News

10/22/2020

Iran Seeking to Intimidate U.S. Voters With Spoofed Emails, Intelligence Official Says

‘Dumb Mistake’ Exposed Iranian Hand Behind Fake Proud Boys U.S. Election Emails

Five Takeaways on Iran, Russia Election Interference

Russian State Hackers Stole Data From U.S. Government Networks

EU Sanctions Russian Hackers Over 2015 German Parliament Attack

Voter Websites In California And Florida Could Be Vulnerable To Hacks, Report Finds

Cybersecurity Company Finds Hacker Selling Info on 186 Million U.S. Voters

Researcher: I Hacked Trump’s Twitter by Guessing Password

Twitter Says ‘No Evidence’ Trump’s Account Was Hacked With Laughably Bad Password

Krebs: The Now-Defunct Firms Behind 8chan, QAnon
Dr Reddy’s: COVID Vaccine-Maker Suffers Cyber-Attack

Japanese Drug Firm Shionogi & Co. Hit by Cyberattack, Data Breach

French IT Giant Sopra Steria Hit by Ryuk Ransomware

Lewd Tweets on Fort Bragg Account Were From Administrator, Not a Hack as Army First Said

Microsoft Teams Phishing Attack Targets Office 365 Users

Facebook, News and XSS Underpin Complex Browser Locker Attack

NVIDIA Patches High Severity GeForce Experience Vulnerabilities

Snyk to Automatically Check Docker Official Images for Security Problems

Security Experts Alarmed by ‘Broken’ Cyber Market

Fraud Analysts Miss Dark Web Data

10/21/2020

U.S. Tries to Get Huawei Blocked From Brazil’s 5G Networks With $1 Billion Financing Pledge

Trump Signs Legislation Making Hacking Voting Systems a Federal Crime

Cybercriminals Step Up Their Game Ahead of U.S. Elections

Threatening Emails Escalate Voter Intimidation Concerns

Biden Campaign App ‘Hack’ Shows Him Wearing MAGA Hat, Telling People to Vote Trump

Disjointed Covid-19 Apps Across U.S. Raise Questions About Tech’s Role

Fort Bragg Deletes Twitter Account, Blames Hack for Explicit Tweets

Mastercard, Idemia, and MatchMove to Pilot Contactless Card With Biometric Reader in Asia

U.S. PayPal Users Can Soon Use Crypto in Lieu of Fiat Currency

CoinDesk: Ban All Ransomware Payments, in Bitcoin or Otherwise

Thought the FBI Were the Only Ones Able to Unlock Encrypted Phones? Pretty Much Every U.S. Cop Can Get the Job Done

Google Chrome Now Blocks Site Notifications With Abusive Content
Montreal’s STM Public Transport System Hit by Ransomware Attack

City of Shafter (CA) Hit by Ransomware Attack

Jekyll Island (GA) Authority Still Addressing Ransomware Attack

Egregor Claims Responsibility for Barnes & Noble Attack, Leaks Data

M&S Boss Spoofed in Gift Voucher Scam

LockBit Ransomware Moves Quietly on the Network, Strikes Fast

QNAP Warns of Windows Zerologon Flaw Affecting Some NAS Devices

Lightning Network Discloses “Concerning” Crypto Vulnerabilities

Oracle Kills 402 Bugs in Massive October Patch Update

WordPress Deploys Forced Security Update for Dangerous Bug in Popular Plugin

Windows 10 20H2 Adds Faster Malware Detection to Security Baseline

10/20/2020

U.S.-China Tensions Could Split the Internet — and Data Will Play a Key Role in How Far That Goes

..Sweden Bans Use of Huawei, ZTE Equipment in New 5G Networks

U.S. Spy Agency Warns That Chinese Hackers Target Military, Defense Industry

Chinese Hackers Are Hitting These 25 Vulnerabilities, Says NSA

Japan Will Take Steps to Guard Against Olympics Cyberattacks

Kremlin Denies Olympics Hacking Allegations

Microsoft Disables Most of Cybercriminals’ Control Over Massive Computer Network

TrickBot Malware Under Siege From All Sides, and It’s Working

IoT Security Foundation Launches Vulnerability Disclosure Platform

Cybersecurity And The Remote Classroom

Justice Department Hits Google With Antitrust Lawsuit

House Republicans Urge Democrats to Call Hearing With Tech CEOs
Pharma Giant Pfizer Leaks Customer Prescription Info, Call Transcripts

Made in Oregon Notifies 7,800 Customers of Possible Data Breach

Medicaid Billing Company Timberline Billing Service LLC’s Data Accessed by ‘Unknown Actor’; Firm Works With Many Iowa School Districts

Toledo Public Schools (OH) Vows Support for Staff Affected by Breach After 9GB of Data Posted Online

Facebook: A Top Launching Pad For Phishing Attacks

Mobile Browser Bugs Open Safari, Opera Users to Malware

Orgs Struggling to Secure SaaS Applications Following Shift to the Cloud

Cisco Warns of Attacks Targeting High Severity Router Vulnerability

Adobe Fixes 16 Critical Code-Execution Bugs Across Portfolio

VMware Patches ESXi Flaw That Can Be Abused on the Network to Hijack Hosts, Other Vulns

New Google Chrome Version Fixes Actively Exploited Zero-Day Bug

Iranian Millionaire Jailed for Violating US Sanctions

10/16-19/2020

Krebs: QAnon/8Chan Sites Briefly Knocked Offline

Biden Campaign Staffers Targeted in Cyberattack Leveraging Antivirus Lure, Dropbox Ploy

Federal Commission Issues Recommendations for Securing Critical Tech Against Chinese Threats

Tokyo Olympics: Russian Hackers Targeted Games, UK Says

Russian Hackers in the NotPetya, Ukraine Power Grid, 2018 Olympics, 2017 French Election Attacks: U.S. Indictment

U.S. Blocked Chinese Purchase of San Diego Fertility Clinic Over Medical Data Security Concerns

Microsoft Exchange, Outlook Under Siege By APTs

China Revises Laws to Strengthen Protection of Minors Online

Instagram’s Handling of Children’s Data Under EU Investigation

Nation-State Actor Hit Google With the Largest DDoS Attack

Microsoft Issues Out-of-Band Windows Security Updates for RCE Bugs

Mysterious ‘Robin Hood’ Hackers Donating Stolen Money

Rapper Scams $1.2M in COVID-19 Relief, Gloats with ‘EDD’ Video

Phishers Capitalize on Headlines with Breakneck Speed

FBI Warns of Newly Registered Domains Spoofing U.S. Census Bureau

Hackers Smell Blood as Schools Grapple With Virtual Instruction

Microsoft is the Most-Imitated Brand for Phishing Emails

Toshiba Targets $3 Billion Revenue in Quantum Cryptography by 2030

Lawsuit Accuses Indian Hackers of Leaking Businessman’s Emails
Verificient Technologies’ Anti-Cheating Software Suffers Data Breach

