News

10/22/2020

Iran Seeking to Intimidate U.S. Voters With Spoofed Emails, Intelligence Official Says …‘Dumb Mistake’ Exposed Iranian Hand Behind Fake Proud Boys U.S. Election Emails …Five Takeaways on Iran, Russia Election Interference Russian State Hackers Stole Data From U.S. Government Networks …EU Sanctions Russian Hackers Over 2015 German Parliament Attack Voter Websites In California And Florida Could Be Vulnerable To Hacks, Report Finds Cybersecurity Company Finds Hacker Selling Info on 186 Million U.S. Voters Researcher: I Hacked Trump’s Twitter by Guessing Password …Twitter Says ‘No Evidence’ Trump’s Account Was Hacked With Laughably Bad Password Krebs: The Now-Defunct Firms Behind 8chan, QAnon

Dr Reddy’s: COVID Vaccine-Maker Suffers Cyber-Attack Japanese Drug Firm Shionogi & Co. Hit by Cyberattack, Data Breach French IT Giant Sopra Steria Hit by Ryuk Ransomware Lewd Tweets on Fort Bragg Account Were From Administrator, Not a Hack as Army First Said Microsoft Teams Phishing Attack Targets Office 365 Users Facebook, News and XSS Underpin Complex Browser Locker Attack NVIDIA Patches High Severity GeForce Experience Vulnerabilities Snyk to Automatically Check Docker Official Images for Security Problems Security Experts Alarmed by ‘Broken’ Cyber Market Fraud Analysts Miss Dark Web Data

10/21/2020

U.S. Tries to Get Huawei Blocked From Brazil’s 5G Networks With $1 Billion Financing Pledge Trump Signs Legislation Making Hacking Voting Systems a Federal Crime Cybercriminals Step Up Their Game Ahead of U.S. Elections Threatening Emails Escalate Voter Intimidation Concerns Biden Campaign App ‘Hack’ Shows Him Wearing MAGA Hat, Telling People to Vote Trump Disjointed Covid-19 Apps Across U.S. Raise Questions About Tech’s Role Fort Bragg Deletes Twitter Account, Blames Hack for Explicit Tweets Mastercard, Idemia, and MatchMove to Pilot Contactless Card With Biometric Reader in Asia …U.S. PayPal Users Can Soon Use Crypto in Lieu of Fiat Currency CoinDesk: Ban All Ransomware Payments, in Bitcoin or Otherwise Thought the FBI Were the Only Ones Able to Unlock Encrypted Phones? Pretty Much Every U.S. Cop Can Get the Job Done Google Chrome Now Blocks Site Notifications With Abusive Content

Montreal’s STM Public Transport System Hit by Ransomware Attack City of Shafter (CA) Hit by Ransomware Attack Jekyll Island (GA) Authority Still Addressing Ransomware Attack Egregor Claims Responsibility for Barnes & Noble Attack, Leaks Data M&S Boss Spoofed in Gift Voucher Scam LockBit Ransomware Moves Quietly on the Network, Strikes Fast QNAP Warns of Windows Zerologon Flaw Affecting Some NAS Devices Lightning Network Discloses “Concerning” Crypto Vulnerabilities Oracle Kills 402 Bugs in Massive October Patch Update WordPress Deploys Forced Security Update for Dangerous Bug in Popular Plugin Windows 10 20H2 Adds Faster Malware Detection to Security Baseline

10/20/2020

U.S.-China Tensions Could Split the Internet — and Data Will Play a Key Role in How Far That Goes ..Sweden Bans Use of Huawei, ZTE Equipment in New 5G Networks …U.S. Spy Agency Warns That Chinese Hackers Target Military, Defense Industry …Chinese Hackers Are Hitting These 25 Vulnerabilities, Says NSA Japan Will Take Steps to Guard Against Olympics Cyberattacks …Kremlin Denies Olympics Hacking Allegations Microsoft Disables Most of Cybercriminals’ Control Over Massive Computer Network TrickBot Malware Under Siege From All Sides, and It’s Working IoT Security Foundation Launches Vulnerability Disclosure Platform Cybersecurity And The Remote Classroom Justice Department Hits Google With Antitrust Lawsuit House Republicans Urge Democrats to Call Hearing With Tech CEOs

