NEWS: Junho (06/05 - 12/06) - 23 Semana de 2021

12/06

Afni Shuts Down Its Network After ‘Suspicious Activities’ Detected - WGLT

Audi, Volkswagen data breach affects 3.3 million customers - Bleeping Computer

Avaddon ransomware group closes shop, sends all 2,934 decryption keys to BleepingComputer - ZDNet

Claims of CoWIN system hacking, data breach 'baseless': Health Ministry - Mint

Hawaiian Electric was attacked daily by hackers while the White House warned about ransomware - Illinois News Today

Here’s How The IRS Could Have Prevented The Tax Data Leak - Forbes

Intuit notifies customers of hacked TurboTax accounts - Bleeping Computer

McDonald’s Suffers Customer Exposing Data Breach in Taiwan and South Korea - TechNadu

Steamship Authority Website Running Again After Ransomware Attack Last Week - CBS Boston

Volkswagen and Audi Report Data Leak Affecting 3.3 Million Customers - TechNadu

11/06

7-Year-Old Polkit Flaw Lets Unprivileged Linux Users Gain Root Access - The Hacker News

Avaddon Ransomware Adds ‘Valley National Bank’ to Its Victims List - TechNadu

Avaddon ransomware shuts down and releases decryption keys - Bleeping Computer

Baby Clothes Giant Carter’s Leaks 410K Customer Records - ThreatPost

Billions Of Passwords Leaked In The Largest Data Breach - TechJuice

California County Focuses on Recovery After Ransomware Attack - Illinois News

CD Projekt Red says internal data from ransomware breach is being spread online - Engadget

COO Charged in Georgia Hospital Cyber-attack - InfoSecurity

Cyber standards are key in battling ransomware attacks - CNBC

Cyberpunk 2077 Hacked Data Circulating Online - ThreatPost

DDoS attacks increase 341% amid pandemic - Help Net Security

DOJ charges cybersecurity official for attack on Georgia hospital - ZDNet

EA Smacked By A Data Breach - CIO East Africa

‘Electronic Arts’ Hit by Massive Data Breach Involving User Records and Source Code - TechNadu

Fallout of EA source code breach could be severe, cybersecurity experts say - TechRepublic

Fighting hospital ransomware hackers takes a public-private village, Scripps CEO says - Becker's Health IT

Gaming Giant EA Suffers Major Data Breach - InfoSecurity

Hackers Can Exploit Samsung Pre-Installed Apps to Spy On Users - The Hacker News

Hackers Steal FIFA 21 Source Code, Tools in EA Breach - ThreatPost

High Court hears major Irish firm paid out over ransomware attack - Irish Examiner

Lax security around URL shortener exposed PII of US retailer Carter’s customer base - ZDNet

Lessons from the dark side: preventing ransomware attacks - TechRadar Pro

Major Irish company paid ransomware demand after data hacked - Independent IE

McDonald's discloses data breach after theft of customer, employee info - Bleeping Computer

McDonald's Discloses Data Breach, Report Says - The Motley Fool

McDonald's suffers cyberattack in US, South Korea and Taiwan - TechRepublic

Network security firm COO charged with medical center cyberattack - Bleeping Computer

New Cyber Espionage Group Targeting Ministries of Foreign Affairs - The Hacker News

Phishing Attack on Five Rivers Health Impacts Data of 156K Patients - Health IT Security

Phishing attack on Ohio medical center exposes 155,000+ patients' PHI - Becker's Health IT

Ransomware Attack Costs Baltimore Public Schools $7.7 Million - The Crime Report

Ransomware attack impacts Lancaster ISD operations - Fox4 News

Ransomware Attacks on Scripps Health, Universal, and Utah Pathology Services Show Hospitals and Health Systems Are Increasingly in the Crosshairs - Dark Daily

Researchers Warn DDoS Actor “Fancy Lazarus” Is Back in Action - TechNadu

The hacker group that went after one of Apple’s suppliers found a new victim - CNBC

UK and US Strike New Agreements on Cybersecurity - InfoSecurity

Vendor’s data breach affects patient information at MetroHealth, Neighborhood Family Practice - Cleveland

Video Game Firm Electronic Arts Reports Data Breach - Insurance Journal

VW says data breach at vendor impacted 3.3 million people in North America - Reuters

