-Service (PhaaS) Platform

Microsoft Seizes 240 Websites to Disrupt Global Distribution of Phish Kits

Microsoft Shares Intelligence On North Korean & Chinese Hackers At CYBERWARCON

MITRE Unveils Top 25 Most Critical Software Flaws

More than 2,000 Palo Alto Networks firewalls hacked exploiting recently patched zero-days

Multiple D-Link End-of-Life Routers Vulnerabilities Let Attackers Execute Remote Code

Multiple Linux Kernel Vulnerabilities In Defer Partition Scanning Patched

New “ultra-secure” phone service promises unique protection against threats

New Zealand importer Triton Sourcing & Distribution confirms ransomware attack

NVIDIA Base Command Manager Vulnerability Let Attackers Remote Code

One year later: 7 useful things the Flipper Zero can do that still blows my mind

Pro-trans rights hackers target Andrew Tate’s The Real World website

PyPI Attack: ChatGPT, Claude Impersonators Deliver JarkaStealer via Python Libraries

Russia-Linked Cyber-Espionage Campaign Targets Central Asia

Russian Cyber Spies Target Organizations with HatVibe and CherrySpy Malware

Russian Hackers Deploy HATVIBE and CHERRYSPY Malware Across Europe and Asia

Russian TAG-110 Attacking Users With HATVIBE And CHERRYSPY Hacking Tools

Seniors and carers call for smart monitoring to safely age at home

Snow Brand Australia confirms SafePay ransomware attack

Tesla data breach falsely claimed by IntelBroker, third-party EV charging firm actually breached

The 1 Co apologizes for data breach impacting 5 million customers

The limits of AI-based deepfake detection

Three-Quarters of Black Friday Spam Emails Identified as Scams

Unlocking Google Workspace Security: Are You Doing Enough to Protect Your Data?

U.S. CISA adds Apple, Oracle Agile PLM bugs to its Known Exploited Vulnerabilities catalog

US Senator Calls Chinese Telecom Attack As Worst Hack In Nation’s History

Why the NIS2 Directive causes growing pains for businesses

WikiLeaks whistleblower Chelsea Manning battles AI surveillance with NSA-proof VPN

21/11

5 Scattered Spider Gang Members Indicted in Multi-Million Dollar Cybercrime Scheme

10 Most Impactful PAM Use Cases for Enhancing Organizational Security

10-Year Old Flaws In Ubuntu Server needrestart Package Let Attackers Gain Root Access

2,000 Palo Alto Networks devices compromised in latest attacks

750,000 Patients' Medical Records Exposed After Data Breach at French Hospital

A Fifth of UK Enterprises “Not Sure” If NIS2 Applies

Active network of North Korean IT front companies exposed

Authorities Charged 5 Hackers For Attacking Companies via Phishing Text Messages

AxoSyslog: Open-source scalable security data processor

BianLian Ransomware Group Adopts New Tactics, Posing Significant Risk

Buyoplace.com Database Leak Exposes Customer and Transaction Data

Chinese APT Gelsemium Targets Linux Systems with New WolfsBane Backdoor

CISA says BianLian ransomware now focuses only on data theft

CISA Warns of VMware VCenter Vulnerabilities Actively Exploited in Attacks

Coreia do Sul confirma Coreia do Norte por trás do hack da Upbit de US$ 50 milhões

Critical AnyDesk Vulnerability Let Attackers Uncover User IP Address

Critical Kubernetes Vulnerability Let Attackers Execute Arbitrary Commands

CWE top 25 most dangerous software weaknesses

Cyber attack hits Auchan, customer data stolen

Cyber Threats in Australia: Insights from the Annual Cyber Threat Report 2023-2024

