NEWS: Janeiro/Fevereiro (31/01 - 06/02) - 5 Semana de 2021

NEWS: Janeiro/Fevereiro (07/02 - 13/02) - 6 Semana de 2021

06/02/2021

3 common misconceptions about two-factor authentication - Stuff

After data breach, bill introduced to create ‘state office of cybersecurity’ in Washington - The News Tribune

Chastity Belt Ransomware: How Hackers Held People’s Genitals Hostage - Forbes

Israeli Antifa Hackers Attack KKK Site and Expose Personal Details - TechNadu

Mapping cyber risk across different sectors - ITP Net

Organized scam gangs rake in $6.5 million in 2020, report says: 'Growing rapidly' in US - Fox News

Patient names from US hospitals posted on the dark web - TechStory

‘SitePoint’ Data Breach Ends up in a User Database Leak - TechNadu

SitePoint Disclosed Data Breach Affecting Millions of Users, Resets Passwords - TechDator

Slack Is Sending Out Messages Urging Users to Reset Their Passwords - TechNadu

US Hospital Hacked, Patient Names and Colonoscopy Results Posted Online - TechTimes

Vt. data breach damage control to cost upwards of $7M - Wcax

05/02/2021

API adoption is on the rise across all industries - Help Net Security

Chrome 88 update includes important security fix for zero-day vulnerability - The Verge

CISO’s Guide to Secure Software Development - Security Boulevard

Critical Flaws Reported in Cisco VPN Routers for Businesses—Patch ASAP - Bleeping Computer

Cybersecurity Provider ‘Stormshield’ Hacked by Sophisticated Actors - TechNadu

Data loss prevention strategies for long-term remote teams - Help Net Security

DriveSure Suffers Data Breach, Users’ Data Leaked on “Raidforums” - CISO Magazine

Eletrobras, Copel energy companies hit by ransomware attacks - Bleeping Computer

Employee Monitoring Software Secures Remote Teams - Security Boulevard

Enterprises average one root access orphan key on every enterprise server - Help Net Security

February 2021 Patch Tuesday forecast: The human communication aspect - Help Net Security

Fortinet addresses 4 vulnerabilities in FortiWeb web application firewalls - Security Affairs

Fraudsters are Using Fake W-8BEN Forms for 2021 Tax Season - E Hacking News

Malicious extension abuses Chrome sync to steal users’ data - Bleeping Computer

NCIJTF Releases Ransomware Fact Sheet for Public Awareness - CISO Magazine

Number of ICS vulnerabilities disclosed in 2020 up significantly - Help Net Security

Open-source tool for hardening commonly used HMI/SCADA system - Help Net Security

Oxfam Australia 1.7 Million users Compromise with the Data Breach - E Hacking News

Safe-to-Use Decryptors for the Fonix Ransomware Are Now Available - TechNadu

Security Firm Stormshield Discloses Data Breach, Theft of Source Code - E Hacking News

The FSB recorded an attempt to encrypt the data of patients in hospitals in Russia - E Hacking News

The transportation sector needs a standards-driven, industry-wide approach to cybersecurity - Help Net Security

04/02/2021

API security concerns hindering new application rollouts - Help Net Security

Beware: New Matryosh DDoS Botnet Targeting Android-Based Devices - The Hacker News

Blockchain transactions confirm murky and interconnected ransomware scene - ZD Net

Brazil's Eletrobras says nuclear unit hit with cyberattack - Reuters

Critical Bugs Found in Popular Realtek Wi-Fi Module for Embedded Devices - The Hacker News

Disclosed ICS Vulnerabilities Surged During Second Half of 2020 - InfoSecurity

Eletronuclear, da Eletrobras, desliga sistemas em meio a ataque hacker - TecnoBlog

Google: Incomplete Patches Caused Quarter of Zero-Days in 2020 - InfoSecurity

Fortinet bolsters FortiOS with Zero Trust Network Access - ZD Net

How to Audit Password Changes in Active Directory - The Hacker News

London Orgs: Increased Risk Due to Remote Working to Persist for 12-18 months - InfoSecurity

Major trends that are changing the CISO role - Help Net Security

Most are concerned about data privacy, but few are willing to change habits - Help Net Security

NIST provides guidance to protect controlled unclassified information - Help Net Security

Runtime data no longer has to be vulnerable data - Help Net Security

Security firm Stormshield discloses data breach, theft of source code - ZD Net

SolarWinds Attack: Proof That On-Premises Active Directory Still an Effective Initial Access Vector - InfoSecurity

Subsidiária da Airbus CyberSecurity revela incidente - CISO Advisor

Three More Vulnerabilities Found in SolarWinds Products - InfoSecurity

Why Human Error is #1 Cyber Security Threat to Businesses in 2021 - The Hacker News

Why pseudonymisation is important to protect personal data? - Help Net Security

03/02/2021

3 New Severe Security Vulnerabilities Found In SolarWinds Software - The Hacker News

93% of workers overshare online, causing security risks - Help Net Security

A New Linux Malware Targeting High-Performance Computing Clusters - The Hacker News

Cisco fixes critical code execution bugs in SMB VPN routers - Bleeping Computer

Comcast Exposed Passwordless Development Database of 478 GB Online - TechNadu

Container security is a priority, but who’s responsibility is it? - Help Net Security

Data Of 25 Lakh Airtel Users In J&K Leaked After Failed Ransom Attempt - Inc42

Data on Thousands of Foxtons Customers Posted Online - InfoSecurity

‘EscortReviews.com’ Hacked and User Database Stolen - TechNadu

Female escort review site data breach affects 470,000 members - Bleeping Computer