10/06

54% of all employees reuse passwords across multiple work accounts - Help Net Security

A Group of Music Labels Is Suing ‘Frontier’ for Not Terminating Repeat Copyright Infringers - TechNadu

ACSC scanning is allowing Commonwealth entities to avoid being hacked - ZDNet

Amazon data usage to feature in new UK antitrust probe: report - ZDNet

Australia to open digital ID system to private sector with consultation on new legislation - ZDNet

Data security still a major concern for most consumers - Help Net Security

Emerging Ransomware Targets Dozens of Businesses Worldwide - The Hacker News

European cloud computing market to surpass $140 billion by 2028 - Help Net Security

JBS paid $11 million to REvil ransomware, $22.5M first demanded - Bleeping Computer

Minecraft Modpacks Carrying Malware Returned to the Play Store Under New Names - TechNadu

Mitigating third-party risks with effective cyber risk management - Help Net Security

Quantum communications reaching record distances - Help Net Security

Ransomware: Meat firm JBS says it paid out $11m after attack - ZDNet

Researchers Say ‘Prometheus’ Is Not Related to ‘REvil’ in Any Apparent Way - TechNadu

The 6 steps to implementing zero trust - Help Net Security

Using Breached Password Detection Services to Prevent Cyberattack - The Hacker News

09/06

Apple pays millions of dollars to student after repair staff leak her explicit photos online - ZDNet

Australian government looks to make Essential Eight essential - ZDNet

Biometrics Could Hold the Key to Vaccine Passports - Security Boulevard

Crypto-Mining Attacks Targeting Kubernetes Clusters via Kubeflow Instances - The Hacker News

Crypto-mining campaign targets Kubeflow installs on a large scale - Security Affairs

Data privacy management software market to grow steadily - Help Net Security

DNS Attacks Surge by 15% in APAC; India Among Worst Hit Nations - CISO Mag

Enhancing cyber resilience: What your team needs to know - Help Net Security

Explained: Why top US websites went offline for an hour - The Times Of India

For CISOs and artificial intelligence to evolve, trust is a must - Help Net Security

GitHub now scans for accidentally-exposed PyPI, RubyGems secrets - Bleeping Computer

Google fixes sixth Chrome zero-day exploited in the wild this year - Bleeping Computer

Hackers hit Spain’s Ministry of Labor and Social Economy - Security Affairs

Health highlights challenges with genomic information under current Privacy Act - ZDNet

How can companies prioritize contact center security? - Help Net Security

Huawei reveals 'cybersecurity framework' with launch of China transparency centre - ZDNet

IT Service Desk Security a Weak Point for Organizations - Security Boulevard

Microsoft June 2021 Patch Tuesday addresses 6 zero-days actively exploited - Security Affairs

Most mobile finance apps vulnerable to data breaches - Help Net Security

New TLS Attack Lets Attackers Launch Cross-Protocol Attacks Against Secure Sites - The Hacker News

Not sorry: Pipeline CEO defends ransomware payout to avoid ‘pandemonium’ - WA Today

Open Source: The Positives, the Risks and the Future - Security Boulevard

Organizations leveraging Microsoft Teams exposed to potential risk - Help Net Security

Payment redirection scams cost Australian businesses $128 million in 2020 - Mirage News

Pipeline Executive Felt Cornered by Ransomware Attack - Big News Network

Police Access Encrypted Devices in Major Global Crime Bust - InfoSecurity

PuzzleMaker attacks exploit Windows zero-day, Chrome vulnerabilities - ZDNet

RSA Security spins out its Fraud & Risk Intelligence business into standalone company called Outseer - ZDNet

Social Media Regulation: The Line Between Privacy and Protection - Security Boulevard

This Month’s Patch Tuesday Brings Fixes for 11 Actively Exploited Vulnerabilities - TechNadu

This new ransomware group claims to have breached over 30 organisations so far - ZDNet

USA: Most of the ransom paid to hackers has been recovered - Randrlife

What Are GDPR's Hidden Benefits Three Years On? - InfoSecurity

08/06

A deep dive into Nefilim, a ransomware group with an eye for $1bn+ revenue companies - ZDNet

A Look into Chuck Brooks’s Alarming Cybersecurity Stats - Security Boulevard

AFP used controversial encryption laws in its 'most significant operation in policing history' - ZDNet

