NEWS: Setembro (12/09 - 18/09) - 37 Semana de 2021
Cyber Security and Information Security News - Daily Updates !!!
18/09
17/09
Admin of DDoS service behind 200,000 attacks faces 35yrs in prison - Bleeping Computer
Bad Apples: How CNA Attacks Put Everyone At Risk - Security Boulevard
CISA: Patch Zoho Bug Being Exploited by APT Groups - InfoSecurity Magazine
Class Action Filed After Hospital Ransomware Attack - Legal Reader
Council secrets for sale on dark web, says Darlington IT firm - The Northern Echo
Data and AI professionals prioritize learning new skills amid labor shortage - Help Net Security
Experts Concerned Over New Digital Secretary's Lack of Cyber Knowledge - InfoSecurity Magazine
Five pharma cybersecurity breaches to know and learn from - Pharmaceutical Technology
Free REvil Decryptor Launched - InfoSecurity Magazine
How insurers can approach cybersecurity risk - Digital Insurance
How to fix printers asking for admins creds after PrintNightmare patch - Bleeping Computer
Key Differences Between PHI and PII, How They Impact HIPAA Compliance - Health IT Security
Modern security strategies key to support remote workforce demands - Help Net Security
Microsoft asks Azure Linux admins to manually patch OMIGOD bugs - Bleeping Computer
No business is too small to be a target of cyberattacks - New Haven Register
Open source cyberattacks increasing by 650%, popular projects more vulnerable - Help Net Security
Ransomware Attack Encrypts South Africa’s Department of Justice, System Still Being Restored - Gadgets 360
Romance Scammers Make $133m in First Half of 2021 - InfoSecurity Magazine
The digital identity imperative - Help Net Security
US govt sites showing porn, viagra ads share a common software vendor - Bleeping Computer
16/09
7 tips for building a strong security culture - Tech Target
15% of the Nasdaq 100 Is Highly Susceptible to a Ransomware Attack, New Black Kite Research Finds - Dark Reading
61M Fitbit, Apple Users Had Data Exposed in Wearable Device Data Breach - Health IT Security
87% of Indian cos victims of security breach last year: Report - The Siasat Daily
Attacks reach record highs in 2021 - IT Online
Bitdefender offers free decryptor for REvil ransomware victims - Tech Republic
Bot attack volumes growing 41% year over year, human-initiated attacks down 29% - Help Net Security
Dutch education administrators underestimate threat of cyber crime - Computer Weekly
Household Names Hit with £500K Fine for Spamming Consumers - InfiSecurity Magazine
Microsoft announces passwordless authentication option for consumers - Help Net Security
Phishing thru your QR or Qrishing: that is how this rip-off works that the Police in Spain warn about - News Trace
Ransomware-as-a-service pandemic must be interrupted, says Cambridge cybersecurity specialist Darktrace - Cambridge Independent
T-Mobile US presses to consolidate class action suits - Mobile World Live
The 8 Most Notorious Malware Attacks of All Time - Make Use Of
There Is No Evidence Russia-based Ransomware Is Slowing Down - My Tech Decisions
United Nations Data Breach: Hackers Obtained Employee Login From Dark Web, Are Executing Ongoing Attacks on UN Agencies - CPO Magazine
15/09
3 Former U.S. Intelligence Officers Admit to Hacking for UAE Company - The Hacker News
46% of all on-prem databases are vulnerable to attack, breaches expected to grow - Help Net Security
Execs concerned about software supply chain security, but not taking action - Help Net Security
Google Chromebook bug causes black screens after login - Bleeping Computer
Microsoft fixes remaining Windows PrintNightmare vulnerabilities - Bleeping Computer
Microsoft fixes Windows CVE-2021-40444 MSHTML zero-day bug - Bleeping Computer
Millions of HP OMEN gaming PCs impacted by driver vulnerability - Bleeping Computer
Most Fortune 500 companies’ external IT infrastructure considered at risk - Help Net Security
New Zloader attacks disable Windows Defender to evade detection - Bleeping Computer
Ransomware preparedness is low despite executives’ concerns - Help Net Security
Three formers NSA employees fined for providing hacker-for-hire services to UAE firm - Security Affairs
US CISA appointed Kiersten Todt as new chief of staff - Security Affairs
U.S. Operatives Responsible for “KARMA” Deployment in the U.A.E. Offered Costly Resolution - TechNadu
14/09
Apple fixes iOS zero-day used to deploy NSO iPhone spyware - Bleeping Computer
Apple fixes “zero-click” iMessage zero-day exploited to deliver spyware (CVE-2021-30860) - Help Net Security
Google addresses a new Chrome zero-day flaw actively exploited in the wild - Security Affairs
Google patches 10th Chrome zero-day exploited in the wild this year - Bleeping Computer
Healthcare cybersecurity: How to prevent the compromise of patient records? - Help Net Security
How to evaluate the security risk of your databases - Help Net Security
