NEWS: Fevereiro/Março (28/02 - 06/03) - 9 Semana de 2021

Cybersecurity News !!! Hacking is a Lifestyle .....

06/03

ANA and JAL discover data of around 1 million customers compromised - The Japan Times

All That the ‘Hog’ Ransomware Demands Is For You to Join Its Discord Server - TechNadu

Data Breach Affects Major Airlines – What You Need To Know - Simple Flying

Microsoft hack: White House warns of 'active threat' of email attack - BBC News

Number of cyber attacks increased by 1.5 times during the lockdown - Delfi

Sandhills Medical Foundation patient info accessed in cyber attack - The Sumter Item

The Nefilim Ransomware Group Has Hit ‘Spirit Airlines’ - TechNadu

Top 10 predictions of how AI is going to improve cybersecurity In 2021 - Robotics & Automation

Warning over 'National Insurance' automated phone call con - North Norfolk News

05/03

5 Ways Social Engineers Crack Into Human Beings - Dark Reading

80% of senior IT leaders see cybersecurity protection deficits - Tech Republic

Air New Zealand customers told of Star Alliance data breach - Stuff

Air NZ issues apology for data breach involving Airpoints members - TVNZ

Air New Zealand warns frequent flyers of data breach - NZ Herald

Airline data hack: hundreds of thousands of Star Alliance passengers' details stolen - The Guardian

Amazon’s Alexa has multiple vulnerabilities which may put private information at risk - Study Finds

Be very careful with this WhatsApp scam that will steal your data - Explica

Clubhouse’s Data Spill: The Impact of Cybersecurity Breaches On Start-Up Businesses - TechRound

Credential exposure trends: You need a better password - Help Net Security

Cyber-attacks On Education Providers: What You Should Know - Scoop Independent News

Cyber security responsibility of all employees - Punchline

Cyberattack shuts down online learning at 15 UK schools - ZD Net

Deepfake Apps Are Already Used by Millions - TechNadu

Docker Hub and Bitbucket Resources Hijacked for Crypto-Mining - InfoSecurity

Email hacking incident exposes patients' info at 2 Trinity Health hospitals - Beckers Health IT

Empower Your Employees To Be The First Line Of Defense Against Cyber Threats - Forbes

Failure to Report Breach Costs Mortgage Lender $1.5m - InfoSecurity

Fake SMS focused on parcel shipments on the rise - Explica

Finland’s Finnair reports of client data breach involving 200 000 people - Baltic News Network

Hackers demand $1.75M from North Carolina clinic during 6-day ransomware attack - Beckers Health IT

Hackers Target Russian Cybercrime Forums - InfoSecurity

IOTW: China Possibly To Blame For India’s 2020 Power Outage As Cyber Warfare Increases Globally - Cyber Security Hub

Microsoft Exchange zero-day vulnerabilities exploited in attacks against US local governments - ZD Net

New ransomware only decrypts victims who join their Discord server - Bleeping Computer

Nottinghamshire schools suspend online learning following cyber attack - Computer Weekly

Ongoing phishing attacks target US brokers with fake FINRA audits - Bleeping Computer

Pandemic-driven move to home offices opened new front for cyberthreats - Canada com

Password Security for Furloughed Employees - InfoSecurity

REvil Ransomware Attacks MSP Standley Systems, Leaks SSNs - CRN

Saint Agnes patient data compromised in email breach - The Business Journal

SITA Announces Data Security Incident Affecting Several Airlines - TechNadu

SITA Reports February Data Breach - Business Travel News

SITA Supply Chain Breach Hits Multiple Airlines - InfoSecurity

Star Alliance passenger data stolen in SITA data breach - ITPro

Swedish Fraudster Who Stole $16 Million From 3,575 Victims Charged in the U.S. - TechNadu

Twitter Fined In Ireland For Violating GDPR - Swords Today

Two more Army jawans involved in data breach - Daily Excelsior

Why trust in Zero Trust is growing - Daily Host News

04/03

15 schools in Nottinghamshire crippled by cyber attack - IT Pro

32% of enterprises experienced unauthorized access to cloud resources - Help Net Security