Amazon Sidewalk to Activate Today so Here’s How to Opt-Out - TechNadu

‘An0m’ Encrypted-Chat Sting Leads to Arrest of 800 - ThreatPost

Apple privacy protections in iOS 15, iPadOS 15, macOS Monterey, and watchOS 8 - Help Net Security

Application security approaches broken by rising adoption of cloud-native architectures - Help Net Security

Best Practices for Ransomware Defense - Security Boulevard

Biden’s plan for strengthening US cybersecurity is too soft - Help Net Security

Billions of Compromised Records and Counting: Why the Application Layer is Still the Front Door for Data Breaches - ThreatPost

BloodHound versus Ransomware: A Defender’s Guide - SpecterOps

Choosing the Right AI Components in Your Security Tools - Security Boulevard

Code Dx brings game-changing capabilities to Synopsys - Security Boulevard

Cyber-attack on NYC Law Department - InfoSecurity

Defending the COVID-19 vaccine rollout with best practices from the cybersecurity industry - Help Net Security

DoJ seized $2.3 million paid to the Colonial Pipeline ransomware extortionists - Help Net Security

Entenda como o bloqueio de tela e a autenticação em duas etapas atuam juntos contra a espionagem de dados - G1

Evil Corp Rebrands Ransomware to Escape Sanctions - InfoSecurity

FBI planta celulares 'criptografados' em quadrilhas e mais de 800 são presos em investigação mundial - G1

Feds Secretly Ran a Fake Encrypted Chat App and Busted Over 800 Criminals - The Hacker News

Guidance to help cyber threat intelligence analysts apply MITRE ATT&CK - Help Net Security

How the FBI and AFP accessed encrypted messages in TrojanShield investigation - ZDNet

Illinois County Stricken with Grief - InfoSecurity

Large Parts of Internet Offline Following Cloud Provider Issue - InfoSecurity

Massive International Law Enforcement Operation Follows the Revelation of the ‘An0m’ as an FBI App - TechNadu

Microsoft June 2021 Patch Tuesday: 50 vulnerabilities patched, six zero-days exploited in the wild - ZDNet

MoviePass Operators Settle Data Security Allegations - InfoSecurity

New UAF Vulnerability Affecting Microsoft Office to be Patched Today - The Hacker News

Palo Alto Networks Extends Scope of CSPM Platform - Security Boulevard

Ransomware hits iConstituent, a service lawmakers use to communicate with voters - CyberScoop

Reformulating the cyber skills gap - Help Net Security

‘Siloscape’ Is the First Known Malware to Target Windows Containers - TechNadu

Sites fora do ar no mundo: entenda o que causou a falha - G1

Spotify, PayPal, GitHub, and other major websites down due to Fastly CDN outage - Security Affairs

The U.S. DoJ Retrieved $2.3 Million of the ‘Colonial Pipeline’ Ransom Payment to ‘DarkSide’ - TechNadu

This is how fast a password leaked on the web will be tested out by hackers - ZDNet

Top 10 Privacy and Security Features Apple Announced at WWDC 2021 - The Hacker News

Trickbot indictment demonstrates how one hacking tool built on older malware - CyberScoop

Trojan Shield, the biggest ever police operation against encrypted communications - Security Affairs

Unauthorized access accounts for 43% of all breaches globally - Help Net Security

US authorities recovered most of the ransom paid by Colonial Pipeline - Security Affairs

US officials: Biden also contemplating military response to fight cyberattack - TDH

U.S. Recovers $2.3 Million Ransom Paid to Colonial Pipeline Hackers - The Hacker News

Windows 10 targeted by PuzzleMaker hackers using Chrome zero-days - Bleeping Computer

07/06

After DOJ arrest of Latvian Trickbot coder, experts highlight public-private efforts to tackle cybercrime - ZDNet

Apple’s Repair Technicians Leaked Customer’s Explicit Photos and Videos Online - TechNadu

Astra Security launches Publicly Verifiable Security Audit Certificates - Express Computer

Australians spent AU$26.5m in cryptocurrency to pay scammers in 2020 - ZDNet

Banks accelerating their risk management transformation - Help Net Security

Brazilian government organizes US visit to speed up 5G auction - ZDNet

California City Hid Cyber-attack - InfoSecurity

China reconsiders its position as the world’s largest bitcoin miner - TDH

CloudQuest Acquired by Deloitte - InfoSecurity

Google fined €220 million for abusing dominant role in online ads - Bleeping Computer