IT teams forced into compromising security for business continuity during pandemic - Help Net Security
Kali Linux 2021.3 released: Kali NetHunter on a smartwatch, wider OpenSSL compatibility, new tools, and more! - Help Net Security
Mēris Bot infects MikroTik routers compromised in 2018 - Security Affairs
Millions of HP OMEN gaming PCs impacted by CVE-2021-3437 driver flaw - Security Affairs
Networking issues enterprises must address to improve business and operational efficiency - Help Net Security
OSI Layer 1: The soft underbelly of cybersecurity - Help Net Security
REvil: Ransomware gang active again in a new line-up - Market Research Telecast
Three ways to keep your organization safe from cyberattacks - Help Net Security
Whitepaper: Cobalt Strike – a toolkit for pentesters - Help Net Security
13/09
A Third of Industrial Control Systems Attacked in H1 2021 - InfoSecurity Magazine
Apple releases update fixing NSO spyware vulnerability affecting Macs, iPhones, iPads and Watches - ZDNet
Beware of these 5 common scams you can encounter on Instagram - We Live Security (eset)
BlackMatter ransomware gang hit Technology giant Olympus - Security Affairs
BlackMatter ransomware hits medical technology giant Olympus - Bleeping Computer
Camera giant Olympus hit by ransomware attack - TechRadar Pro
Class action targets Georgia health system over ransomware attack that exposed 1.4 million patients' info - Becker's Health IT
Costly DNS Attacks on the Rise - Security Boulevard
Department of Justice and Constitutional Development of South Africa hit by a ransomware attack - Security Affairs
Elevated Cyber-risk as Companies Choose Speed Over Security - InfoSecurity Magazine
Enterprise automation adoption surging, security and compliance area jump by 171% - Help Net Security
FTC warns of extortionists targeting LGBTQ+ community on dating apps - Bleeping Computer
Hackers leak California hospital patients' data online after ransomware attack - Becker's Health IT
Hackers Leak Schoolkids’ Data—ID Theft of Minors Ensues - Security Boulevard
Hacker-made Linux Cobalt Strike beacon used in ongoing attacks - Bleeping Computer
IoT device attacks double in the first half of 2021, and remote work may shoulder some of the blame - TechRepublic
Mobile app creation: Why data privacy and compliance should be at the forefront - Help Net Security
Network security market growth driven by remote work popularity and security needs - Help Net Security
New SpookJS Attack Bypasses Google Chrome's Site Isolation Protection - The Hacker News
Only 30% of enterprises use cloud services with E2E encryption for external file sharing - Help Net Security
OWASP Working Group Releases Draft of Top 10 Web Application Risks for 2021 - Security Boulevard
Phishing attacks vs employees skyrocketed during the pandemic - Back End News
REvil is back - and wants to rebuild its reputation - TechRadar Pro
Singapore moots 'foreign interference' law with powers to issue online platforms take-down order - ZDNet
The new maxtrilha trojan is being disseminated and targeting several banks - Security Affairs
The Rise of Developer-First Security Tooling - Security Boulevard
The Three Pillars of Unified Risk Management for Product Security - InfoSecurity Magazine
The top cyber security risks of 2022 - Charity Digital
Third-party cloud providers: Expanding the attack surface - Help Net Security
Top 5 Enterprise Security Threats and How To Avoid Them - CPO Magazine
UAE: Moorfields Eye Hospital in Dubai sees more staff and patient data dumped - Data Breaches Net
UK Man Gets Five Years for Online Abuse Campaign - InfoSecurity Magazine
WhatsApp to Roll Out Encrypted Backups - InfoSecurity Magazine
12/09
Crypto Miners in Africa at Risk from Cyber Criminals with East Africa the Largest Target Market in 2021 - BitcoinKE
Cyber in the boardroom - Professional Security Magazine Online
Google implements new Private Compute Services for Android - Security Affairs
How to Avoid Paying Ransoms - SDXCentral
How to shut down a phishing operation in 48 hours - TechRadar Pro
How to Talk to Stakeholders About Cybersecurity - Security Boulevard
New cybersecurity report from HP reveals 91% of IT teams feel pressure to compromise security - Zawya
‘Please Provide Your Credit Card and Code’: New Israeli Facebook Scam Is a Lesson in Online Fraud - Haaretz
Pysa Ransomware Gang Targets Linux - Bank Info Security
Qatar: Communications Regulatory Authority (CRA) raises awareness against online fraud, hacking - The Peninsula
Revil ransomware operators are targeting new victims - Security Affairs
SME breach response - Professional Security Magazine Online
State of Cybersecurity: We Can Do More to Protect Our Supply Chain and Critical Infrastructure - Homeland Security
Windows MSHTML zero-day exploits shared on hacking forums - Bleeping Computer
Commentaires