Cybersecurity Myths: Debunking the Top 5 Most Common Misconceptions

Data breach at law firm Thompson Coburn affects Presbyterian Healthcare patients

Database Leak Exposes Information on 180,000 Chinese-American WeChat Users

DDoS Attack Growing Bigger & Dangerous, New Report Reveals

Decade-Old Flaws In Ubuntu Server Package Let Attackers Gain Root Access

Decade-old local privilege escalation bugs impacts Ubuntu needrestart package

Delta Airlines reportedly experiences data breach

Enhancing visibility for better security in multi-cloud and hybrid environments

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Feds Shut Down 'PopeyeTools' Hacking Site That Sold Credit Card Numbers

Finastra discloses large-scale data breach

Five Charged in Scattered Spider Case

Fortinet VPN design flaw hides successful brute-force attacks

Full recovery from breaches takes longer than expected

Gelsemium APT Hackers Attacking Linux Servers With New WolfsBane Malware

Ghost Tap Attack, Hackers Stolen Credit Card Linked To Google Pay Or Apple Pay

Google, Apple, Venmo payment apps, digital wallets now subject to US regulators

Google OSS-Fuzz Harnesses AI to Expose 26 Hidden Security Vulnerabilities

Google's AI-Powered OSS-Fuzz Tool Finds 26 Vulnerabilities in Open-Source Projects

Hacker diz ter entrado nos sistemas da Ford e roubado informações de 44.000 clientes; dados estão sendo oferecidos por valor baixíssimo

Hacker invade Instagram de secretaria do Ceará e publica fotos de Bolsonaro

Halo Security Launches Slack Integration for Real-Time Alerts on New Assets and Vulnerabilities

Here’s what to know about Google Cloud mandating MFA by end of 2025

How to select the best on-ramp and off-ramp for you?

Huge US healthcare payment network finally restored after ransomware attack

iLearningEngines Notifies SEC of Recent Cyberattack, Raising Concerns over Possible Data Breach

Job termination scam warns staff of phony Employment Tribunal decision

Linux Malware WolfsBane and FireWood Linked to Gelsemium APT

Lumma Stealer Proliferation Fueled by Telegram Activity

macOS WorkflowKit Race Vulnerability Let Malicious Apps Intercept Shortcuts

Malicious PyPi Package Mimic ChatGPT & Claude Steals Developers Data

Massive B2B Database Leak Exposes 420,000 U.S. Companies

Massive Leak Exposes Data of 4 Million Israeli Facebook Users

MDLand International Files Official Notice of Data Breach Affecting 63,052 People

Mercer University settles lawsuit over data breach, agrees to compensation

Microsoft disrupts ONNX phishing-as-a-service infrastructure

Microsoft pulls WinAppSDK update breaking Windows 10 app uninstalls

MITRE Lists 25 Most Dangerous Software Weaknesses of 2024

Niantic builds centimeter-level accuracy positioning system from Pokemon Go player data

NodeStealer Malware Targets Facebook Ad Accounts, Harvesting Credit Card Data

North Korea hackers behind 2019 $42 million Ethereum heist, South Korea police say

North Korean fake IT workers up the ante in targeting tech firms

North Korean Front Companies Impersonate U.S. IT Firms to Fund Missile Programs

Novel NFC-exploiting Ghost Tap attack technique gains traction

Now BlueSky hit with crypto scams as it crosses 20 million users

Operation Shipwrecked: US Seizes PopeyeTools Marketplace, Charges 3

Over 2,000 Palo Alto firewalls hacked using recently patched bugs

Over 145,000 Industrial Control Systems Across 175 Countries Found Exposed Online

Phishing Scams Costing Americans Billions

Phishing scams exploit Japan’s digital currencies as fraud cases rise

Prepare for the Holiday Ransomware Storm

Preventing credential theft in the age of AI

Protecting Critical Infrastructure with Zero-Trust and Microsegmentation

Ransomware gang BianLian ditches encryption, profits from data extortion

Report: 90% of Industrial Firms Hit By Cyber-attack This Year

Researchers unearth two previously unknown Linux backdoors

Retail loyalty programme apologises for customer data breach

Rockford Gastroenterology Associates Notifies 147,253 of 2023 Data Breach

Scattered Spider Cybercrime Group Faces Federal Indictments for $11 Million Theft