Fanduel, Draftkings Data Provider Stats Perform Hit by Ransomware Attack

Albion Online Game Maker Discloses Data Breach

Haldiram’s (India) Hit by Ransomware Attack, Hackers Asked for $7.5 Lakh

Hackers Hijack Telegram, Email Accounts in SS7 Mobile Attack

Hackers Now Abuse BaseCamp for Free Malware Hosting

Cyber-attack on Yazoo County School District (MS) Costs $300k

Michigan Medicine Notifies Patients of Email Information Breach

Waze Vulnerability Lets Attackers Track and Identify Users

Coinbase Phishing Hijacks Microsoft 365 Accounts via OAuth App

Ryuk Ransomware Gang Uses Zerologon Bug for Lightning-Fast Attack

Overlay Malware Targets Windows Users with a DLL Hijack Twist

Watch Out for Emotet Malware’s New ‘Windows Update’ Attachment

GravityRAT Comes Back to Earth with Android, macOS Spyware

ThunderX Ransomware Rebrands as Ranzy Locker, Adds Data Leak Site

Google Warns of Zero-Click Bluetooth Flaws in Linux-based Devices

10/15/2020

Study: Half of Battleground States Facing Cybersecurity Challenges Ahead of Election

Twitter Locks Trump Campaign Account

Twitter Suffers Massive Outage; ‘No Evidence’ of Hack or Security Breach

Iran Says Hackers Attacked Two of Its Key Institutions

Trump Administration Rolls Out Strategy to Secure, Promote Critical Technologies

Data Breaches Hit Thousands of K-12 Students, Federal Watchdog Reports

Federal Watchdog Finds Escalating Cyberattacks on Schools Pose Potential Harm to Students

How One Family’s Nightmare Illustrates the Growing Threat of Real Estate Wire Fraud

Microsoft Now Lets You Disable Insecure JScript in Internet Explorer

US Indicts Money Launderers From Criminal Organization QQAAZZ
Krebs: Breach at Dickey’s BBQ Smokes 3M Cards

Broadvoice Leak Exposes 350M Records, Personal Voicemail Transcripts

Crytek Hit by Egregor Ransomware, Ubisoft Data Leaked

Robinhood Internal Probe Finds Hackers Hit Almost 2,000 Accounts

Barnes & Noble Hack: A Reading List for Phishers and Crooks

Online Proctor Service ProctorTrack Disables Service After Hack

Yorktown, Croton-Harmon Schools (NY) Suffer Cybersecurity Attacks

Possible Data Breach Exposes 2,219 Patient Files at McLaren Oakland Hospital (MI)

FIFA 21 Blockbuster Release Gives Fraudsters an Open Field for Theft

Critical Magento Holes Open Online Shops to Code Execution

10/14/2020

Facebook and Twitter Reducing Distribution of New York Post Hunter Biden Story

Twitter’s Security Fell Short Before Hack Targeting Celebrities, Regulator Says

YouTube Bans COVID-19 Vaccine Misinformation

New York Regulator Urges Oversight for Social-Media Giants

Iranian Hackers Restart Attacks on Universities as the New School Year Begins

Zoom Rolls Out End-to-End Encryption (E2EE) Next Week

Police Raided German Spyware Company FinFisher Offices

Brit Webcam Criminal Snared in FBI Luminositylink Creepware Sting Spared Prison

The Important Difference Between Cybersecurity And Cyber Resilience (And Why You Need Both)
Carnival Confirms Passenger Data Compromised

Cyber Attack Disrupts Remote Learning in Sandwich Public Schools (MA)

FIN11 Cybercrime Gang Shifts Tactics to Double-Extortion Ransomware

Travelex, Other Orgs Face DDoS Threats as Extortion Campaign Rages On

Canva Design Platform Actively Abused in Credentials Phishing

Google, Intel Warn on ‘Zero-Click’ Kernel Bug in Linux-Based IoT Devices

Critical SonicWall VPN Portal Bug Allows DoS, Worming RCE

U.S. Cyber Command: Patch Windows ‘Bad Neighbor’ TCP/IP Bug Now

Microsoft Rolls Out New Edge Extensions API but Promises to Leave Ad Blockers Alone

10/13/2020

State Officials Warn of Delayed Election Results From Influx of Mail-in Ballots

Election Systems Under Attack via Microsoft Zerologon Exploits

As Voters Cast Their Ballots, Courts Nationwide Issue Election Security Edicts

Cut Cable Shuts Down Virginia’s Online Voter Registration

Russia Blamed for Cyber-attack on Norwegian Parliament

US GAO Calls for Greater Cybersecurity for Commercial Airplanes

Security Experts Warn of Amazon Prime Day Scams

Executive Overconfidence a Security Risk

How to Improve the Cybersecurity of Your Remote Workers
London’s Hackney Borough Council Hit by Hack Attack

International Law Firm Seyfarth Discloses Ransomware Attack

Miami Tech Company Intcomex Suffers Major Data Breach

Facility Services Provider Spotless Suffers Ransomware Attack

Lemon Duck Cryptocurrency-Mining Botnet Activity Spikes

Authentication Bug Opens Android Smart-TV Box to Data Theft

Windows and Mac Users Alike Urged to Patch PhantomPDF Over Use-After-Free Vulns

Critical Flash Player Flaw Opens Adobe Users to RCE

Krebs: Microsoft Patch Tuesday, October 2020 Edition

10/9-12/2020

Court Orders Seizure of Ransomware Botnet Controls as U.S. Election Nears

Hackers Used VPN Flaws to Access Us Gov’t Elections Support Systems

Georgia Marred by Technical Problems, Long Lines on First Day of Early Voting

DHS: Unknown Hackers Targeted the U.S. Census Bureau Network

Cyber-attacks on Angolan Journalists Who Reported Government Corruption

Thai Army Denies Twitter Disinformation Campaign After Takedowns

Cambridge University Releases Fake News Game

Krebs: Microsoft Uses Trademark Law to Disrupt Trickbot Botnet

Krebs: U.S. Cyber Command Behind Trickbot Tricks (WashPo Report)

Gov-Linked “Fatima” Cybersecurity Career Advert Removed After Backlash

Facebook Debuts Bug-Bounty ‘Loyalty Program’

Budget and Hiring Practices Hinder Cities’ Cybersecurity Efforts

Ransomware Attackers Buy Network Access in Cyberattack Shortcut

Here’s How Many Americans Still Secretly Use Their Ex’s Passwords

Cybercriminals Are Impersonating Parents for Ransomware Attacks on Teachers

55 New Security Flaws Reported in Apple Software and Services
Software AG Hit by Data-Stealing Ransomware Attack

Cyber Attack Targets Georgia Department of Human Services

City of Mt. Pleasant (MI) Falls Victim to Remote Ransomware Attack

Franklin, MA Loses $522K to ‘Spear Phishing’ Cyberattack

Investigation Underway After Tyngsboro (MA) Schools Hit by Cyberattack

Police Investigating Cyber Attack on Walled Lake (MI) School District

Fairfax County Public Schools (AV) Announces Student, Teacher PII Leaked to the Dark Web

