NEWS: Junho (13/05 - 19/06) - 24 Semana de 2021

19/06

BBB Scam Alert: Watch out for online shopping scams on Prime Day - Florida Trend

‘First American’ to Pay a Fine of Only $500,000 for the Massive 2019 Data Breach - TechNadu

How to turn on Windows 10 Ransomware protection - Digital Trends

Ireland: Cyber attack still causing big delays - Independent IE

Russia’s Internet Watchdog Bans VyprVPN and Opera VPN for Failure to Comply With Regulation - TechNadu

State Bank of India (SBI) Warns Customers Against Phishing Links Offering Freebies - Good Returns

UP Police summons Twitter over Ghaziabad assault video - TDH

UVM Health Network still figuring cost of ransomware attack - Adirondack Daily Enterprise

‘Wegmans’ Warns Customers of a Data Breach due to Cloud Storage Misconfiguration - TechNadu

18/06

73% of enterprises suffer security and compliance issues due to internal misalignment - Help Net Security

A deep dive into the operations of the LockBit ransomware group - ZDNet

Actors Pretending to Be ‘DarkSide’ Target Large Food and Energy Companies - TechNadu

Akamai outage was caused by an issue with its Prolexic DDoS protection service - Security Affairs

Can on-prem security experts make the move to the cloud? - Help Net Security

Carnival Confirms Another Breach Impacting Staff and Passengers - InfoSecurity

Cloud security posture confidence is high, yet most IT pros have experienced a cloud-related breach - Help Net Security

Colorado Passes New Privacy Act - InfoSecurity

Cruise operator Carnival discloses a security breach - Security Affairs

Cyber espionage by Chinese hackers in neighbouring nations is on the rise - The Hacker News

Expert found multiple flaws in Cisco Small Business 220 series - Security Affairs

Fake DarkSide gang targets energy, food industry in extortion emails - Bleeping Computer

HBO Max blames mistaken "Integration Test" email on an intern - Bleeping Computer

‘Jetflicks’ Pirate Site Programmer Sentenced to 1 Year in Prison - TechNadu

Malicious COVID-19 online content bypassing moderation efforts of social media platforms - Help Net Security

Microsoft Linux repos suffer day-long outage, still recovering - Bleeping Computer

New Jersey Councilor Charged with Cyber-harassment - InfoSecurity

North Korea Exploited VPN Flaw to Hack South's Nuclear Research Institute - The Hacker News

Órgão que criou criptografia usada na segurança de redes 2G confirma fragilidade intencional que facilitava espionagem - G1

Poland blames Russia for breach, theft of Polish officials' emails - Bleeping Computer

Programming languages: Rust in the Linux kernel just got a big boost from Google - ZDNet

Software delivery maturity generating business benefits - Help Net Security

Strange Anti-Piracy Malware Blocks Access to ‘The Pirate Bay’ and Stops Copyright Infringers - TechNadu

Study Shows 88% of All Health Tracking Apps Are Perilous for Your Privacy - TechNadu

Texan Admits Data Center Bomb Plot - InfoSecurity

The challenges of technical debt and how it impacts organizations - Help Net Security

The return of TA402 Molerats APT after a short pause - Security Affairs

Three UK telco bug has customers receiving and making random calls - Bleeping Computer

UNC2465 cybercrime group launched a supply chain attack on CCTV vendor - Cyber Defense Magazine

US supermarket chain Wegmans discloses data breach - Security Affairs

US supermarket chain Wegmans notifies customers of data breach - Bleeping Computer

Vereador de SP tem celular furtado no trânsito, e bandidos limpam dinheiro de contas bancárias - G1

Vigilante malware stops victims from visiting piracy websites - Security Affairs

Why improving diversity in cybersecurity is vital for everyone - ZDNet

Windows 10 KB5003690 fixes issues affecting gamers since March - Bleeping Computer

17/06

14 COVIDSafe enquiries to OAIC, but still no complaints or breaches - ZDNet

A Billion CVS Records Exposed - InfoSecurity

A New Spyware is Targeting Telegram and Psiphon VPN Users in Iran - The Hacker News

Akamai apologises after outage left Australia's major banks and airline systems offline - ZDNet

Are your cryptographic keys truly safe? Root of Trust redefined for the cloud era - Help Net Security

Audi, Volkswagen customer data being sold on a hacking forum - Bleeping Computer

Australia Suffers Widespread Internet Outage - InfoSecurity

Biden and Putin spar over cybersecurity, ransomware at Geneva summit - ZDNet

Carnival Cruise hit by data breach, warns of data misuse risk - Bleeping Computer

China-backed hackers RedFoxtrot targeted defence research, telecom in India, US firm finds - The Print

Clonagem de cartão: o que fazer para minimizar o prejuízo? - G1

Eggfree Cake Box suffer data breach exposing credit card numbers - Bleeping Computer