Space technology giant Maxar says hacker stole employees' personal information

SSV Blockchain Network Data Leak Exposes Sensitive Information

The path to innovation: 3 stories of resilience from women in cybersecurity

Top 6 Malware Persistence Mechanisms Used by Hackers: A Detailed Guide

Trellix report reveals evolving ransomware ecosystem trends

Ukrainian cyberwar experience becomes blueprint for TRYZUB cyber training service

Uruguay’s Partido Nacional Website Faces HTML Injection Vulnerability

U.S. automaker Ford investigating major data breach from its internal network

US Charges 5 Suspected MGM Hackers from Scattered Spider Gang

US charges five alleged members of Scattered Spider gang

US DoJ charges five alleged members of the Scattered Spider cybercrime gang

US military officials used China-linked promotional gift shop GS-JJ, exposing over 300K emails

US seizes PopeyeTools cybercrime marketplace, charges administrators

Vietnam’s Infostealer Crackdown Reveals VietCredCare and DuckTail

Walls close in on MGM attackers as DoJ indicts five

Warning: Over 2,000 Palo Alto Networks Devices Hacked in Ongoing Attack Campaign

What CISOs need to know about the SEC’s breach disclosure rules

Wireshark 4.4.2: Fixes Vulnerabilities & Enhances Protocol Support

20/11

11 biggest financial sector cybersecurity threats

60% of Emails with QR Codes Classified as Spam or Malicious

4000 Stealer Logs Leaked, Exposing Personal Data

2024 Arctic Wolf Security Report: Key insights and trends

Admins of Illegal NBA, NFL, and NHL streamer 247TVStream charged

AI Company Reports $250,000 Stolen in Cyberattack

AI Detection Revolutionizes the Battle Against Ransomware Threats

AI-Driven Cyber Scams 'Real And Present Threat' To Australia's Critical Infrastructure

Amazon and Audible flooded with 'forex trading' and warez listings

AnnieMac details extent of data breach

ANY.RUN Sandbox Now Let Analysts Automatically Analyse Complex Cyber Attack Chains

Apple addressed two actively exploited zero-day vulnerabilities

Apple fixes 2 zero-days exploited to breach macOS systems (CVE-2024-44309, CVE-2024-44308)

Apple Issues Emergency Security Update for Actively Exploited Vulnerabilities

Apple Releases Urgent Updates to Patch Actively Exploited Zero-Day Vulnerabilities

Apple Security Update, Patch for Multiple Zero-Day Vulnerabilities

Apple security updates address dangerous zero-day attacks

Atlassian Sourcetree For Mac & Windows Flaw Let Attackers Execute Remote Code

Attackers Targeting VPNs Account for 28.7 Percent of Ransomware Incidents in Q3 According to Corvus Insurance Cyber Threat Report

Australia critical infrastructure faces cyber threats, report says

Black Friday Scammers are Hard at Work: Security Experts

BlackSuit ransomware ramps up ops hitting 93 organisations

Boksha Database Leaked, User Privacy at Risk

China-Backed Hackers Leverage SIGTRAN, GSM Protocols to Infiltrate Telecom Networks

Chinese APT Group Targets Telecom Firms Linked to Belt and Road Initiative

Chrome Security Update, Fix For Multiple Vulnerabilities

Cybercriminals Exploit Weekend Lull to Launch Ransomware Attacks

Decades-Old Security Vulnerabilities Found in Ubuntu's Needrestart Package

Debunking myths about open-source security

Denniskirk.com Database Breach Leaks Customer Data

Financial phishing floods devices in Indian companies

Finastra Data Breach: 400GB Banking Data on Sale in Dark Web

Five backup lessons learned from the UnitedHealth ransomware attack

Five Privilege Escalation Flaws Found in Ubuntu needrestart

Flash loan attack on Polter Finance: hacker steals $7 million in cryptocurrencies

Fleet tech provider Microlise says data security incident compromised corporate data

Ford Blames Third-Party Supplier for Data Breach

Gabagool Leveraging Cloudflare’s R2 Storage Service To Bypass Security Filters

Gen's report reveals 614% surge in 'Scam-Yourself Attacks'

Ghost Tap: Hackers Exploiting NFCGate to Steal Funds via Mobile Payments

GitHub Secure Open Source Fund: Project maintainers, apply now!