Robinhood Says Some Customer Accounts May Have Become Target of Hackers

India Lab Testing Company Dr Lal PathLabs Exposed Sensitive Patient Data

Lake George Conservancy Hit by Ransomware Attack

Ransomware Gang Exposes Truckers’ PII After Attack on Daseke Carrier E.W. Wylie

Fitbit Spyware Steals Personal Data via Watch Face

Undocumented Backdoor That Covertly Takes Snapshots Found in Xplora’s X4 Kids’ Smartwatch

Wormable Apple iCloud Bug Allows Automatic Photo Theft

QBot Uses Windows Defender Antivirus Phishing Bait to Infect PCs

BazarLoader Used to Deploy Ryuk Ransomware on High-Value Targets

Sophisticated Android Ransomware Executes with the Home Button

Windows Update Can Be Abused to Execute Malicious Files

10/8/2020

Facebook, Twitter Dismantle Global Array of Disinformation Networks

U.S. Seizes 92 Domains Used by Iran for ‘Global Disinformation Campaign’

Judge Orders Twitter To Unmask FBI Impersonator Who Set Off Seth Rich Conspiracy

Trojan Malware Targets Trump Supporters

Amazon Prime Day Spurs Spike in Phishing, Fraud Attacks

New EU ‘Gateway’ Will Link Coronavirus Apps Across Borders

Justice Department Rolls Out Report Detailing Cryptocurrency Security Threats

Waterbear Malware Used in Attack Wave Against Government Agencies

Krebs: Amid an Embarrassment of Riches, Ransom Gangs Increasingly Outsource Their Work

Former eBay Workers Plead Guilty to Cyberstalking Campaign Against Couple
Wisepay: School Payments Service Hit by Cyber-Attack

Springfield Public Schools District (MA) Shut Down by Ransomware Attack

Hall County (GA) Phone Services Available After Wednesday Ransomware Attack, Recovery Ongoing

Data Breach at AAA Ambulance Service (MS) Exposes Sensitive Information of Patients

RAINBOWMIX Apps in Google Play Serve Up Millions of Ad Fraud Victims

Sam’s Club Customer Accounts Hacked in Credential Stuffing Attacks

MontysThree APT Takes Unusual Aim at Industrial Targets

HEH P2P Botnet Sports Dangerous Wiper Function

Microsoft Azure Flaws Open Admin Servers to Takeover

Cisco Fixes High-Severity Webex, Security Camera Flaws

10/7/2020

Huawei: ‘Clear Evidence of Collusion’ With Chinese Communist Party

Facebook to Slap Labels on Posts if Candidates Prematurely Declare Victory

Phishing Emails Lure Victims With Inside Info on Trump’s Health

IRS COVID-19 Relief Payment Deadlines Anchor Convincing Phish

U.S. Brokerage Firms Warned of Widespread Survey Phishing Attacks

Remote Workers Keep IT Issues to Themselves

‘Mercenary’ Hacker Group ‘Bahamut’ Runs Rampant in Middle East, Cybersecurity Research Shows

Krebs: Promising Infusions of Cash, Fake Investor John Bernard Walked Away With $30M

UK Regulator Bans Cryptocurrency Derivatives

Ukraine Plan to Tackle Hackers Sparks Privacy Fears

Supreme Court Hears Landmark $9B Copyright Fight Between Oracle, Google
More Than 1,600 Mayo Clinic Patients Impacted by Privacy Breach

Heartland Community College (IL) Addressing Cybersecurity Breach

Ransomware Hackers Claim Attack on Texas Customs Broker Daniel B. Hastings

Former Congress Member Katie Hill’s Twitter Account Hacked After Movie Deal Announcement

Mumbai University Distance Education Exams Hit By Cyber Attack

Eight Exchange Operators Also Attacked During New Zealand Hack, Says Cyber Intelligence Group Chairman

PoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating Conflict

Comcast TV Remote Hack Opens Homes to Snooping

QNAP Fixes Critical Flaws That Could Lead to Device Takeover

Google’s Chrome 86: Critical Payments Bug, Password Checker Among Security Notables

Microsoft Adds Consent Phishing Protection to Office 365

10/6/2020

DHS Points to Russia as Key Disinformation Threat Ahead of Election

Officials Urge Social Media Groups to Weed Out Election Disinformation Targeting Minority Voters

APT Attack Injects Malware into Windows Error Reporting

CISA: Emotet Increasing Attacks on U.S. State, Local Governments

Israeli Government Reportedly Investigating Unsuccessful Hack Targeting Crypto CEOs

More Than 100 Charities Report Being Caught up in Blackbaud Ransomware Attack

EU Seeks Authority to Cut Off Banks’ Tech Suppliers if Found Wanting on Cybersecurity

Anti-Virus Creator John McAfee Arrested Over Tax Evasion Charges

Cisco Ordered to Pay $1.9 Billion for Security Patent Infringement
Boom! Mobile Customer Data Lost to Fullz House/Magecart Attack

Chowbus Delivery Service Breached, Hacker Emails Data to Users

Qiui’s Cellmate Male Cage Chastity Gadget Hack Could Lock Users In

REvil Ransomware Gang Offers $1 Million As Part Of Recruitment Drive

Malware Campaigns Deliver Payloads via Obscure Paste Service

Unpatched Apple T2 Chip Flaw Plagues Macs

Chrome 86 Rolls Out With Massive User Security Enhancements

Cloudflare Can Now Send DDoS Alerts for Sites Are Under Attack

10/2-5/2020

Majority of Americans Concerned About Potential Foreign Election Interference: Poll

Voter Registration ‘Error’ Phish Hits During U.S. Election Frenzy

Ransomware Disrupts COVID-19 Medical Trials

Her Majesty’s Revenue and Customs (HMRC) Hit by Multiple Phishing and Spam Emails

CEOs of Google, Facebook and Twitter to Testify Before Senate

Years-Long ‘SilentFade’ Attack Drained Facebook Victims of $4M

LatAm Banking Trojans Collaborate in Never-Before-Seen Effort

Rare Bootkit Malware Targets North Korea-Linked Diplomats

Microsoft: Iranian Hackers Actively Exploiting Windows Zerologon Flaw

Krebs: Attacks Aimed at Disrupting the Trickbot Botnet

A Millionaire Hacker’s Lessons for Corporate America

Video-Game Piracy Group ‘Team Xecuter’ Leaders in Custody

Researchers Mixed on Sanctions for Ransomware Negotiators

Ransomware Victims Aren’t Reporting Attacks to Police. That’s Causing a Big Problem

Malware Families Turn to Legit Pastebin-Like Service
Egregor Ransomware Threatens ‘Mass-Media’ Release of Corporate Data