34,000 affected in Virginia health plan data breach - Beckers Health IT

Accellion zero-day claims a new victim in cybersecurity company Qualys - ZD Net

All online payments could be in danger of being hacked - TechRadar Pro

Army investigates 3 jawans for Northern Command Hq data breach, Pak drug racket under scanner - The Indian Express

Businesses trust their remote employees are sufficiently skilled to mitigate cybersecurity risks - Help Net Security

CallX Exposed Voice Recordings and Text Messages of Thousands - TechNadu

CISA issues emergency directive to agencies: deal with Microsoft Exchange zero-days now - ZD Net

CompuCom MSP hit by DarkSide ransomware cyberattack - Bleeping Computer

Court Dismisses Marriott Data Breach Suit For Lack of Standing - Law Street

Cryptocurrency Fraudster Steals $16m - InfoSecurity

Cybercriminals innovate to find vulnerabilities that can be monetized - Help Net Security

Cybersecurity software provider Qualys suffers Accellion-related data breach - Silicon Angle

Defending the digital classroom: this is how the university lived the course in which cybersecurity became critical - The Times Hub

Extortion Gang Breaches Cybersecurity Firm Qualys Using Accellion Exploit - The Hacker News

FireEye finds new malware likely linked to SolarWinds hackers - Bleeping Computer

‘Free speech’ social media network Gab suffered data breach - PM

Group-IB: Ransomware Empire Prospers in Pandemic-Hit World; Attacks Grow by 150% - Dark Reading

Hacked SendGrid accounts used in phishing attacks to steal logins - Bleeping Computer

Hackers post New Mexico hospital employees' info online after ransomware attack - Beckers Health IT

Hijacking traffic to Microsoft’s windows.com with bitflipping - Bleeping Computer

HIPAA Security Requirements: What They Really Mean - Security Boulevard

How banks and banking customers can protect themselves against financial crimes - TechRepublic

Huge rise in ransomware cyberattacks on Japan firms an extreme threat: police - The Mainichi

Linux distributions: All the talent and hard work that goes into building a good one - ZD Net

'Malware alert': Avoid downloads from unknown email addresses - Geo News

Maza Russian cybercriminal forum suffers data breach - ZD Net

Microsoft reveals 3 new malware strains used by SolarWinds hackers - Bleeping Computer

Microsoft: We're cracking down on Excel macro malware - ZD Net

MobiKwik Denied KYC and Card Data Leak Involving 11 Crore Indians - TechDator

NFA Sounds Alarm over Phishing Emails Impersonating Its Staff - Finance Magnates

NHS staff inundated with almost 140,000 spam emails in 2020 - Dentistry

Notorious Maza cybercrime forum attacked by other hackers - Bleeping Computer

Okta acquires Auth0 for $6.5 billion - Help Net Security

Okta and Auth0: A $6.5 billion bet that identity will warrant its own cloud - ZD Net

Quality, not quantity, is the hallmark of the latest waves of phishing attacks - TechRepublic

Ransomware as a service is the new big problem for business - ZD Net

Ransomware Attack on Arizona Optometrist - InfoSecurity

Ransomware is a multi-billion industry and it keeps growing - Bleeping Computer

Saint Agnes Medical Center Responds to an Email Security Incident - PR Newswire

Security starts with architecture - Help Net Security

Singapore Airlines frequent flyer members hit in third-party data security breach - ZD Net

SITA data breach compromised data associated with multiple international airlines - Teiss

The economics behind global disinformation engines and strategies for mitigation - Help Net Security

Twitter and Twitch added to list of those concerned with Australia's Online Safety Bill - ZD Net

03/03

10 strategies small security teams can use for effective cybersecurity management - Help Net Security

A $50,000 Bug Could've Allowed Hackers Access Any Microsoft Account - The Hacker News

Attackers took over the Perl.com domain in September 2020 - Security Affairs

BEC scammers are targeting investors for massive payouts - Bleeeping Computer

Cash App phishing kit deployed in the wild, courtesy of 16Shop - Bleeping Computer

DoS Vulnerability in Eclipse Jetty Calls for Urgent Updates - TechNadu

Enterprises observing uptick in risky behaviors since shift to remote work - Help Net Security

Exchange Servers targeted via zero-day exploits, have yours been hit? - Help Net Security

Four zero-days in Microsoft Exchange actively exploited in the wild - Security Affairs