Great Plains hospital says ransomware attack impacted over 133,000 patients

Hacker obtained documents tied to lawsuit over Matt Gaetz’s sexual misconduct allegations

Hacker obtains House ethics testimony on Matt Gaetz as Trump makes calls for AG nominee

Hackers breach Library of Congress’ congressional research service emails in a cyberattack

Hackers Exploit Misconfigured Jupyter Servers for Illegal Sports Streaming

Hackers Hijack Jupyter Servers for Sport Stream Ripping

Healthcare org Equinox notifies 21K patients and staff of data theft

In a new era of cyber risk, businesses are preparing for zero hour

Infamous threat actor targets Tesla, gets immediately roasted by cyber pros

Linux Variant of Helldown Ransomware Targets VMware ESX Servers

Majority of UK businesses lack readiness for rising AI-led phishing attacks, reveals survey

Massive data breach exposes 56 million Hot Topic customers

Massive National Public Data Leak Exposes Sensitive Information

Massive November 2024 Stealer Logs Leak Exposes Sensitive Data

Meow, INC Ransom gangs leak San Francisco Ballet Company data

Microsoft confirms game audio issues on Windows 11 24H2 PCs

Microsoft Ignite New 360-Degree Details Attacker Tooling and Methodology

Microsoft introduces new security features to Windows: hot patching, quick recovery, fewer privileges

Names, addresses and other details of 44,000 customers leaked in Ford hacking

New Cyble Report Highlights Critical Vulnerabilities and Rising Cyber Threats in ANZ for 2024

New Ghost Tap attack abuses NFC mobile payments to steal money

Non-human identity (NHIs) Are the Future of Cybersecurity: Meet NHIDR

One Deepfake Digital Identity Attack Strikes Every Five Minutes

Open-source devs want to democratize health tracking with $18 ring from Aliexpress

Oracle Agile PLM Zero-Day Vulnerability Exploited In The Wild

Oracle Linux 9 Update 5 brings security updates, OpenJDK 17, .NET 9.0

Oracle Warns of Agile PLM Vulnerability Currently Under Active Exploitation

Overreliance on GenAI to develop software compromises security

Overseas Business Continuity (BC) Data Collection Exposed for Blackmailing Purposes

OWASP Warns of Growing Data Exposure Risk from AI in New Top 10 List for LLMs

Phishing Decoded: How Cybercriminals Target You And How To Fight Back

RansomHub hits ASIC compliance firm in alleged cyber attack

Russian ransomware gangs are going on a recruitment drive

Safeguarding the DNS through registries

‘Scam Yourself’ attacks have fooled millions — here's how not to fall victim

Six steps companies should take after a data breach

Slot Machine Operator International Game Reports Hacker Incident

Sophos alerts on rising quishing attacks

Southend Council at risk of ‘catastrophic’ cyber attack

Strava’s new API agreement will destroy the app, users warn

Surge in financial phishing attacks in Southeast Asia

T-Mobile finally managed to thwart a data breach before it occured

Threat Assessment: Ignoble Scorpius, Distributors of BlackSuit Ransomware

Trend Micro Deep Security Vulnerability Let Attackers Execute Remote Code

Ubuntu Linux impacted by decade-old 'needrestart' flaw that gives root

Unsecured JupyterLab and Jupyter Notebooks servers abused for illegal streaming of Sports events

Update your iPhone, iPad, and Mac now to patch these serious zero-day security flaws