Hacker Group Compromises Mobile Provider to Steal Credit Cards

Grindr Fixed a Bug Allowing Full Takeover of Any User Account

Students and Employees Notified of Gulf Coast State College Data Breach

Horry County (SC) Police Investigating After Virtual Classroom Hacked, According to District

Black-T Malware Emerges From Cryptojacker Group TeamTNT

Tenda Router Zero-Days Emerge in Spyware Botnet Campaign

Crypto-Mining Malware Adds Linux Password Stealing Capability

Mosaicregressor: Second-Ever UEFI Rootkit Found in the Wild

Post Grid WordPress Plugin Flaws Allow Site Takeovers

HP Device Manager Backdoor Lets Attackers Take Over Windows Systems

New Flaws in Top Antivirus Software Could Make Computers More Vulnerable

New Ransomware Vaccine Kills Programs Wiping Windows Shadow Volumes

Hacker Uploads Own Fingerprints To Crime Scene In Dumbest Cyber Attack Ever

10/1/2020

Huawei ‘Failed to Improve UK Security Standards’

Lawmakers Introduce Bill Targeting Foreign Disinformation on Social Media

Privacy, Civil Rights Groups Demand Transparency From Amazon on Election Data Breaches

Emotet Emails Strike Thousands of DNC Volunteers

New Service Checks if Your Email Was Used in Emotet Attacks

Twitter Shutters 130 Iranian Accounts Trying to Disrupt Presidential Debate

Online Journals Flagged as Election Disinformation Threat

U.S. Treasury Warns Cyber Insurers Payments to Hackers May Violate Sanctions

Krebs: Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

Universal Health Services Says Its Network Is Being Restored After Malware Incident

Cloud Biz Blackbaud Admits Ransomware Criminals May Have Captured Folks’ Bank Info

H&M Fined €35.2m for GDPR Violations
Global Regulator International Maritime Organization Hit by Cyberattack

Hackers Leak Files Stolen in Pakistan’s K-Electric Ransomware Attack

Nebraska Medicine Provides Update on ‘Cyber Attack’ Causing Network Issues

InterPlanetary Storm Botnet Infects 13K Mac, Android Devices

Experts Warn of $15m Global BEC Campaign

Ransomware Gangs Add DDoS Attacks to Their Extortion Arsenal

Cryptojacking: The Unseen Threat

Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs

Spammers Smuggle LokiBot Via URL Obfuscation Tactic

Critical Flaws Discovered in Popular Industrial Remote Access Systems

NVIDIA Fixes High Severity Flaws in Windows Display Driver

9/30/2020

House Panel Says U.S. Intelligence Community Not Equipped to Address Evolving Chinese Threats

Chinese APT Group Palmerworm (aka BlackTech) Targets Media, Finance, and Electronics Sectors

Android Spyware Variant From APT-C-23 (aka Two-Tailed Scorpion and Desert Scorpion) Snoops on WhatsApp, Telegram Messages

North Korea Has Tried to Hack 11 Officials of the UN Security Council

DFAT Reveals Email Addresses of Vulnerable Australians Stranded Overseas

Facebook Small Business Grants Spark Identity-Theft Scam

Federal Internet of Things Security Rules Could Provide Blueprint for Private Sector

Anthem to Pay Nearly $40 Million to Settle Data Breach Probe by U.S. States

Two Charged for Hacking NBA, NFL Players’ Social Media Accounts

Russian Hacker, Described as ‘Brilliant’ by Judge, Gets Seven Years in U.S. Prison for Raiding LinkedIn, Dropbox
Kylie Jenner’s Makeup Company Warns of Data Breach

Applicants Say a DC Bar Website Bug Exposed Their Personal Data and Background Checks

Northern California Casino Cache Creek Casino Resort Shut Down by External Computer Attack, May Be Ransomware

Cyber Attack Interrupts Online Learning at Greece Central School District (NY)

Patient Data Compromised in Oaklawn (MI) Email Security Incident

Some Pell City (AL) Utility Customers May Have Suffered Data Breach

QNAP Warns Customers of Recent Wave of Ransomware Attacks

Blackbaud: Ransomware Gang Had Access to Banking Info and Passwords

OAuth Consent Phishing Ramps Up with Microsoft Office 365 Attacks

Microsoft Exchange Servers Still Open to Actively Exploited Flaw

9/29/2020

Nokia Clinches 5G Deal With BT to Phase Out Huawei’s Kit in EE Network

Biden Campaign Urges Facebook to Remove Trump Posts Spreading ‘Falsehoods’

Krebs: Who’s Behind Monday’s 14-State 911 Outage?

Microsoft Outage Was Not Part of ‘Coordinated Campaign,’ Says Cybersecurity Agency

Microsoft Reports Spike in Foreign Targeting of COVID-19 Researchers, Think Tanks

Universal Health Says Corporate Network Remains Offline

Shipping Firm CMA CGM Says No Communications Breach in Cyber Attack

Amazon One: Palm Scanner Launched for ‘Secure’ Payments
Swatch Shuts Down Some Technology Systems After Cyberattack

Ransomware Hits Us-Based Arthur J. Gallagher Insurance Giant

Health-Care Provider Medisys Reports Data Breach Affecting 60,000 Clients

Plane-Tracking Site Flight Radar 24 DDoS’d… Just as Drones Spotted Buzzing Over Azerbaijan and Armenia

Hacker Releases Information on Clark County (NV) Students After Officials Don’t Pay Ransom

Fake Software Crack Sites Used to Push Exorcist 2.0 Ransomware

Over 247k Exchange Servers Unpatched for Actively Exploited Flaw

Cisco Fixes Actively Exploited Bugs in Carrier-Grade Routers

Microsoft Clarifies Patch Confusion for Windows Zerologon Flaw

9/28/2020

Federal Agencies Warn of Disinformation Around Cyberattacks on Election Infrastructure

Hacking Voting Systems to Be a Federal Crime in US

Twitter Appoints Rinki Sethi as New Information Security Head

Researchers Uncover Cyber Espionage Operation Aimed At Indian Army

20% of Remote Staff Have Downloaded Company Data on Personal Devices

Awareness Is Everything in Cybersecurity — Until It Wears Off

Tennessee Bureau Urges Parents to Supervise Children Online

OCR Imposes $6.85M Penalty, 2nd Largest HIPAA Violation Fine Ever, on Premera Blue Cross Over Data Breach
Universal Health Services (UHS) Hit With Cyberattack, Potentially Largest Hospital Attack in U.S. History

Shipping Group CMA CGM Says Dealing With Cyber Attack

Scouts Victoria Reports Data Breach After Employee Duped by Phishing Campaign

Data Breach within Elite Comms Group

Montgomery County (TN) Computer Network Back up After Weekend Outage Due to Data Security Breach

Fashion Retailer BrandBQ Exposes Seven Million Customer Records

Windows 7 ‘Upgrade’ Emails Steal Outlook Credentials

REvil Ransomware Deposits $1 Million in Hacker Recruitment Drive

9/25-27/2020

Judge Blocks Trump Administration’s Ban on New TikTok Downloads From U.S. App Stores

White House Chief of Staff Knocks FBI Director Over Testimony on Election Fraud

Tyler Technologies Says Clients Reported Suspicious Logins After Hack

Microsoft Kills 18 Azure Accounts Tied to Nation-State Attacks

Facebook Takes Down More Beijing-Backed Fake Accounts

Google to Temporarily Bar Election-Related Ads After Polls Close on Nov. 3

Facebook Critics Launch Alternative Oversight Board

Could Estonia Be the Model for Secure Online Voting?

