NEWS: Julho (18/07 - 24/07) - 29 Semana de 2021
Cyber Security, Information Security and Hacking News !!!!
24/07
FBI on High Alert on Olympic Games Potential Cybercriminal Attacks After Massive Data Breach - Tech Times
Kaspersky identifies new APT campaign - ITP Net
Microsoft shares mitigations for new PetitPotam NTLM relay attack - Bleeping Computer
Middle East Oil Giants Grapple With Cyberattacks - Markets Insider
New Facebook Messenger Phishing Campaign: It All Begins With an Invitation to Watch a Video - SmallCap News
Obtaining password hashes of Windows systems with PetitPotam attack - Security Affairs
Phishing scams targeting writers and Goodreads extortion scams - Digital Journal
The work of the Runet was tested in the exercise of disconnection from the global network - E Hacking News
US accuses China of “malicious” cyberattacks, including Microsoft hacks | Hacking - Illinois News Live
US Loses $4.2B to Online Scams: Five to Be Aware of Right Now - Creek City Times
23/07
40% fell victim to a phishing attack in the past month - Help Net Security
Akamai software update triggered a bug that took offline major sites - Security Affairs
Apple fixes bug that breaks iPhone WiFi when joining rogue hotspots - Bleeping Computer
Attackers deploy cryptominers on Kubernetes clusters via Argo Workflows - Bleeping Computer
BSides Vancouver 2021 – Ruchi Gautam’s ‘Privacy Concerns In The Connected Car Ecosystem’ - Security Focus
BSides Vancouver 2021 – Vivek Ponnada’s ‘Is The Power Grid A Huge Cybersecurity Risk?’ - Security Focus
Companies Face Growing Legal Risks Over Ransomware Data Leaks - WSJ Pro Cybersecurity
Dutch Police Arrest Two Hackers Tied to "Fraud Family" Cybercrime Ring - The Hacker News
Emma Willard School hit by ransomware attack - Times Union
Estonian hacker Pavel Tsurkan pleads guilty for operating a proxy botnet - Security Affairs
Government IT decision makers worried about security risks related to cloud migration - Help Net Security
Hidden crypto farm in Frankfurt restaurant exposed - Data Breaches
Major news sites serve porn after vid.me domain takeover - Bleeping Computer
Nasty macOS Malware XCSSET Now Targets Google Chrome, Telegram Software - The Hacker News
Nearly 140 phishing incidents observed by CERT-In during H1 2021 - Telecom Economic Times
Over 80 US Municipalities’ Sensitive Information, Including Resident’s Personal Data, Left Vulnerable in Massive Data Breach - Security Affairs
Pro-Trump MAGACOIN crypto launch marred by website data breach - Cointelegraph
State Warns Of Driver’s License Phishing Scam - The Post-Journal
Transnet Undergoes Apparent Ransomware Hack - IT News Africa
Twitter reveals surprisingly low two-factor auth (2FA) adoption rate - Bleeping Computer
User data privacy decisions can be easily manipulated - Help Net Security
West Virginia Center’s Health Data Breach Includes Patients’ PHI - Health IT Security
What Is An Identity and Access Management Solution and How Can Businesses Benefit From It? - Security Affairs
22/07
Apple security updates: iOS 14.7 fixes WiFiDemon flaw - Help Net Security
Asset inventory management: What’s the ROI? - Help Net Security
Atlassian asks customers to patch critical Jira vulnerability - Bleeping Computer
Attacks on critical infrastructure are dangerous. Soon they could turn deadly, warn analysts - ZDNet
DDoS attacks are up, with ever-greater network impact - Help Net Security
Did you know a third of cybersecurity pros have experienced harassment? - Help Net Security
Financial services accounting for nearly 40% of all phishing URLs - Help Net Security
How (and Why) Hacker Forums Self-Moderate - Security Boulevard
Questions that help CISOs and boards have each other’s back - Help Net Security
Securing UX in Open Banking Apps - Security Boulevard
TicketClub Italy Database Offered in Dark Web - Security Affairs
Thousands of Humana customers have their medical data leaked online by threat actors - Security Affairs
Who is responsible for improving security in the software development environment? - Help Net Security
21/07
A unified approach is the future of data backup - Help Net Security
Be: Hit by cyberattack, the Courcelles Public Social Action Center persevered to respond to floods and emergency conditions - Data Breaches
Chinese state hackers breached over a dozen US pipeline operators - Bleeping Computer
CISA warns of stealthy malware found on hacked Pulse Secure devices - Bleeping Computer
DDoS attacks increased 33% in H1 2021 - Help Net Security
Defending Against Pervasive Spyware - Security Boulevard
Despite good defensive measures, ransomware continues to get in - Help Net Security
Easily exploitable, unpatched Windows privilege escalation flaw revealed (CVE-2021-36934) - Help Net Security
Europe’s IT and business services market propelled by growing cloud-based services adoption - Help Net Security
France ANSSI agency warns of APT31 campaign against French organizations - Security Affairs
France warns of APT31 cyberspies targeting French organizations - Bleeping Computer
Google Chrome now comes with up to 50x faster phishing detection - Bleeping Computer
Image encryption technique could keep photos safe on popular cloud photo services - Help Net Security
Kelihos botmaster Peter Levashov gets time served - Security Affairs
MacOS Being Picked Apart by $49 XLoader Data Stealer - Threatpost
Microsoft shares workarounds for new Windows 10 zero-day bug - Bleeping Computer
Most companies still rely on manual tools and tech for internal audit processes - Help Net Security
New Bill Could Force U.S. Businesses to Report Data Breaches Quicker - Security Boulevar
NPM package steals Chrome passwords on Windows via recovery tool - Bleeping Computer
PrintNightmare: How To Check If Your Systems Are Still Vulnerable - Security Boulevard
Security and Culture are Key to Digital Transformation - Security Boulevard