US charges five linked to Scattered Spider cybercrime gang

U.S. Government Accountability Office (GAO) recommends new agency to streamline how US government protects citizens’ data

US space tech firm Maxar says employee personal data leaked in hack

XenoRAT Weaponizes Excel XLL Files To Evade Protection Systems

Warning after data of 500,000 Auchan shoppers is targeted in cyber attack

Weaponized pen testers are becoming a new hacker staple

WezRat malware weaponised in phishing attacks to steal data

What is Domain-Based Message Authentication, Reporting & Conformance(DMARC)?

19/11

5 Sinais de Que Seu Whatsapp Foi Hackeado

7 Common Web App Security Vulnerabilities Explained

AI automation firm iLearningEngines hacked, $250K stolen

AI Firm iLearningEngines Hit by Cyberattack, Loses $250,000 in Wire Fraud

AlmaLinux 9.5 released: Security updates, new packages, and more!

AMGtime Database Leak Exposes Sensitive Workforce Data

Black Friday deals or data steals: here’s how top shopping apps can access your data

Botnet fueling residential proxies disrupted in cybercrime crackdown

Chinese Hackers Exploit T-Mobile and Other U.S. Telecoms in Broader Espionage Campaign

CISA Rolls Out Next-Gen Learning Platform to Boost Cybersecurity Skills

Cloud ransomware threats rise, targeting S3 & Azure

Companies Take Over Seven Months to Recover From Cyber Incidents

Critical Windows Kerberos Flaw Exposes Millions of Servers to Attack

Cross-IdP impersonation bypasses SSO protections

Data privacy experts predict some wins under Trump 2.0

Dev + Sec: A collaborative approach to cybersecurity

D-Link urges users to retire VPN routers impacted by unfixed RCE flaw

EDR buyer’s guide: How to pick the best endpoint detection and response solution

Enhancing Traveler Data Security: Best Practices for Managing Sensitive Info

Equinox cybersecurity breach potentially exposes sensitive health data

France – Hospital Database Breach Affects 750K Records

France – Hospital Data Breach Exposes 1.5M Customer Records

German court rules Facebook users are entitled to compensation for 2021 data leak

Google report shows CISOs must embrace change to stay secure

Hacker roamed space tech giant Maxar‘s systems for days

Hackers Hijack Unsecured Jupyter Notebooks to Stream Illegal Sports Broadcasts

Hackus Mail Checker 2.2.0 Cracked Version Leaked Online

Helldown Ransomware Expands to Target VMware and Linux Systems

Helldown ransomware exploits Zyxel VPN flaw to breach networks

Landmark ruling by Australian regulator sets guardrails for commercial use of facial recognition tech

Massive 600GB Emirates Cloud Data Breach Raises Security Concerns

Massive Credential Leak Exposes 1 Billion Login Records

Meridian Man Sentenced to 10 Years for Cyber Hacking and Extortion Scheme

Microlise Admits Hackers Compromised Corporate Data in Cyberattack

Microsoft announces new and improved Windows 11 security features

Microsoft plans to boot security vendors out of the Windows kernel

Microsoft to tighten Windows security dramatically in 2025 - here's how

New 'Helldown' Ransomware Variant Expands Attacks to VMware and Linux Systems

Ngioweb Botnet Fuels NSOCKS Residential Proxy Network Exploiting IoT Devices

November 2024 Logs Leak Exposes Sensitive Information

Open-source and free Android password managers that prioritize your privacy

Oracle patches exploited Agile PLM vulnerability (CVE-2024-21287)

Palo Alto Networks Patches Critical Firewall Vulnerability

Phobos ransomware administrator faces US cybercrime charges

Privileged Accounts, Hidden Threats: Why Privileged Access Security Must Be a Top Priority