Brussels Report: Governments’ Concerns Rise About Pandemic Cyberattacks on Health Care

Industrial Cyberattacks Get Rarer but More Complex

Ring’s Flying In-Home Camera Drone Escalates Privacy Worries

Trump Administration Signs AI Research and Development Agreement With the UK

Student Arrested Over Cyber-attacks on Indiana Schools

Krebs: Who is Tech Investor John Bernard?
Cyber-Partisans Hack Websites of State Channels in Belarus

Hackers Have Infiltrated Many of Washington State’s Agencies

Millcreek Township (PA) Confirms Computer System Hacked

Hungarian Banks, Telecoms Services Briefly Hit by Cyber Attack: Magyar Telekom

FinSpy Spyware for Mac and Linux OS Targets Egyptian Organisations

KuCoin Cryptocurrency Exchange Hacked for $150 Million

Twitter Is Warning Devs That API Keys and Tokens May Have Leaked

Techies Scramble to Fix Airbnb Website Bug That Let Strangers Read Each Others’ Account Messages

Louis Vuitton Fixes Data Leak and Account Takeover Vulnerability

Coffee Machine Hit By Ransomware Attack—Yes, You Read That Right

Most Local Banks Ignore Cyber Security

FortiGate VPN Default Config Allows MitM Attacks

ThunderX Ransomware Silenced With Release of a Free Decryptor

Pastebin Adds ‘Burn After Read’ and ‘Password Protected Pastes’ to the Dismay of the Infosec Community

Microsoft Windows XP Source Code Reportedly Leaked Online

9/24/2020

ByteDance Applies for Export License From China as TikTok Deal Waits for Approval

Fears Mount Over Russian and Chinese Hackers Targeting the 2020 U.S. Presidential Election

Facebook Removes Hundreds of Accounts Linked to Russian Agencies Ahead of Election

Despite Ransomware Attack, Tyler Technologies Says Election Programs Safe

FBI, DHS Say They Have ‘Not Identified’ Hacking Schemes to Change Vote Tallies Ahead of U.S. Election

FBI Director Casts Doubt on Concerns Over Mail-in Voting Fraud

But Warns That Chinese Hackers Are Still Targeting U.S. COVID-19 Research

Undisclosed Federal Agency Hit With Successful Cyberattack, Data Stolen

U.S. Customs and Border Protection Failed to Safeguard Data

Microsoft Supports Commission Calling for Re-Establishment of U.S. Cyber Czar

UAE, Israeli Cyber Chiefs Discuss Joining Forces to Combat Common Threats

Polish Police Shut Down Hacker Super-Group Involved in Bomb Threats, Ransomware, Sim Swapping
French Based GEFCO Hit by Cyber Attack

Free Apple iPhone 12? Chatbot Scam Spreads Via Texts

Phishing Attacks Are Targeting Your Social Network Accounts

Scammers Drain Bank Accounts Using AnyDesk and Sim-Swapping

Krebs: Microsoft Says Attackers Exploiting ‘ZeroLogon’ Windows Flaw

Mount Locker Ransomware Joins the Multi-Million Dollar Ransom Game

Alien Android Banking Trojan Sidesteps 2FA

Major Instagram App Bug Could’ve Given Hackers Remote Access to Your Phone

Instagram Bug Allowed Crashing the App via Image Sent to Device

Cisco Patch-Palooza Tackles 29 High-Severity Bugs

Cybersecurity: Your Supply Chain Is Now Your Weakest Link

Cyberattacks Are Fast Becoming a Physical Threat

9/23/2020

Here’s Why Most Americans Are Not Able to Vote Online in 2020

Treasury Sanctions Individuals, Groups Tied to Russian Malign Influence Activities

Democrats Call for Declassifying Election Threats After Briefing by Trump Officials

Gamer Credentials Now a Booming, Juicy Target for Hackers

Hackers Sell Access to Your Network via Remote Management Apps

Thieves Fail to Auction Bruce Springsteen’s Legal Documents

Supreme Court Review of Hacking Law Puts Cybersecurity Researchers on Alert

Four Former eBay Workers to Plead Guilty in U.S. to Cyberstalking Campaign
Krebs: Govt. Services Firm Tyler Technologies Hit in Apparent Ransomware Attack

India’s COVID-19 Surveillance Tool Exposed Millions of User Data

Town Sports Fitness Chains Suffer Data Breach Affecting 600k Customers

Shopify Insiders Attempted to Steal Customer Transactional Records

OldGremlin Ransomware Group Bedevils Russian Orgs

CISA: LokiBot Stealer Storms Into a Resurgence

AgeLocker Ransomware Targets QNAP NAS Devices, Steals Data

Tor Browser 10 Released to Sync With Latest Firefox ESR Version

9/22/2020

‘Hooligan Logic’: Chinese State Media Hardens Stance on TikTok Deal, Casts Doubt Over Beijing’s Approval

Popular TikTok Profiles Promote Scammy Apps Generating $500,000

U.S. Warns ‘Foreign Actors’ Aim to Sow Doubts Over Mail-in Voting

Russian Hackers Use Fake NATO Training Docs to Breach Gov’t Networks

Fatal Hospital Hack Linked to Russia

Government Watchdog Recommends Creation of White House Cyber Director Position

Trump to Meet With Republican State Attorneys General on Tech Liability Shield

Uncomplicated Cyber Insurance Program Launched

Hackers Harassed Teen Daughter of Ransomware Target in St. Louis, Feds Say

Authorities Arrest 179 in Crackdown on Opioid Trafficking on Darknet

British Hacker Sentenced to 5 Years for Blackmailing U.S. Companies
Data Breach at Stony Brook University Hospital

St. Clair County Government (AL) Target of Cyber Attack

Anglicare Sydney Hit by Ransomware

Activision Refutes Claims of 500K-Account Hack

Emotet Double Blunder: Fake ‘Windows 10 Mobile’ and Outdated Messages

Google Cloud Buckets Exposed in Rampant Misconfiguration

Google Chrome Bugs Open Browsers to Attack

Known Citrix Workspace Bug Open to New Attack Vector

Microsoft Overhauls Patch Tuesday Security Update Guide

Firefox 81 Release Kills High-Severity Code-Execution Bugs

9/21/2020

‘Unfair’ but Not the Worst-Case Scenario: Chinese State Media Reacts to ‘Reasonable’ TikTok Deal