Pharma Giant Pfizer Leaks Customer Prescription Info, Call Transcripts Made in Oregon Notifies 7,800 Customers of Possible Data Breach Medicaid Billing Company Timberline Billing Service LLC’s Data Accessed by ‘Unknown Actor’; Firm Works With Many Iowa School Districts Toledo Public Schools (OH) Vows Support for Staff Affected by Breach After 9GB of Data Posted Online Facebook: A Top Launching Pad For Phishing Attacks Mobile Browser Bugs Open Safari, Opera Users to Malware Orgs Struggling to Secure SaaS Applications Following Shift to the Cloud Cisco Warns of Attacks Targeting High Severity Router Vulnerability Adobe Fixes 16 Critical Code-Execution Bugs Across Portfolio VMware Patches ESXi Flaw That Can Be Abused on the Network to Hijack Hosts, Other Vulns New Google Chrome Version Fixes Actively Exploited Zero-Day Bug Iranian Millionaire Jailed for Violating US Sanctions

10/16-19/2020

Krebs: QAnon/8Chan Sites Briefly Knocked Offline Biden Campaign Staffers Targeted in Cyberattack Leveraging Antivirus Lure, Dropbox Ploy Federal Commission Issues Recommendations for Securing Critical Tech Against Chinese Threats Tokyo Olympics: Russian Hackers Targeted Games, UK Says Russian Hackers in the NotPetya, Ukraine Power Grid, 2018 Olympics, 2017 French Election Attacks: U.S. Indictment U.S. Blocked Chinese Purchase of San Diego Fertility Clinic Over Medical Data Security Concerns Microsoft Exchange, Outlook Under Siege By APTs China Revises Laws to Strengthen Protection of Minors Online Instagram’s Handling of Children’s Data Under EU Investigation Nation-State Actor Hit Google With the Largest DDoS Attack Microsoft Issues Out-of-Band Windows Security Updates for RCE Bugs Mysterious ‘Robin Hood’ Hackers Donating Stolen Money Rapper Scams $1.2M in COVID-19 Relief, Gloats with ‘EDD’ Video Phishers Capitalize on Headlines with Breakneck Speed FBI Warns of Newly Registered Domains Spoofing U.S. Census Bureau Hackers Smell Blood as Schools Grapple With Virtual Instruction Microsoft is the Most-Imitated Brand for Phishing Emails Toshiba Targets $3 Billion Revenue in Quantum Cryptography by 2030 Lawsuit Accuses Indian Hackers of Leaking Businessman’s Emails

Verificient Technologies’ Anti-Cheating Software Suffers Data Breach Fanduel, Draftkings Data Provider Stats Perform Hit by Ransomware Attack Albion Online Game Maker Discloses Data Breach Haldiram’s (India) Hit by Ransomware Attack, Hackers Asked for $7.5 Lakh Hackers Hijack Telegram, Email Accounts in SS7 Mobile Attack Hackers Now Abuse BaseCamp for Free Malware Hosting Cyber-attack on Yazoo County School District (MS) Costs $300k Michigan Medicine Notifies Patients of Email Information Breach Waze Vulnerability Lets Attackers Track and Identify Users Coinbase Phishing Hijacks Microsoft 365 Accounts via OAuth App Ryuk Ransomware Gang Uses Zerologon Bug for Lightning-Fast Attack Overlay Malware Targets Windows Users with a DLL Hijack Twist Watch Out for Emotet Malware’s New ‘Windows Update’ Attachment GravityRAT Comes Back to Earth with Android, macOS Spyware ThunderX Ransomware Rebrands as Ranzy Locker, Adds Data Leak Site Google Warns of Zero-Click Bluetooth Flaws in Linux-based Devices

10/15/2020

Study: Half of Battleground States Facing Cybersecurity Challenges Ahead of Election Twitter Locks Trump Campaign Account …Twitter Suffers Massive Outage; ‘No Evidence’ of Hack or Security Breach Iran Says Hackers Attacked Two of Its Key Institutions Trump Administration Rolls Out Strategy to Secure, Promote Critical Technologies Data Breaches Hit Thousands of K-12 Students, Federal Watchdog Reports Federal Watchdog Finds Escalating Cyberattacks on Schools Pose Potential Harm to Students How One Family’s Nightmare Illustrates the Growing Threat of Real Estate Wire Fraud Microsoft Now Lets You Disable Insecure JScript in Internet Explorer US Indicts Money Launderers From Criminal Organization QQAAZZ

