NEWS: Março-Abril (28/03 - 03/04) - 13 Semana de 2021
03/04
Attackers are abusing GitHub infrastructure to mine cryptocurrency - Security Affairs
Automated attack abuses GitHub Actions to mine cryptocurrency - Bleeping Computer
Evolution and rise of the Avaddon Ransomware-as-a-Service - Security Affairs
02/04
5 key cybersecurity risks in 2021, and how to address them now - Help Net Security
Airlift Express Fixes Vulnerabilities in Its E-commerce Store - Security Affairs
Applications Are Everything and Everywhere – Does Whack-a-Mole Security Work? - Security Boulevard
Asteelflash electronics maker hit by REvil ransomware attack - Bleeping Computer
Brown University hit by cyberattack, some systems still offline - Bleeping Computer
Capital One notifies more clients of SSNs exposed in 2019 data breach - Bleeping Computer
Conti Ransomware gang demanded $40 million ransom to Broward County Public Schools - Security Affairs
Death, taxes, and hacks: How to prevent cyberattacks during tax season - Help Net Security
FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers - Security Affairs
FBI and CISA warn of state hackers attacking Fortinet FortiOS servers - Bleeping Computer
Leaky Apps Heighten Supply Chain Risk - Security Boulevard
MacKenzie Scott Grant scam more widespread than initially thought - Bleeping Computer
Mobile providers exposing sensitive data to leakage and theft - Help Net Security
Popular Twitch AdBlock shuts down after Twitch breaks extension - Bleeping Computer
Qualys says Accellion hackers did not breach production systems - Bleeping Computer
Ransomware gang wanted $40 million in Florida schools cyberattack - Bleeping Computer
Tens of thousands of QNAP SOHO NAS devices affected by unpatched RCEs - Security Affairs
TIM’s Red Team Research (RTR) team found 5 zero-day flaws in the CA eHealth Performance Manager product - Security Affairs
01/04
Albuquerque hospital releases details about data breach - The Business Journals
Booking.com fined $557K under GDPR for reporting data breach late - Compliance Week
Cybersecurity bill grabs unanimous approval in second House committee - Florida Politics
Cybereason vs. DarkSide Ransomware - Cybereason
Data Breach Allegations: RBI Orders Forensic Audit Of Mobikwik Systems - BW Business World
DeepDotWeb Admin Pleads Guilty to Money Laundering Charges - The Hacker News
Fight Online Crime with Grammar - Learning English
Hackers demanded $17 million worth of bitcoin as ransom from city of Saint John - Atlantic CTV News
Hackers Steal YU Students’ and Employees’ Personal Information in Accellion Security Breach - The Commentator
Investigation underway into Stanford personal data breach - The Mercury News
J&B Importers falls victim to a ransomware attack - Bicycle Retailer
Protecting employees from job offer scams can lead to awkward but important conversations - SC Magazine
Ragnarok Ransomware Hits Boggi Milano Menswear - ThreatPost
SolarWinds breach severity perception increasing over time - Help Net Security
SQA figures reveal intensifying threat of cyber-attack - Education Technology
Trillium Health Plan added to tally of healthcare organizations hit by Accellion data breach - Beckers Health IT
Ubiquiti confirms extortion attempt following security breach - Bleeping Computer
University of Maryland, Baltimore says private data published to internet following ransomware attack- Yahoo! News
US DOJ: Phishing attacks use vaccine surveys to steal personal info - Bleeping Computer
VMware patches critical vRealize Operations flaws that could lead to RCE - Help Net Security
Want to get around a CAPTCHA? That’ll be 0.00094c, please - Help Net Security
Why passwords are to blame for loss of revenue, identity attrition and poor customer experiences - Help Net Security
31/03
Arup data breach: Staff bank account numbers and addresses compromised in major data breach at global consultancy firm with office near Edinburgh - Edinburgh News
AFP Investigating “Worst Ever” Cyber Attack On Nine - Channel News
Board directors need to play an active role in protecting their org from cyber risks - Help Net Security
Chinese government-run facial recognition system hacked by tax fraudsters: report - South China Morning Post
Fake jQuery files infect WordPress sites with malware - Bleeping Computer
Inter-Parliamentary Alliance on China’s website suffers cyber attack - The Sydney Morning Herald
Most Global Chip Companies Show Signs of Compromise - InfoSecurity
Organizations suffer downtime despite following cybersecurity recommendations - Help Net Security
Three-Quarters of Legal Breaches Caused by Insiders - InfoSecurity
30/03
30 Docker images downloaded 20M times in cryptojacking attacks - Security Affairs
93% of consumers concerned about data security when filling out online forms - Help Net Security
Cloud security experts wanted: You can be one of them - Help Net Security
How much of the data created and replicated should be stored? - Help Net Security
How Sky Global was Indicted for Selling Security - Security Boulevard
Leaders need to find ways to increase internal audit capacity without increasing budgets - Help Net Security
Leading Indian fintech platform MobiKwik denies data breach - Bleeping Computer
Microsoft Exchange attacks increase while WannaCry gets a restart - Bleeping Computer
Scammers target universities in ongoing IRS phishing attacks - Bleeping Computer
US govt warns that buying fake COVID-19 vaccine cards is a crime - Bleeping Computer
VMware addresses SSRF flaw in vRealize Operations that allows stealing admin credentials - Security Affairs
VMware fixes bug allowing attackers to steal admin credentials - Bleeping Computer
29/03
Attackers tried to insert backdoor into PHP source code - Help Net Security
China-linked RedEcho APT took down part of its C2 domains - Security Affairs
Docker Hub images downloaded 20M times come with cryptominers - Bleeping Computer
Harris Federation hit by ransomware attack affecting 50 schools - Bleeping Computer
How do I select a bot protection solution for my business? - Help Net Security
How to Effectively Prevent Email Spoofing Attacks in 2021? - The Hacker News
London-based academies Harris Federation hit by ransomware attack - Security Affairs
Microsoft working to fix Windows 10 21H1 update install issue - Bleeping Computer
MobiKwik Suffers Major Breach — KYC Data of 3.5 Million Users Exposed - The Hacker News
Securing Vaccine Passport Applications - Security Boulevard
Stop using your employees as scapegoats: Change their behavior - Help Net Security
The importance of a zero trust-based approach to identity security - Help Net Security
Why certificate automation is no longer just “nice to have” - Help Net Security
Will AI Short Circuit Cybersecurity? - Security Boulevard
28/03
CompuCom MSP expects over $20M in losses after ransomware attack - Bleeping Computer
Critical netmask networking bug impacts thousands of applications - Bleeping Computer
Crypto ransomware is a threat the average American is concerned about, says cybersecurity expert - TokenPost
Cyber insurance giant CNA hit by ransomware attack - Graham Cluley
Data breach reported at Lexington-based senior care service - The Dispatch
Multiple cyber threats lurking compromised systems, says Microsoft - Business Standard
New data reveals 150,000% increase in Royal Mail and DPD scams in the past year - Lancashire Telegraph
Oil And Gas Giant Shell The Latest Victim Of The Accellion Hack - Wonderful Engineering
Ransomware admin is refunding victims their ransom payments - Bleeping Computer
Comments