Hacker Group Gunning for Musk - InfoSecurity

Hands on with Norton antivirus Ethereum mining: The good and the bad - Bleeping Computer

How do I select a unified endpoint management solution for my business? - Help Net Security

IT service desks lacking user verification policy, putting businesses at risk - Help Net Security

Keeping pace with evolving code signing baseline requirements - Help Net Security

Latvian Woman Charged for Her Role in Creating Trickbot Banking Malware - The Hacker News

‘Majority’ of ransom paid by Colonial Pipeline seized and returned by DOJ - ZDNet

New Executive Order on Improving the Nation’s Cybersecurity - Security Boulevard

New Kubernetes malware backdoors clusters via Windows containers - Bleeping Computer

Patch now: Attackers are hunting for this critical VMware vCenter flaw - ZDNet

Police in Seoul Bust 521 People Who Bought or Sold Drugs on the Dark Web - TechNadu

‘Ragnar Locker’ Is Leaking Out Confidential Information Belonging to ADATA - TechNadu

RockYou2021: largest password compilation of all time leaked online with 8.4 billion entries - Security Affairs

Russian cybercrime forums launch contests for cryptocurrency hacks - Security Affairs

SaaS to PaaS: The Best Kind of Platform Shift - Security Boulevard

Siloscape, first known malware that drops a backdoor into Kubernetes clusters - Security Affairs

The cost of ransomware attacks worldwide will go beyond $265 billion in the next decade - ZDNet

The Cybersecurity Hero’s Journey is Ours - Security Boulevard

The evolution of cybersecurity within network architecture - Help Net Security

The role DNS plays in network security - Help Net Security

US Justice Department accuses Latvian national of deploying Trickbot malware - ZDNet

US recovers most of Colonial Pipeline's $4.4M ransomware payment - Bleeping Computer

US truck and military vehicle maker Navistar discloses data breach - Bleeping Computer

06/06

6m Battle for the Galaxy player data leaked via unprotected cloud server - Illinois News Live

Amazon to share your Internet with neighbors on Tuesday - How to opt out - Bleeping Computer

Android phones on alert as SMS scams see dodgy app installs - Pickr

Apache Pizza report data breach - Connacht Tribune

Apache Pizza warns customers it has suffered data breach - The Irish Times

Azusa officials hid 2018 cyber attack, used insurance to pay $65K ransom to hackers - San Gabriel Valley Tribune

Chinese SharpPanda APT developed a new backdoor in the last 3 years - Security Affairs

Domino's Data Breach: Centre Informs Delhi High Court About Removal Of Compromised Details - Republic World

EU Adopts New Privacy-Focused Data Sharing Tools - Data Breach Today

From Wiper to Ransomware: The Evolution of Agrius - Tahawultech

Google, Microsoft, and Mozilla work together on better browser extensions - Bleeping Computer

How to do 2FA right: Getting started with two-factor authentication - Laptop

How to Protect Your Files From Ransomware - Wired

Lawmakers say US ransomware payments should be disclosed - Stars Stripes

New Evil Corp ransomware mimics PayloadBin gang to evade US sanctions - Bleeping Computer

New York subway hacked for computer breach related to China - Illinois News Live

NSW Health confirms data breached due to Accellion vulnerability - ZDNet

NSW Police using artificial intelligence to analyse CCTV footage - ZDNet

PayPal intends to allow its users to transfer their cryptocurrency to third-party crypto wallets - TDH

Protect your business with cyber security insurance - The Intelligencer

REvil Ransomware spokesman releases an interview on recent attacks - Security Affairs

Ryuk ransomware hits biotechnology firm - Digital Journal

Senha para VPN da Colonial Pipeline estava na dark web - CISO Advisor

Signal app safety numbers do not always change — here's why - Bleeping Computer

TikTok seeks more user details related to their biometric information - TDH

Tokyo Games organizers latest to be hit by data breach, info leak - The Mainichi

Top Cybersecurity Breaches Happened in 2021 - Analytics Insight

Until 2023, Facebook suspended Trump’s accounts alleging a threat to public safety - TDH

U.S. crackdown on ransomwares perceived to affect crypto community as well - Micky

NEWS: Maio (30/05 - 05/06) - 22 Semana de 2021