Krebs: Breach at Dickey’s BBQ Smokes 3M Cards Broadvoice Leak Exposes 350M Records, Personal Voicemail Transcripts Crytek Hit by Egregor Ransomware, Ubisoft Data Leaked Robinhood Internal Probe Finds Hackers Hit Almost 2,000 Accounts Barnes & Noble Hack: A Reading List for Phishers and Crooks Online Proctor Service ProctorTrack Disables Service After Hack Yorktown, Croton-Harmon Schools (NY) Suffer Cybersecurity Attacks Possible Data Breach Exposes 2,219 Patient Files at McLaren Oakland Hospital (MI) FIFA 21 Blockbuster Release Gives Fraudsters an Open Field for Theft Critical Magento Holes Open Online Shops to Code Execution

10/14/2020

Facebook and Twitter Reducing Distribution of New York Post Hunter Biden Story Twitter’s Security Fell Short Before Hack Targeting Celebrities, Regulator Says YouTube Bans COVID-19 Vaccine Misinformation New York Regulator Urges Oversight for Social-Media Giants Iranian Hackers Restart Attacks on Universities as the New School Year Begins Zoom Rolls Out End-to-End Encryption (E2EE) Next Week Police Raided German Spyware Company FinFisher Offices Brit Webcam Criminal Snared in FBI Luminositylink Creepware Sting Spared Prison The Important Difference Between Cybersecurity And Cyber Resilience (And Why You Need Both)

Carnival Confirms Passenger Data Compromised Cyber Attack Disrupts Remote Learning in Sandwich Public Schools (MA) FIN11 Cybercrime Gang Shifts Tactics to Double-Extortion Ransomware Travelex, Other Orgs Face DDoS Threats as Extortion Campaign Rages On Canva Design Platform Actively Abused in Credentials Phishing Google, Intel Warn on ‘Zero-Click’ Kernel Bug in Linux-Based IoT Devices Critical SonicWall VPN Portal Bug Allows DoS, Worming RCE U.S. Cyber Command: Patch Windows ‘Bad Neighbor’ TCP/IP Bug Now Microsoft Rolls Out New Edge Extensions API but Promises to Leave Ad Blockers Alone

10/13/2020

State Officials Warn of Delayed Election Results From Influx of Mail-in Ballots …Election Systems Under Attack via Microsoft Zerologon Exploits …As Voters Cast Their Ballots, Courts Nationwide Issue Election Security Edicts …Cut Cable Shuts Down Virginia’s Online Voter Registration Russia Blamed for Cyber-attack on Norwegian Parliament US GAO Calls for Greater Cybersecurity for Commercial Airplanes Security Experts Warn of Amazon Prime Day Scams Executive Overconfidence a Security Risk How to Improve the Cybersecurity of Your Remote Workers

London’s Hackney Borough Council Hit by Hack Attack International Law Firm Seyfarth Discloses Ransomware Attack Miami Tech Company Intcomex Suffers Major Data Breach Facility Services Provider Spotless Suffers Ransomware Attack Lemon Duck Cryptocurrency-Mining Botnet Activity Spikes Authentication Bug Opens Android Smart-TV Box to Data Theft Windows and Mac Users Alike Urged to Patch PhantomPDF Over Use-After-Free Vulns Critical Flash Player Flaw Opens Adobe Users to RCE Krebs: Microsoft Patch Tuesday, October 2020 Edition

10/9-12/2020

Court Orders Seizure of Ransomware Botnet Controls as U.S. Election Nears Hackers Used VPN Flaws to Access Us Gov’t Elections Support Systems Georgia Marred by Technical Problems, Long Lines on First Day of Early Voting DHS: Unknown Hackers Targeted the U.S. Census Bureau Network Cyber-attacks on Angolan Journalists Who Reported Government Corruption Thai Army Denies Twitter Disinformation Campaign After Takedowns Cambridge University Releases Fake News Game Krebs: Microsoft Uses Trademark Law to Disrupt Trickbot Botnet …Krebs: U.S. Cyber Command Behind Trickbot Tricks (WashPo Report) Gov-Linked “Fatima” Cybersecurity Career Advert Removed After Backlash Facebook Debuts Bug-Bounty ‘Loyalty Program’ Budget and Hiring Practices Hinder Cities’ Cybersecurity Efforts Ransomware Attackers Buy Network Access in Cyberattack Shortcut Here’s How Many Americans Still Secretly Use Their Ex’s Passwords Cybercriminals Are Impersonating Parents for Ransomware Attacks on Teachers 55 New Security Flaws Reported in Apple Software and Services