Facebook pays an Indian hacker Rs 22 lakh for exposing an Instagram flaw- TDH

Flexible work is the new operating model - Help Net Security

Google fixes seventh Chrome zero-day exploited in the wild this year - Bleeping Computer

Hackers Can Spy on Peloton Workouts - InfoSecurity

Microsoft Defender for Endpoint now detects jailbroken iOS devices - Help Net Security

Molerats Hackers Return With New Attacks Targeting Middle Eastern Governments - The Hacker News

Open-source security: Google has a new plan to stop software supply chain attacks - ZDNet

Organizations ill-equipped to deal with growing BYOD security threats - Help Net Security

Preventing security issues from destroying the promise of IoT - Help Net Security

Puzzling New Malware Blocks Access to Piracy Sites - InfoSecurity

Ransomware: Too many firms are still willing to pay up if attacked - ZDNet

Researchers Uncover 'Process Ghosting' — A New Malware Evasion Technique - The Hacker News

Strengthen Your Password Policy With GDPR Compliance - The Hacker News

Tim Cook claims sideloading apps would destroy security and privacy of iOS - ZDNet

Unprotected CVS database exposed sensitive customer searches - Help Net Security

What is the real cost of ransomware? - Help Net Security

What is the true meaning of SASE? - Help Net Security

16/06

A flaw in Peloton Bike+ could allow hackers to control it - Security Affairs

Alibaba é hackeado; 1 bilhão de dados de clientes foram roubados - Olhar Digital

Apple fixes actively exploited vulnerabilities affecting older iDevices - Help Net Security

Bad cybersecurity behaviors plaguing the remote workforce - Help Net Security

CISA Warns About Video Camera SDK Vulnerability Affecting Millions of Devices - TechNadu

Compliance-driven approach to cybersecurity fuels security theatre - Express Computer

Corporate attack surfaces growing concurrently with a dispersed workforce - Help Net Security

Critical ThroughTek Flaw Opens Millions of Connected Cameras to Eavesdropping - The Hacker News

Cyber Risk Management: Does cyber risk get enough boardroom airtime? - CISO Mag

Cyberium malware-hosting domain employed in multiple Mirai variants campaigns - Security Affairs

Effects of the pandemic on consumer security behaviors - Help Net Security

Facebook awards $30,000 bounty for exploit exposing private Instagram content - ZDNet

How to secure data one firewall at a time - Help Net Security

‘Humber River Hospital’ Shuts Down Essential Services Due to Ransomware Attack - TechNadu

Identity management is now mostly about security - Help Net Security

Indian Military Personnel Targeted by ‘PJobRAT’ Spyware Mimicking Dating Apps - TechNadu

Malware Attack on South Korean Entities Was Work of Andariel Group - The Hacker News

McAfee discovers vulnerability in Peloton Bike+ - ZDNet

Microsoft adds to its Android and iOS security tools - ZDNet

Microsoft will release future PowerShell updates via Windows Update - Bleeping Computer

Nasty Linux systemd root level security bug revealed and patched - ZDNet

Open source UChecker tool detects vulnerable libraries on Linux servers - Help Net Security

Over a billion records belonging to CVS Health exposed online - ZDNet

Peloton Bike+ Plagued by Bootloader Vulnerability Giving Actors Root Access - TechNadu

Peloton Bike+ vulnerability allowed complete takeover of devices - Bleeping Computer

Ransomware Attackers Partnering With Cybercrime Groups to Hack High-Profile Targets - The Hacker News

Raspagem de dados em redes sociais: entenda técnica e por que hackers utilizam - G1

Researchers Claim to Have Developed the Most Secure Computing Environment in History - TechNadu

Ukraine arrests Clop ransomware gang members, seizes servers - Bleeping Computer

Ukraine Police Arrest Cyber Criminals Behind Clop Ransomware Attacks - The Hacker News

Understanding the cloud shared responsibility model - Help Net Security

Unsecured servers and cloud services: How remote work has increased the attack surface that hackers can target - ZDNet

US convicts Russian national behind Kelihos botnet crypting service - Bleeping Computer

Why hybrid cloud architecture is becoming a norm in the enterprise world - Express Computer

15/06

Alibaba Victim of Huge Data Leak as China Tightens Security - Bloomberg

Apple fixes ninth zero-day bug exploited in the wild this year - Bleeping Computer

Chinese support behind the cyberattacks on SITA and Air India - TDH

Cloud computing costs skyrocketing as businesses support a remote workforce - Help Net Security

Cloud Security Priorities Shift in Wake of Pandemic - Security Boulevard

How do I select an ITSM solution for my business? - Help Net Security

INDIA: Govt claims email system ‘safe and secure,’ denies NIC data breach - TDH

Instagram‌ ‌Bug Allowed Anyone to View Private Accounts Without Following Them - The Hacker News