Ransomware Evolution: From Triple-Quadruple Extortion to RaaS

Ransomware Gang Akira Leaks Record Number of Victims’ Data in Single Day

Ransomware Gangs on Recruitment Drive for Pen Testers

Russian-American Hacker Sentenced in Historic $4.5 Billion Bitcoin Laundering Case

Russian extradited to US from South Korea to face cybercrime charges

Russian hacker extradited to US over Phobos ransomware crimes

Significant surge in DocuSign impersonation attacks: hackers mimicking government

Space tech giant Maxar confirms attackers accessed employee data

Suspected Phobos Ransomware Admin Extradited to US

T-Mobile Breached in Major Chinese Cyber-Attack on Telecoms

Testimony from NSO Group raises questions about its culpability for spyware abuses

The rise of “porch pirates” using leaked tracking data to steal iPhones

US Senate panel to hold hearing on suspected Chinese hacking incidents

VMware virtual machines under attack: hackers exploit critical vCenter Server flaw

Warning: VMware vCenter and Kemp LoadMaster Flaws Under Active Exploitation

Why AI alone can’t protect you from sophisticated email threats

Windows 365 Link Cloud PC: Connect securely to Windows 365

18/11

1.5M Exposed: Set Forth & Centrex Hit by Massive Data Breach

300 Drinking Water Systems in US Exposed to Disruptive, Damaging Hacker Attacks

Accused Phobos Ransomware Hacker in US Custody

ADT Freight Services listed as alleged victim by Sarcoma ransomware gang

AI Can Be Leveraged For Phishing Scams: What You Need To Know To Stay Safe

AI training software firm iLearningEngines says it lost $250,000 in recent cyberattack

AirTag 2: possible release date and safety updates

Akira Ransomware Racks Up 30+ Victims in a Single Day

AnnieMac Data Breach Impacts 171,000 Customers

Apache HertzBeat Vulnerability Let Attackers Exfiltrate Sensitive Data

APT Group DONOT Launches Cyberattack on Pakistan’s Maritime and Defense Industry

Argentina – Student Database Breach in Entre Ríos Province

Attackers are exploiting 2 zero-days in Palo Alto Networks firewalls (CVE-2024-0012, CVE-2024-9474)

Beware of Fake Sites Mimicking Black Friday Deals

Beyond Compliance: The Advantage of Year-Round Network Pen Testing

Bipartisan effort to clean up cyber regulations gets a boost in House, but calendar is tight

Bitfinex Hacker’s Wife Razzlekhan Sentenced to 18 Months for Laundering

Black Friday or Black Fraud-day? A Prime Time for Fraud and Cyberattacks

British software company Microlise confirms hackers compromised corporate data

Chinese Salt Typhoon Hacked T-Mobile in US Telecom Breach Spree

Citrix Virtual Apps & Desktops Vulnerability Actively Exploited in Attacks

‘ClickFix’ Cyber-Attacks for Malware Deployment on the Rise

Critical RCE bug in VMware vCenter Server now exploited in attacks

Critical Really Simple Security plugin flaw impacts 4M+ WordPress sites

Cyber attack on AnnieMac Home Mortgage impacted over 170,000 borrowers

Distributor of ANOM Encrypted Devices Sentenced to Over 5 Years in Prison

El Dorado school district says hackers stole the data of over 30,000 students and staff

Exploitation of Scalable Vector Graphics (SVG) attachments in phishing on the rise

Facebook Malvertising Campaign Spreads Malware via Fake Bitwarden

Facebook users affected by data breach eligible for compensation, German court says

Fake Bitwarden ads on Facebook push info-stealing Chrome extension

Fake Discount Sites Exploit Black Friday to Hijack Shopper Information

Fake Donald Trump Assassination Story Used in Phishing Scam

Foreign adversary hacked email communications of the Library of Congress says

FTC Records 50% Drop in Nuisance Calls Since 2021

Gen AI could speed up coding, but businesses should still consider risks

Germany – Stauberstahl.com Database Breach Exposes Sensitive Data

Gmail's New Shielded Email Feature Lets Users Create Aliases for Email Privacy

Google Announces Shielded Email Feature To Hide Your Main Email Address

Hacked crypto project Thala agrees to $300K bounty, recovers $25M

Helix darknet Bitcoin 'mixer' will fork over $750M, serve time, for processing 1M+ transactions