Chinese Leaders Split Over Releasing Blacklist of U.S. Companies

Murky TikTok Deal Raises Questions About China’s Role

ByteDance Says It Will Not Transfer Algorithm and Technology to Oracle as Part of TikTok Deal

ByteDance Says It Will Own 80% of TikTok Global, Contradicts Trump’s Claims Deal Has ‘Nothing to Do With China’

Oracle Can Now Claim to Be Hosting ‘Two Most Important Sites of Our Generation’ — TikTok and Zoom

2.5 Million U.S. Users Register to Vote Using Facebook, Instagram, Messenger

US CISA: Agencies Must Patch Zerologon Bug by Monday

Phishing Awareness Training Wears off After a Few Months

Firefox for Android Bug Allows ‘Epic Rick-Rolling’
Cyber-Criminals Spoof Texas Government

Activision Accounts Have Been Hacked, Fans Recommended To Change Passwords Immediately

Data of More Than 500,000 Referees Stolen in Botched Ransomware Hack of ArbiterSports

University of Tasmania Students’ Personal Information Exposed in Email Bungle

U of Missouri Health Care Email Hack Exposes Info of 5,000 Patients

Ray-Ban Owner Luxottica Reportedly Hit With Cyberattack

Unsecured Microsoft Bing Server Leaks Search Queries, Location Data

Strava App Shows Your Info to Nearby Users Unless This Setting Is Disabled

Android Malware Bypasses 2FA And Targets Telegram, Gmail Passwords

Popular Password Manager BitWarden Could Have a Critical Vulnerability

9/18-20/2020

U.S. to Rein In TikTok, WeChat on Sunday

Trump Says He Has Approved a Deal for Purchase of TikTok

Federal Judge Blocks Trump Administration’s U.S. WeChat Ban

TikTok: Security Experts Weigh in on the App’s Risks

Twitter Beefs up Security for U.S. Election Candidates

Officials Say NASA Facing Increased Targeting by Foreign and Domestic Hackers

Researchers Discover Six-Year Espionage Campaign Targeting Iranian Dissidents

FinCEN Files: HSBC Moved Ponzi Scheme Millions Despite Warning

SecOps Teams Wrestle with Manual Processes, HR Gaps

The Cybersecurity Threat No One Talks About Is A Simple Code

Lawsuit Accuses Facebook of Using Mobile Phone Cameras to Spy on Instagram Users

Prosecutors Open Homicide Case After Hacker Attack on German Hospital

Cyber-fraud Prevention Company CEO Charged with Fraud
Leading U.S. Laser Developer IPG Photonics Hit With Ransomware

Hackers Leak Details of 1,000 High-Ranking Belarus Police Officers

Argentina Hack Reveals Data on Thousands of Swiss Travellers

Cyber Attack on India’s National Informatics Centre (NIC) Computers

FBI Joins Probe of City Carmel (IN) Website Hack: Site Still Shut Down

Netwalker Goes After the College of the Nurses of Ontario

Tutanota Encrypted Email Service Suffers DDoS Cyberattacks

Google App Engine Feature Abused to Create Unlimited Phishing Pages

Stubborn WooCommerce Plugin Bugs Get Third Patch

A Bug Could Let Attackers Hijack Firefox for Android via Wi-Fi Network

Android 11 — 5 New Security and Privacy Features You Need to Know

Microsoft Sysmon Now Logs Data Copied to the Windows Clipboard

Microsoft Removes Windows Defender Ability After Security Concerns

9/17/2020

Politics Surrounding TikTok’s Future in the U.S. Pollute Valid Data Security Concerns, Expert Says

Twitter Mandates Lawmakers, Journalists to Beef up Passwords Heading Into Election

FBI Chief Says Russia Is Trying to Interfere in Election to Undermine Biden

Former Australian Prime Minister Tony Abbott Hacked After Posting Boarding Pass on Instagram

Video Encoders Using Huawei Chips Have Backdoors and Bad Bugs – Chinese Giant Says It’s Not to Blame

Treasury Dept. Sanctions Iranian Government-Backed Hackers

U.S. Charges Three Iranians Over Satellite Tech Firm Hacking

Krebs: Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack
Fatality After German Hospital Hacked

Conroe Independent School District (TX) Makes System Adjustments Following Cyber Attack

Universities Face Increase in Ransomware Attacks as Students Return

Drug Spammers Start Using New Technique to Bypass Spam Filters

Apple Bug Allows Code Execution on iPhone, iPad, iPod

Hands on With iOS 14’s New Data Breach Notification Feature

Maze Ransomware Now Encrypts via Virtual Machines to Evade Detection

Mozi Botnet Accounts for Majority of IoT Traffic

Google Play Bans Stalkerware and ‘Misrepresentation’

9/16/2020

Trump Administration Pushes for U.S. Control of TikTok

Joe Biden’s Official App Had a Bug That Exposed User Voting History

Hackers Continue Cyberattacks Against Vatican, Catholic Orgs

FBI adds 5 Chinese APT41 Hackers to its Cyber’s Most Wanted List

U.S. Charges Chinese Nationals in Cyberattacks on More Than 100 Companies

Krebs: Two Russians Charged in $17M Cryptocurrency Phishing Spree
University Hospital New Jersey Hit by SunCrypt Ransomware, Data Leaked

Hackers Take ID Information of Residents at Cincinnati Nursing Homes

Hackers Post Stolen Data From Manitoulin Transport Following Cyber-Attack

LockBit Ransomware Launches Data Leak Site to Double-Extort Victims

This Security Awareness Training Email Is Actually a Phishing Scam

Google Chrome Is Making It Easier to Reset Compromised Passwords

9/15/2020

TikTok, Oracle Seek Trump’s Approval as Clock Ticks Down

TikTok Strives to Settle Privacy Lawsuit as Oracle Deal Nears

Chinese Database Details 2.4 Million Influential People, Their Kids, Addresses, and How to Press Their Buttons

Surge in DDoS Attacks Targeting Education and Academic Sector

QR Codes Serve Up a Menu of Security Concerns

Report: 97% of Cybersecurity Companies Have Leaked Data on the Dark Web

Two Hackers Indicted for Allegedly Defacing U.S. Websites After Death of Iranian General
NZX Again Under Cyber Attack, but Trading Continues

Blue Water Hit by Cyber Attack

MFA Bypass Bugs Opened Microsoft 365 to Attack

Windows Exploit Released For Microsoft ‘Zerologon’ Flaw

Windows 10 ‘Finger’ Command Can Be Abused to Download or Steal Files

IBM Spectrum Protect Plus Security Open to RCE

Adobe Releases Out-of-Band Security Update for Adobe Media Encoder

9/14/2020

TikTok Fixes Flaws That Opened Android App to Compromise

Privacy Issues Found in Vote Joe App

Feds Warn Nation-State Hackers are Actively Exploiting Unpatched Microsoft Exchange, F5, VPN Bugs