Google fixes Critical Remote Code Execution issue in Android System component - Security Affairs

Google patches actively exploited Chrome browser zero-day vulnerability - ZD Net

Google takes next steps towards 'privacy-first' web devoid of third-party cookies - ZD Net

GRUB2 boot loader reveals multiple high severity vulnerabilities - Bleeeping Computer

Hackers Now Hiding ObliqueRAT Payload in Images to Evade Detection - The Hacker News

Hackers share methods to bypass 3D Secure for payment cards - Bleeeping Computer

How to tackle modern agriculture security challenges - Help Net Security

Malaysia Airlines descobre invasão que pode ter começado em 2010 - CISO Advisor

Microsoft account hijack vulnerability earns bug bounty hunter $50,000 - ZD Net

Microsoft Pushes Urgent Updates for Exchange Server After the Discovery of Multiple 0-Days - TechNadu

Microsoft: These Exchange Server zero-day flaws are being used by hackers, so update now - ZD Net

Now-fixed Linux kernel vulnerabilities enabled local privilege escalation (CVE-2021-26708) - Help Net Security

Oxfam Australia Confirms Data Breached During Cyberattack - CISO Mag

Proliferation of sneakerbots across industries: The long tail of DIY bot operators - Help Net Security

SEC charges group for alleged pump-and-dump Airborne Wireless stock scam - ZD Net

State hackers rush to exploit unpatched Microsoft Exchange servers - Bleeping Computer

The Ryuk Ransomware Is Now Turning Into a Dangerous Worm - TechNadu

Ursnif Trojan has targeted over 100 Italian banks - ZD Net

02/03

$21 Million in New 2020 Ransomware Payments were Made According to Chainalysis Review of Uncovered Crypto Addresses - Crowdfund Insider

50% Phishing Emails Seek Credential Theft, as Malware Delivery Declines - Health IT Security

Alexa Skills: Security gaps and data protection problems - Help Net Security

Browser Extension Developers Turn to Code Injection for Monetization - TechNadu

Compromised Website Images Camouflage ObliqueRAT Malware - ThreatPost

Countering the evolving threat of ransomware - Security Brief

Customers willing to share personal data in exchange for personalized services - Help Net Security

Cybercriminals continue to target trusted cloud apps - Help Net Security

Data extortion ransomware attacks on financial sector up 350 per cent during Covid-19 pandemic - Instituional Asset Manager

‘DDoSecrets’ Is Soon to Publish 70GB of Far-Right Detestation Coming Straight From ‘Gab’ - TechNadu

DoJ Steps Up Investigation into NSO Group – Report - InfoSecurity

Google addresses customer data protection, security in Workspace - ZD Net

Healthcare firms saw a rise in ransomware attacks last year - IT Pro Portal

Malaysia Airlines: Personal data of Enrich members may have been compromised - Soyacincau

Malaysia Airlines discloses a nine-year-long data breach - Bleeping Computer

Malaysia Airlines Suffers Data Breach Involving Enrich Members - Lowyat Net

Malicious NPM packages target Amazon, Slack with new dependency attacks - Bleeping Computer

‘Mariana Tek’ Exposes 1.5 Million User Records via Unprotected AWS Bucket - TechNadu

Medal of Honor Holders’ Identities Stolen - InfoSecurity

Multi-payload Gootloader platform stealthily delivers malware and ransomware - Help Net Security

ObliqueRAT Trojan now lurks in images on compromised websites - ZD Net

Oxfam Australia confirms data breach after stolen info sold online - Bleeping Computer

Oxfam Australia supporters embroiled in new data breach - ZD Net

Payroll giant PrismHR outage likely caused by ransomware attack - Bleeping Computer

Ransomware Attack's Economic Impact: $67 Million - Bank Info Security

Ryuk Ransomware: Now with Worming Self-Propagation - ThreatPost

Universal Health Services Estimates $67 Million in Ransomware Losses - InfoSecurity

What hacking attacks can teach us about defending networks - ZD Net

What is cyber insurance? Everything you need to know about what it covers and how it works - ZD Net

01/03

Betting Big on Identity and Authentication - Security Boulevard

ByteDance agreed to pay $92M in US privacy Settlement for TikTok data collection - Security Affairs

Chinese Hackers Targeted India's Power Grid Amid Geopolitical Tensions - The Hacker News