How and where to report cybercrime: What you need to know

Increased GDPR Enforcement Highlights the Need for Data Security

India – NCISM NEET Students Data Breach Exposes Personal Details

India – Sreedharscce.com Data Breach Exposes Millions of Records

Major US telecom T-Mobile among victims of China-linked breach

Microsoft 365 Admin portal abused to send sextortion emails

Mozilla 0Din Warns of ChatGPT Sandbox Flaws Enabling Python Execution

Musk’s anticipated cost-cutting hacks could weaken American cybersecurity

Navigating the compliance labyrinth: A CSO’s guide to scaling security

New Stealthy BabbleLoader Malware Spotted Delivering WhiteSnake and Meduza Stealers

North Korean IT Worker Network Tied to BeaverTail Phishing Campaign

NSO Group Exploited WhatsApp to Install Pegasus Spyware Even After Meta's Lawsuit

Ohio Man Sentenced to 3 Years for Running Helix Cryptocurrency Mixer

Palo Alto Reports Two More Bugs in PAN-OS That Are Being Actively Exploited

PostgreSQL Security Update, Patch For Multiple Vulnerabilities

RansomHub ransomware gang claims data breach targeting Mexican government

Samba AD Vulnerability Let Attackers Escalate Privilege

ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps

So, you don’t have a chief information security officer? 9 signs your company needs one

Sonatype Nexus Repository Manager Hit By RCE & XSS Vulnerability

Surge in DocuSign Phishing Attacks Target US State Contractors

Swiss Cyber Agency Warns of QR Code Malware in Mail Scam

T-Mobile Also Hit in China-linked Telecom Network Breaches

T-Mobile confirms breach amid wave of Chinese state-sponsored telecom attacks

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Team Software Breach, Hackers Gain Unauthorized Access To Network Infrastructure

The Problem of Permissions and Non-Human Identities - Why Remediating Credentials Takes Longer Than You Think

Transforce.in – Database Breach Exposes Sensitive User Data

Tjori.com 2021 Data Breach Exposes 1 Million User Records

Transforming code scanning and threat detection with GenAI

UK Shoppers Lost £11.5m Last Christmas, NCSC Warns

Urgent: Critical WordPress Plugin Vulnerability Exposes Over 4 Million Sites

URL Login & Password Leak – 2.5 Million Records Exposed

US charges Phobos ransomware admin after South Korea extradition

U.S. Extradites and Charges Alleged Phobos Ransomware Admin

US Government Agencies Impersonated in Aggressive DocuSign Phishing Scams

X algorithm changed in July to boost right-wing accounts, study finds

Zohocorp ManageEngine ADAudit Plus Vulnerable To SQL Injection Attacks

17/11

Data Breach Drama: When Trust Turns Costly in a Digital Age

Don’t Hold Down The Ctrl Key—New Warning As Cyber Attacks Confirmed

Good Hacker Hacked 100 Dark Web Hackers Using Fake Ransomware Tool

Head of Rape Crisis Scotland cleared over data breach complaints

Phishing emails increasingly use SVG attachments to evade detection

Security plugin flaw in millions of WordPress sites gives admin access

‘We need quicker reporting': Some lawmakers push for stronger data breach regulation

Daily News - Novembro (17/11 - 23/11) - 47 Semana de 2024

Cyber Security, Hacking, Privacy and Information Security News --- Daily Updates !! Weekly Resume...

23/11

22/11

21/11

20/11

19/11

18/11

17/11

Daily News - Novembro (10/11 - 16/11) - 46 Semana de 2024

Posts recentes

Comments

Procurar por Tags

Pelo Mundo Afora...