Foxtons estate agency leaked thousands of customers’ financial records - IT Governance

Getting Started With Cloud Data Protection - Security Boulevard

Hackers stole personnel records of software developer Wind River - Security Affairs

Lack of visibility into remote endpoints leaves companies vulnerable to ransomware - Help Net Security

Meus dados vazaram e agora? - CBN Recife

Over a Dozen Chrome Extensions Caught Hijacking Google Search Results for Millions - The Hacker News

Over Three Million US Drivers Exposed in Data Breach - InfoSecurity

PF apreende cerca de R$ 10 mi em casa de hacker acusado de fraude bancária - CISO Advisor

Privacy survey: Consumers have poor understanding of data privacy yet think they are taking proactive steps - ZD Net

Recent root-giving Sudo bug also impacts macOS - ZD Net

Recently discovered CVE-2021-3156 SUDO bug also affects macOS Big Sur - Security Affairs

Securing SSH Keys in Multicloud Operations - Security Boulevard

Senhas de LinkedIn, Netflix e outros estão em maior vazamento da história - CanalTech

SolarWinds patches critical vulnerabilities in the Orion platform - Bleeping Computer

Top 10 most exploited vulnerabilities from 2020 - Help Net Security

US Payroll Agency Targeted in Separate SolarWinds Attack - Report - InfoSecurity

What is a VPN and how does it work? Your guide to internet privacy and security - ZD Net

Windows 10 KB4598291 update fixes device deactivation, freezing issues - Bleeping Computer

02/02/2021

2020 named worst year ever for scams - Your Money

Acronis issues warning of critical privacy risks in 2021 following Data Privacy Day - IT-Online

Agent Tesla ramps up its game in bypassing security walls, attacks endpoint protection - ZD Net

Beware Of Fake Maybank2U Website That Looks So Realistic It’s Successfully Scammed Malaysians Of Their Money - TRP

CCAPS: New cybersecurity category that protects households and small businesses - Help Net Security

Check your Zoom background to remove sensitive personal-identifying items (or go virtual) - TechRepublic

Domain Phishing: Everything You Need To Know! - Stock Analyst

Email-based scams pose the greatest threat to business data - IT Pro Portal

European Union: European Data Protection Board Issues Guidelines On Examples Regarding Data Breach Notification - Mondaq

Extortion, ransom-related DDoS attacks surged in 2020 - Security Brief

FuiVazado! libera código fonte no GitHub após questionamentos de segurança - The Hack

Gateway SMA 100 da SonicWall sob ataque pesado na internet - CISO Advisor

Hacker põe à venda na dark web 270 milhões de registros da Dataprev - CISO Advisor

Hackers seguem fazendo vítimas e elas tentando fugir da lei - CISO Advisor

Hacker Stole ‘Airtel India’ Subscriber Data and Put Them up for Sale - TechNadu

HackNotice Uses Years of Data to Predict Breach-Source Trends - CISION

Hospitals Suffer New Wave of Hacking Attempts - The Wall Street Journal

How to motivate employees to take cybersecurity seriously - Help Net Security

How To Protect Your Family’s Data From School Hacks - Forbes

Human fallibility – weakest link in cyber security - ITWeb

Malware feito para supercomputadores HPC ataca na Ásia e EUA - CISO Advisor

Peixe Urbano fica fora do ar, e consumidores suspeitam de falência - Extra

01/02/2021

40% dos conselhos terão comitê de cibersegurança até 2025 - CISO Advisor

5G core market size to reach $9.497 million by 2025 - Help Net Security

A Large Number of Emails Were Falsely Flagged as Spam by ‘SpamCop’ on Sunday - TechNadu

Aprendizado de máquina vai ajudar na localização de SQLi - CISO Advisor

BlastDoor: New Security Feature in Apple iOS 14 to Counter Zero-click Exploits - CISO Magazine

Board members aren’t taking cybersecurity as seriously as they should - Help Net Security

Can Third-Party Security Programs Prevent the Next SolarWinds? - Security Boulevard

Darknet, dark web, deep web, and surface web — what’s the difference? - Kaspersky Daily

Exploiting a bug in Azure Functions to escape Docker - Security Affairs

Greek Police to Introduce Live Facial Recognition - InfoSecurity

Hackers access customers database by scamming UScellular staff - HackRead

How consumers protect sensitive information when using FinTech apps - Help Net Security

How do I select a PAM solution for my business? - Help Net Security

Incidente da Juniper de novo na mira do Congresso dos EUA - CISO Advisor

Initial Access Remains a Booming Business on the Dark Web - TechNadu

Lebanese Cedar Targeted Telecoms, Hosting’s, ISPs Worldwide - E Hacking News

New value exists at the intersection of digital tech and sustainability - Help Net Security

Stopping VPN Abuse, Corruption by BPH Providers - Security Boulevard

The dark web in 2021: Should enterprises be worried? - TechTarget

To combat cyber warfare the security industry needs to work together - Help Net Security

USCellular Hit by a Data Breach After Hackers Access CRM Software - E Hacking News

31/01/2021

7 Tips on How to Keep Your Business Data Protected - IMC Group

Amazon Warning: Britons Targeted By Scam ‘Amazon Prime Subscription’ Phone Call | Personal Finance | Finance - Techno Codex

Data privacy: Behavioural analytics, data hoarding and government crackdowns to dominate 2021 - ITP Net

Wrexham Trading Standards issues warning over scam covid-19 vaccine email - Wrexham