Microsoft 365 Defender Researchers Disrupted Large-Scale BEC Campaign - TechNadu

No Two REvil Attacks Are the Same, Experts Warn - InfoSecurity

Pandemic prompts digital ‘boom’ in account creation - as well as password fatigue - ZDNet

Rethinking Networking to Derail Ransomware - Security Boulevard

REvil ransomware gang hit US nuclear weapons contractor Sol Oriens - Security Affairs

Swedish Data Protection Authority Fines Medical Service €1.2 Million for a Data Leak - TechNadu

Third of Staff Use Security Workarounds at Home - InfoSecurity

To identify cybersecurity vendor sustainability, start with the fundamentals - Help Net Security

Top threats to consumer cyber safety - Help Net Security

Vaccine passports challenged by data privacy and security implications - Help Net Security

VPN attacks up nearly 2000% as companies embrace a hybrid workplace - Help Net Security

Wear your MASQ! New Device Fingerprint Spoofing Tool Available in Dark Web - Security Affairs

14/06

54% of Senior Executives Struggling to Keep up with Threat Landscape - InfoSecurity

Apple fixed 2 WebKit flaws exploited to target older iPhones - Security Affairs

Are your cyber defenses stuck in the sandbox? - Help Net Security

Business leaders now feel more vulnerable to cyber attacks - Help Net Security

Codecov to retire the Bash script responsible for supply chain attack wave - ZDNet

Cyber resilience company Immersive Labs announces $75 million Series C round - ZDNet

Cybersecurity Executive Order 2021: What It Means for Cloud and SaaS Security - The Hacker News

Data teams are discovering the benefits of automation and flexible coding - Help Net Security

Dentist charged by SEC for digital token project fraud, pump-and-dump AI stock scheme - ZDNet

Fujifilm resumes normal operations after ransomware attack - Bleeping Computer

G7 leaders ask Russia to hunt down ransomware gangs within its borders - Bleeping Computer

Global Police Close Record Number of Fake Pharma Sites - InfoSecurity

Google Workspace Now Offers Client-side Encryption For Drive and Docs - The Hacker News

Hacker Broke Into French ISP ‘Free’ and Is Now Selling Database Access - TechNadu

How a conference room speakerphone might let attackers into your company network - Help Net Security

Investing in the right future for the cloud - Help Net Security

Major blackouts across Puerto Rico. Are the DDoS and the fire linked? - Security Affairs

Microsoft: Scammers bypass Office 365 MFA in BEC attacks - Bleeping Computer

Microsoft: SEO poisoning used to backdoor targets with malware - Bleeping Computer

NoxPlayer Supply-Chain Attack is Likely the Work of Gelsemium Hackers - The Hacker News

Phishing maintained near-record levels in the first quarter of 2021 - Help Net Security

Ransomware attackers are leveraging old SonicWall SRA flaw (CVE-2019-7481) - Help Net Security

Ransomware: Russia told to tackle cyber criminals operating from within its borders - ZDNet

REvil Claims Responsibility for Invenergy Hack - InfoSecurity

REvil ransomware hits US nuclear weapons contractor - Bleeping Computer

SEO poisoning campaign aims at delivering RAT, Microsoft warns - Security Affairs

The U.S. and Russia Could Negotiate a Cybercriminals Exchange Deal - TechNadu

Twitter suspende contas em verificação contra robôs e usuários relatam perda de seguidores - G1

Volkswagen, Audi disclose data breach impacting over 3.3 million customers, interested buyers - ZDNet

VW Vendor Leaves Data Unsecured - InfoSecurity

13/06

As 8 billion passwords leak online here are three things you must do right now - Express

Banking customers in South Africa warned to be on alert for these scams - Business Tech

CoWIN Platform Not Hacked, Here’s the Truth - DataQuest India

Google Chrome issues warning to 2 billion users - ITP Net

How healthcare can safeguard itself against cyberthreats - Healthcare Global

Govt Officials Data Exposed To Hackers, Alert Sent - The Logical Indian

McDonald’s are the latest company hit by data breach - Business Matters

Millions of Gmail, Facebook and Amazon Logins STOLEN – Find Out If You’re Affected - Gaming Ideology

Ransomware Attacks Don’t Only Happen To Other Organizations… - Forbes

Singapore: 2 firms fined S$43,000 in total over personal data breaches affecting Ministry of Defence (Mindef), Singapore Armed Forces (SAF) personnel - Today Online

SolarWinds hack emboldened cyberattackers for ransomware attack spree - Washington Examiner

'Totally Safe And Secure': Centre Dismisses Reports of Cyber Breach into NIC Email System - News 18

UK Plans for Enhanced Cybersecurity Role - Gov Info Security

Volkswagen Partner Data Breach: Audi Supply Chain Cyberattack Details - MSSP Alert

NEWS: Junho (06/05 - 12/06) - 23 Semana de 2021