Software AG Hit by Data-Stealing Ransomware Attack Cyber Attack Targets Georgia Department of Human Services City of Mt. Pleasant (MI) Falls Victim to Remote Ransomware Attack Franklin, MA Loses $522K to ‘Spear Phishing’ Cyberattack Investigation Underway After Tyngsboro (MA) Schools Hit by Cyberattack Police Investigating Cyber Attack on Walled Lake (MI) School District Fairfax County Public Schools (AV) Announces Student, Teacher PII Leaked to the Dark Web Robinhood Says Some Customer Accounts May Have Become Target of Hackers India Lab Testing Company Dr Lal PathLabs Exposed Sensitive Patient Data Lake George Conservancy Hit by Ransomware Attack Ransomware Gang Exposes Truckers’ PII After Attack on Daseke Carrier E.W. Wylie Fitbit Spyware Steals Personal Data via Watch Face Undocumented Backdoor That Covertly Takes Snapshots Found in Xplora’s X4 Kids’ Smartwatch Wormable Apple iCloud Bug Allows Automatic Photo Theft QBot Uses Windows Defender Antivirus Phishing Bait to Infect PCs BazarLoader Used to Deploy Ryuk Ransomware on High-Value Targets Sophisticated Android Ransomware Executes with the Home Button Windows Update Can Be Abused to Execute Malicious Files

10/8/2020

Facebook, Twitter Dismantle Global Array of Disinformation Networks U.S. Seizes 92 Domains Used by Iran for ‘Global Disinformation Campaign’ Judge Orders Twitter To Unmask FBI Impersonator Who Set Off Seth Rich Conspiracy Trojan Malware Targets Trump Supporters Amazon Prime Day Spurs Spike in Phishing, Fraud Attacks New EU ‘Gateway’ Will Link Coronavirus Apps Across Borders Justice Department Rolls Out Report Detailing Cryptocurrency Security Threats Waterbear Malware Used in Attack Wave Against Government Agencies Krebs: Amid an Embarrassment of Riches, Ransom Gangs Increasingly Outsource Their Work Former eBay Workers Plead Guilty to Cyberstalking Campaign Against Couple

Wisepay: School Payments Service Hit by Cyber-Attack Springfield Public Schools District (MA) Shut Down by Ransomware Attack Hall County (GA) Phone Services Available After Wednesday Ransomware Attack, Recovery Ongoing Data Breach at AAA Ambulance Service (MS) Exposes Sensitive Information of Patients RAINBOWMIX Apps in Google Play Serve Up Millions of Ad Fraud Victims Sam’s Club Customer Accounts Hacked in Credential Stuffing Attacks MontysThree APT Takes Unusual Aim at Industrial Targets HEH P2P Botnet Sports Dangerous Wiper Function Microsoft Azure Flaws Open Admin Servers to Takeover Cisco Fixes High-Severity Webex, Security Camera Flaws

10/7/2020

Huawei: ‘Clear Evidence of Collusion’ With Chinese Communist Party Facebook to Slap Labels on Posts if Candidates Prematurely Declare Victory Phishing Emails Lure Victims With Inside Info on Trump’s Health IRS COVID-19 Relief Payment Deadlines Anchor Convincing Phish U.S. Brokerage Firms Warned of Widespread Survey Phishing Attacks Remote Workers Keep IT Issues to Themselves ‘Mercenary’ Hacker Group ‘Bahamut’ Runs Rampant in Middle East, Cybersecurity Research Shows Krebs: Promising Infusions of Cash, Fake Investor John Bernard Walked Away With $30M UK Regulator Bans Cryptocurrency Derivatives Ukraine Plan to Tackle Hackers Sparks Privacy Fears Supreme Court Hears Landmark $9B Copyright Fight Between Oracle, Google

More Than 1,600 Mayo Clinic Patients Impacted by Privacy Breach Heartland Community College (IL) Addressing Cybersecurity Breach Ransomware Hackers Claim Attack on Texas Customs Broker Daniel B. Hastings Former Congress Member Katie Hill’s Twitter Account Hacked After Movie Deal Announcement Mumbai University Distance Education Exams Hit By Cyber Attack Eight Exchange Operators Also Attacked During New Zealand Hack, Says Cyber Intelligence Group Chairman PoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating Conflict Comcast TV Remote Hack Opens Homes to Snooping QNAP Fixes Critical Flaws That Could Lead to Device Takeover Google’s Chrome 86: Critical Payments Bug, Password Checker Among Security Notables Microsoft Adds Consent Phishing Protection to Office 365