Several New Critical Flaws Affect CODESYS Industrial Automation Software - The Hacker News
TikTok, Snapchat account hijacker arrested for role in Twitter hack - Bleeping Computer
US House terminates deal with iConstituent after company waited days to raise ransomware alarm - ZDNet
XLoader, a $49 spyware that could target both Windows and macOS devices - Security Affairs
XLoader malware steals logins from macOS and Windows systems - Bleeping Computer
XLoader Windows InfoStealer Malware Now Upgraded to Attack macOS Systems - The Hacker News
What is a security champion and do you need one? - Security Boulevard
20/07
16-year-old bug in printer software gives hackers admin rights - Bleeping Computer
Beware the crypto scammers: Fraudsters fleece British couple of £15,000 in NINE minutes through phishing scam - This is Money
Bug hunters asked to probe Microsoft Teams mobile apps, can earn up to $30k - Help Net Security
Calling out China for cyberattacks is risky — but a lawless digital world is even riskier - Outlook India
Combating deepfakes: How we can future-proof our biometric identities - Help Net Security
Data breach over Pegasus snooping reported months ago - Mathrubhumi
Deepfakes: The Next Big Threat - Security Boulevard
FBI: Threat actors may be targeting the 2020 Tokyo Summer Olympics - Bleeping Computer
Fortinet fixes bug letting unauthenticated hackers run code as root - Bleeping Computer
Geneva, Ohio discloses ransomware attack - Data Breaches Net
Hacker behind LinkedIn scraping did it "for fun" - Computing
How do I select a data recovery solution for my business? - Help Net Security
IoT malware attacks rose 700% during the pandemic - Help Net Security
Is differential privacy the ideal privacy-enhancing computation technique for your business? - Help Net Security
Most financial services mobile apps still rely on passwords, even with added friction - Help Net Security
New MosaicLoader malware targets software pirates via online ads - Bleeping Computer
New Survey Reveals Extensive Devastation in the Aftermath of Ransomware Attacks - CISION PR Newswire
Over 68K Advocate Aurora Patients Impacted by Elekta Health Data Breach - Health IT Security
Ransomware incident at major cloud provider disrupts real estate, title industry - Data Breaches Net
Ransomware: International cooperation is needed to curb these cybersecurity threats, says expert - TechRepublic
Researchers flag 7-years-old privilege escalation flaw in Linux kernel (CVE-2021-33909) - Help Net Security
Rising Threats Target Cloud Providers, Virtual Infrastructure - Security Boulevard
Saudi Aramco Loses 1TB of Data Following Data Breach - Softpedia News
This New Malware Hides Itself Among Windows Defender Exclusions to Evade Detection - The Hacker News
Transgender charity Mermaids fined £25k for data protection breach - Digital Health
US legal eagles representing Apple, IBM, and more take 5 months to inform clients of ransomware data breach - The Register
What is phishing? - Tech Central
Zero-Trust is an Adjective Without a Noun - Security Boulevard
19/07
Application security tools ineffective against new and growing threats - Help Net Security
CTIR Gov coordenará Rede Federal de Gestão de Incidentes - CISO Advisor
Experts disclose critical flaws in Advantech router monitoring tool - Security Affairs
Experts show how to bypass Windows Hello feature to login on Windows 10 PCs - Security Affairs
Five Critical Password Security Rules Your Employees Are Ignoring - The Hacker News
Half of organizations are ineffective at countering phishing and ransomware threats - Help Net Security
How to balance employee IT security policies - Help Net Security
iPhones running latest iOS hacked to deploy NSO Group spyware - Bleeping Computer
iPhone WiFi bug morphs into zero-click hacking, but there's a fix - Bleeping Computer
Kaseya Breach: Key Takeaways for Managed Service Providers - Security Boulevard
New Leak Reveals Abuse of Pegasus Spyware to Target Journalists Globally - The Hacker News
Pegasus Project – how governments use Pegasus spyware against journalists - Security Affairs
Protect your smartphone from radio-based attacks - Help Net Security
Protecting Phones From Pegasus-Like Spyware Attacks - Threatpost
Researchers Warn of Linux Cryptojacking Attackers Operating from Romania - The Hacker News
Security for Startups in a DevOps World: Infrastructure, IAM, and Remote Environments - Security Boulevard
The Second Wave of a Ransomware Pandemic - Security Boulevard
There are new unpatched bugs in Windows Print Spooler - Help Net Security
Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco - Security Affairs
Top 5 NCSC Cloud Security Principles for Compliance - Security Boulevard
Turns Out That Low-Risk iOS Wi-Fi Naming Bug Can Hack iPhones Remotely - The Hacker News
US and Global Allies Accuse China of Massive Microsoft Exchange Attack - The Hacker News
Vaccinate your data: Addressing and adapting to new data risks - Help Net Security
WiFiDemon – Recently discovered iPhone Wi-Fi bug could also allow RCE - Security Affairs
White House Accuses China of Microsoft Exchange Attack - Security Boulevard
18/07
94% of organizations suffer insider data breaches - The Manila Times
Chinese government issues new vulnerability disclosure regulations - Security Affairs
Comparis customers targeted by scammers after ransomware attack - Bleeping Computer
HelloKitty ransomware gang targets vulnerable SonicWall devices - Security Affairs
Instagram implements ‘Security Checkup’ to help users recover compromised accounts - Security Affairs
New Windows print spooler zero day exploitable via remote print servers - Bleeping Computer
Ransomware hits law firm counseling Fortune 500, Global 500 companies - Bleeping Computer
Staff, patients concerned about data breach at university hospital - Jamaica Gleaner
Windows 11 features, expected release date, and latest news - Bleeping Computer
Comments