UK Government Releases Toolkit to Easily Disclose Vulnerabilities

Researchers, Companies Slam Mobile Voting Firm Voatz for ‘Bad Faith’ Attacks

Trucking Firms Grapple With Cybersecurity Amid New Regulation and Risks

Krebs: Due Diligence That Money Can’t Buy

Blackbaud Ransomware Demonstrates the Potential Devastation Caused by Supply Chain Attacks
VA Hit by Data Breach Impacting 46,000 Veterans

Cloud Leak Exposes 320M Dating-Site Records

Staples Discloses Data Breach Exposing Customer Info

Newhall Schools (CA) Put Virtual Lessons on Hold Due to Ransomware Attack

DeFi Platform bZX Sees New $8m Hack From One Misplaced Line of Code

Magecart Attack Impacts More Than 10K Online Shoppers

Travel Sites Riddled with Hundreds of Vulnerabilities

9/11-13/2020

Oracle Wins Bid for TikTok in U.S., After Microsoft Proposal Rejected

Russia and China Dismiss Microsoft Allegations of Bids to Hack Biden and Trump Camps

Russian-linked APT28 Mounts Rapid, Large-Scale Theft of Office 365 Logins

U.K. Government Funds Cybersecurity Assessments for Smaller Medical Suppliers

Cyber Attacks in Paterson (NJ) Hack Virtual Classrooms With Pornography, Threats Against Teachers

It’s No ‘Giggle’: Managing Expectations for Vulnerability Disclosure

Political Disruptor Charged with Wire Fraud Conspiracy
Fourth Judicial District Court of Louisiana Documents Published in Ransomware Attack

U.S. Staffing Firm Artech Discloses Ransomware Attack, Data Breach

Development Bank of Seychelles Hit by Ransomware Attack

Moffitt Cancer Center (FL): Stolen Briefcase Exposed Data of 4,056 Cancer Patients

WordPress Plugin Flaw Allows Attackers to Forge Emails

Researcher Kept a Major Bitcoin Bug Secret for Two Years to Prevent Attacks

9/10/2020

Russian, Chinese Hackers Have Targeted 200 Groups Tied to U.S. Election, Microsoft Says

Kremlin Calls Reports ‘Nonsense’

Treasury Dept. Sanctions Russian, Ukrainian Individuals for Election Interference

Chinese Ambassador’s Twitter Account “Hacked”

Thai Hospitals and Companies Hit by Ransomware Attacks

APT Groups Increasingly Targeting Linux-Based Devices

Zoom Adds Two-Factor Authentication (2FA) Support to All Accounts

Hackers Are Fighting a War Over 300k Vulnerable WordPress Sites

How to Talk Vulnerability Management With the C-Suite – and Make Them Care

Floyd Family Considers Legal Action After Alleged Hospital Data Breach
Razer Gaming Fans Caught Up in Data Leak

St. Louis County Takes Down Website to Thwart Hackers

Data Center Giant Equinix Discloses Ransomware Incident

MAZE Claims Attack on Fairfax County Public Schools (VA)

SoftServe Hit by Ransomware, Windows Customization Tool Exploited

CDRThief Malware Targets VoIP Gear in Carrier Networks

New Raccoon Attack Could Let Attackers Break SSL/TLS Encryption

Bluetooth Bug Opens Devices to Man-in-the-Middle Attacks

Office 365 Phishing Runs Real-Time Check of Stolen Domain Logins

9/9/2020

Key Swing States Could Face ‘Serious Problems’ With Voting, House Warns

Former DHS Chiefs Call for Stepped-Up Response to Election Threats

Whistleblower Alleges Top DHS Officials Sought to Alter Intelligence Products to Fit Trump’s Comments

TikTok, U.S. Discuss Ways to Avoid Sale

Spyware Labeled ‘TikTok Pro’ Exploits Fears of US Ban

Ireland to Order Facebook to Stop Sending User Data to U.S.

Fake Alert Scams Increasingly Targeting Mobile Networks

Singapore to Begin Nationwide Distribution of COVID-19 Contact Tracing Wearables

Cyber Chiefs Calculate Data Breach Costs to Explain Risks to Executives

Employee Social Media Use Viewed as Risky
Leading U.S. Video Delivery Provider SeaChange International Confirms Ransomware Attack

Fort Dodge Community School District (IA) Cancels Thursday Classes Following Cyber Attack on Internet and Phones

Toledo Public Schools (OH) Provides Update on Cyberattack

NZX Website Hit by Renewed Cyber Attacks, but Trade Continues

TeamTNT Gains Full Remote Takeover of Cloud Instances

Zeppelin Ransomware Returns with New Trojan on Board

Google Squashes Critical Android Media Framework Bug

Samsung Fixes Critical Android Flaws With September Updates

Azure Now Installs Security Updates on Windows VMs Automatically

9/8/2020

China Accuses U.S. of ‘Bullying’ as It Touts New Global Data Security Push

Top U.S. Federal Election Protection Official Says No Sign of Infrastructure Hacks

Japan & New Zealand Also Warn of Sudden Uptick in Emotet Trojan Attacks

Officials Warn Privacy Shield Replacement May Be a Long Way Off

DOJ Scam Targets Elderly Americans

Almost a Quarter of UK Work Computers Lack Adequate Security Software

How to Respond to a Data Breach

iPhone Users: Do This Simple Thing Every Week

How Kids’ Videogame Accounts Get Hacked: Advice for Parents

Make Cybersecurity a Strategic Asset

Bug in Google Maps Opened Door to Cross-Site Scripting Attacks

Critical Intel Active Management Technology Flaw Allows Privilege Escalation

Krebs: Microsoft Patch Tuesday, Sept. 2020 Edition
Netwalker Ransomware Hits Pakistan’s Largest Private Power Utility

Major Chilean Bank Banco Estado Shuts Down All Branches Following Ransomware Attack

Hartford (CT) Postpones First Day of School After Ransomware Attack

Pickens School District (SC) Says Cyberattack Caused Internet Outages District-Wide

Texell Credit Union (TX) Reports Data Breach

Eterbase’s Hack: $5 Million From ‘Hot’ Wallets Lost

European Crypto Exchange Falls Victim to $1.6M Hack

Hackers Use Legit Tool to Take Over Docker, Kubernetes Platforms

Webmaster Portal Leaks 63 Million Records

Cryptobugs Found in Numerous Google Play Store Apps

Bug in Google Maps Opened Door to Cross-Site Scripting Attacks

Critical Adobe Flaws Allow Attackers to Run JavaScript in Browsers

9/4-7/2020

China to Launch Initiative to Set Global Data-Security Rules

China Accuses U.S. of ‘Hegemony’ After Trump Administration Threatens to Sanction Chipmaker SMIC