Chinese Hacking Group “RedEcho” Targets Indian Power Sector - CISO Mag

Chinese State-Supported Actors Target India’s Power Grid - TechNadu

Critical flaw in Rockwell PLCs allows attackers to fiddle with them (CVE-2021-22681) - Help Net Security

Data is most at risk on email, with 83% of organizations experiencing email data breaches - Help Net Security

Free cybersecurity tool aims to help smaller businesses stay safer online - ZD Net

Full-stack observability: The only way technologists can deal with IT complexity - Help Net Security

Google: Bad bots are on the attack, and your defence plan is probably wrong - ZD Net

Gootkit RAT Using SEO to Distribute Malware Through Compromised Sites - The Hacker News

Hackers exploit websites to give them excellent SEO before deploying malware - ZD Net

Hackers use black hat SEO to push ransomware, trojans via Google - Bleeping Computer

Half of Orgs Concerned Remote Working Puts Them at Greater Risk of Cyber-Attacks - InfoSecurity

How do I select a cloud security solution for my business? - Help Net Security

Insights for navigating a drastically changing threat landscape - Help Net Security

Intern caused ‘solarwinds123’ password leak, former SolarWinds CEO says - Security Affairs

Many Businesses Have GRC Software, Yet Most Still Struggle to Manage IT Risks Consistently - Security Boulevard

Most IT security leaders lack confidence in their company’s security posture - Help Net Security

NSA embraces the Zero Trust Security Model - Security Affairs

NSW Transport agency extorted by ransomware gang after Accellion attack - Bleeping Computer

Passwords, Private Posts Exposed in Hack of Gab Social Network - ThreatPost

Protecting the digital workplace with an integrated security strategy - Help Net Security

Scientists have built this ultrafast laser-powered random number generator - ZD Net

Singapore eyes more cameras, technology to boost law enforcement - ZD Net

SolarWinds security fiasco may have started with simple password blunders - ZD Net

Suspected Chinese APT Group Targets Power Plants in India - Security Week

Tether cryptocurrency firm says docs in $24 million ransom are 'forged' - Bleeping Computer

Tether faces 500 Bitcoin ransom: We are ‘not paying’ - ZD Net

TikTok removed 89M videos, most of which from US - ZD Net

United Airlines to Pay $49m to Settle False Data Claim - InfoSecurity

Universal Health Services reports $67 million in losses after apparent ransomware attack - Cyber Scoop

Universal Health Services lost $67 million due to Ryuk ransomware attack - Bleeping Computer

‘ZEE5’ Has Leaked the Data of Nine Million Users but Didn’t Disclose It - TechNadu

Why do companies fail to stop breaches despite soaring IT security investment? - The Hacker News

World's leading dairy group Lactalis hit by cyberattack - Bleeping Computer

28/02

32Red Customers See Other Players’ Info in Shock Data Breach Glitch - High Stakes Database

Beware: AOL phishing email states your account will be closed - Bleeping Computer

‘Cyberpunk 2077’ next patch delayed to second half of March after cyber attack - Micky

FBI Warns Against Vishing Scams Over VoIP - Security Intelligence

Fixing the “Human Error” Problem - The State of Security

Hackers exploited flaws in Accellion FTA to steal Bombardier data - Teiss

Hackers seized on the pandemic. Some states are fighting back - Bakersfield

Hampshire residents scammed out of £16m by investment fraudsters - Advertiser Times

How to encourage cyber-safe behaviour at work without becoming the office grouch - Micky

Law Firms as Targets For Hackers - Risks and the Way Forward - ProShare

Oxford University lab studying COVID-19 targeted by cyberattack - Silicon Angle

Philippines: Civil Service Commission data breach, thousands of user details exposed - Manila Bulletin

Police and UK banks stopped £45m of fraud in 2020 - Yahoo Finance

Ransomware attacks rise in 2020, SaaS apps are the new target: Report - Hi Tech

Russian hackers target Ukrainian government agencies with watering-hole attacks - Teiss

Ryuk Trojan Attacking Via WiFi Networks - RS News

Some San Diegans’ personal information provided to Jewish Family Service exposed online - The San Diego Union Tribune

NEWS: Fevereiro (21/02 - 27/02) - 8 Semana de 2021