Chinese State Media Accuses India of ‘Jingoism’ Over App Ban

France Warns of Emotet Attacking Companies, Administration

FBI Issues Second Alert About ProLock Ransomware Stealing Data

Netwalker Ransomware Hits Argentinian Government, Demands $4 Million

Election Officials Prepare for New Russian Interference Battle

Trump Security Adviser Says China Has Biggest Election-Interference Program

Trump Administration Rolls Out Policy to Secure Outer Space Technologies Against Cyberattacks

Pentagon Says Microsoft Still Deserves $10 Billion Jedi Cloud Contract

Hackers Acting in ‘Good Faith’ Gain Protections in Homeland Security Order

CEOs Could Be Held Personally Liable for Cyberattacks that Kill

How Black Friday and Cyber Monday Can Go From a Retailer’s Dream Into a CiSO’s Worst Nightmare

Healthcare Makes Case for Blockchain Use Despite Challenges
Israel’s Tower Semi Halts Some Operations After Cyber Attack

Service NSW Reveals 738GB of Customer Data Was Stolen During Email Breach

Sophisticated Phishing Scam Targeting Lloyds Bank Customers

Data Breach At Northwestern Medicine Affects 56,000 Patients, Donors

Personal Info of 1,700 Exposed in Oregon State University Computer Breach

Somerset Berkley Regional High School (MA) a Victim of Ransomware Attack

Two Ventura County (CA) School Districts Affected by Cyber Attack

Roper St. Francis Hospital Employee Email Hack Exposes 6,000 Patient Medical Records

Ransomware Gang Says They Are Behind Newcastle University Attack

New PIN Verification Bypass Flaw Affects Visa Contactless Payments

Attackers Steal Outlook Credentials Via Overlay Screens on Legitimate Sites

Windows 10 Sandbox Activation Enables Zero-Day Vulnerability

Windows 10 Themes Can Be Abused to Steal Windows Accounts

WhatsApp Discloses 6 Bugs via Dedicated Security Site

9/3/2020

Russia Is ‘Amplifying’ Claims of Mail-In Voter Fraud, Intel Bulletin Warns

Top Democrats Press Trump to Sanction Russian Individuals Over 2020 Election Interference Efforts

Facebook and Twitter Labeled Trump’s Post About Voting Twice

India Bans 118 Chinese Apps, Including Tencent’s Hit Games, as Border Tensions Flare Up

U.S. Seizes Domains Used by Terrorists

CISA Pushes Vulnerability Disclosure Policies

Homeland Security to Propose Biometric Collection Rules

Chief Executives Face Rising Accountability for Cyber Lapses

MIT Helping Companies Prioritize Their Cybersecurity Investments

Krebs: The Joys of Owning an ‘OG’ Email Account

Teen Arrested for Alleged Cyberattacks on Miami-Dade Schools
Warner Music Group Finds Hackers Compromised Its Online Stores

CNN-News18 Allegedly Hacked to Deny PayTM Hack Claims

Cyber Threat Startup Cygilant Hit by Ransomware

King George Schools (VA) Shut Down by Apparent Cyberattack

FBI: Thousands of Orgs Targeted by RDoS Extortion Campaign

European ISPs Report Mysterious Wave of DDoS Attacks

Evilnum APT Adds Python-based PyVil RAT to Target FinTech

Facebook to Warn Third-Party Developers of Vulnerable Code

Google Rolls Out Secure DNS Support to Chrome for Android

Google Ups Product-Abuse Bug Bounties

9/2/2020

Twitter Confirms Account of India PM Modi’s Personal Website Hacked

DHS Withheld July Intelligence Bulletin Calling Out Russian Attack on Biden’s Mental Health

DHS Cyber Agency Issues Order Boosting Cybersecurity Vulnerability Reporting

U.S. Agencies Must Adopt Vulnerability-Disclosure Policies by March 2021

CISA Funds SLTT Cybersecurity Project

UK NCSC Releases Cyber-Guidance

Australian Government Releases Voluntary IoT Cybersecurity Code of Practice

China-based APT TA413 Debuts Sepulcher Malware in Spear-Phishing Attacks

U.S. Court: Mass Surveillance Program Exposed by Snowden Was Illegal

Remote Learning During Pandemic Brings Privacy Risks

Don’t Forget Cybersecurity on Your Back-to-School List

Most Consumers Will Trade Their Data for Personalization

Blackbaud: Hackers Have Donor Lists from 200 Institutions, Including the Smithsonian and the UK’s National Trust

Darknet Moderator Jailed for 11 Years
New Zealand’s Mount Ruapehu’s Skifields Latest to Be Hit by Cyber Attacks

Hackers Actively Exploiting Severe Bug in Over 300k WordPress Sites

Somerset Berkley Regional High School (MA) a Victim of Ransomware Attack

Northumbria University Suffers Major Disruption After Cyber Attack

Cyber Attack at the Sixth Form Bolton Delays Students Returning

Joker Spyware Plagues More Google Play Apps

Attackers Abuse Google DNS Over HTTPS to Download Malware

Triple-Threat Cryptocurrency RAT KryptoCibule Mines, Steals and Harvests

Emotet Malware Uses Fake ‘Windows 10 Mobile’ Attachments

Microsoft Defender Can Ironically Be Used to Download Malware

Cisco Fixes Critical Code Execution Bug in Jabber for Windows

9/1/2020

TikTok Deal Talks Are Snarled Over Fate of App’s Algorithms

Chinese Researcher Arrested in Illegal Tech Theft Probe

Hackers Test Defenses of Trump Campaign Websites Ahead of U.S. Election, Security Staff Warn

U.S. Voter Databases Offered for Free on Dark Web, Report

Federal Agencies Deny Seeing Attacks on Voting Infrastructure

Michigan Denies Hack After Public Voter Information Found on Russian Online Forum

Mark Zuckerberg and Priscilla Chan Are Donating $300 Million to Voting Efforts

Norwegian Parliament Discloses Cyber-Attack on Internal Email System

FBI: Ring Smart Doorbells Could Sabotage Cops

U.S. Jails Racist Cyber-stalker

Authorities Identify Another Teenager Behind Massive Twitter Hack
Iran-based Pioneer Kitten APT Sells Corporate Network Access

New Zealand’s MetService Offline Again Today After Cyber Attack

Miami-Dade County Public Schools’ Virtual Learning System Hit by Cyber Attack

Mansfield City Schools (OH) : No Personal Data Compromised During Cyber Attack

Cyber-Criminals Mimicking Global Brand Domain Names to Launch Scams

Over 400 GOV.UK Domains Found on Spam Blacklists

Credit Card Data Smuggled via Private Telegram Channel

Magento Sites Vulnerable to RCE Stemming From Magmi Plugin Flaws

Google Now Pays for Bugs Used to Bypass Its Anti-Fraud Systems

New Threat Activity by Lazarus Group Spells Trouble For Orgs