10/6/2020

DHS Points to Russia as Key Disinformation Threat Ahead of Election Officials Urge Social Media Groups to Weed Out Election Disinformation Targeting Minority Voters APT Attack Injects Malware into Windows Error Reporting CISA: Emotet Increasing Attacks on U.S. State, Local Governments Israeli Government Reportedly Investigating Unsuccessful Hack Targeting Crypto CEOs More Than 100 Charities Report Being Caught up in Blackbaud Ransomware Attack EU Seeks Authority to Cut Off Banks’ Tech Suppliers if Found Wanting on Cybersecurity Anti-Virus Creator John McAfee Arrested Over Tax Evasion Charges Cisco Ordered to Pay $1.9 Billion for Security Patent Infringement

Boom! Mobile Customer Data Lost to Fullz House/Magecart Attack Chowbus Delivery Service Breached, Hacker Emails Data to Users Qiui’s Cellmate Male Cage Chastity Gadget Hack Could Lock Users In REvil Ransomware Gang Offers $1 Million As Part Of Recruitment Drive Malware Campaigns Deliver Payloads via Obscure Paste Service Unpatched Apple T2 Chip Flaw Plagues Macs Chrome 86 Rolls Out With Massive User Security Enhancements Cloudflare Can Now Send DDoS Alerts for Sites Are Under Attack

10/2-5/2020

Majority of Americans Concerned About Potential Foreign Election Interference: Poll Voter Registration ‘Error’ Phish Hits During U.S. Election Frenzy Ransomware Disrupts COVID-19 Medical Trials Her Majesty’s Revenue and Customs (HMRC) Hit by Multiple Phishing and Spam Emails CEOs of Google, Facebook and Twitter to Testify Before Senate Years-Long ‘SilentFade’ Attack Drained Facebook Victims of $4M LatAm Banking Trojans Collaborate in Never-Before-Seen Effort Rare Bootkit Malware Targets North Korea-Linked Diplomats Microsoft: Iranian Hackers Actively Exploiting Windows Zerologon Flaw Krebs: Attacks Aimed at Disrupting the Trickbot Botnet A Millionaire Hacker’s Lessons for Corporate America Video-Game Piracy Group ‘Team Xecuter’ Leaders in Custody Researchers Mixed on Sanctions for Ransomware Negotiators Ransomware Victims Aren’t Reporting Attacks to Police. That’s Causing a Big Problem Malware Families Turn to Legit Pastebin-Like Service

Egregor Ransomware Threatens ‘Mass-Media’ Release of Corporate Data Hacker Group Compromises Mobile Provider to Steal Credit Cards Grindr Fixed a Bug Allowing Full Takeover of Any User Account Students and Employees Notified of Gulf Coast State College Data Breach Horry County (SC) Police Investigating After Virtual Classroom Hacked, According to District Black-T Malware Emerges From Cryptojacker Group TeamTNT Tenda Router Zero-Days Emerge in Spyware Botnet Campaign Crypto-Mining Malware Adds Linux Password Stealing Capability Mosaicregressor: Second-Ever UEFI Rootkit Found in the Wild Post Grid WordPress Plugin Flaws Allow Site Takeovers HP Device Manager Backdoor Lets Attackers Take Over Windows Systems New Flaws in Top Antivirus Software Could Make Computers More Vulnerable New Ransomware Vaccine Kills Programs Wiping Windows Shadow Volumes Hacker Uploads Own Fingerprints To Crime Scene In Dumbest Cyber Attack Ever

10/1/2020

Huawei ‘Failed to Improve UK Security Standards’ Lawmakers Introduce Bill Targeting Foreign Disinformation on Social Media Privacy, Civil Rights Groups Demand Transparency From Amazon on Election Data Breaches Emotet Emails Strike Thousands of DNC Volunteers New Service Checks if Your Email Was Used in Emotet Attacks Twitter Shutters 130 Iranian Accounts Trying to Disrupt Presidential Debate Online Journals Flagged as Election Disinformation Threat U.S. Treasury Warns Cyber Insurers Payments to Hackers May Violate Sanctions Krebs: Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam Universal Health Services Says Its Network Is Being Restored After Malware Incident Cloud Biz Blackbaud Admits Ransomware Criminals May Have Captured Folks’ Bank Info H&M Fined €35.2m for GDPR Violations

Global Regulator International Maritime Organization Hit by Cyberattack Hackers Leak Files Stolen in Pakistan’s K-Electric Ransomware Attack Nebraska Medicine Provides Update on ‘Cyber Attack’ Causing Network Issues InterPlanetary Storm Botnet Infects 13K Mac, Android Devices Experts Warn of $15m Global BEC Campaign Ransomware Gangs Add DDoS Attacks to Their Extortion Arsenal Cryptojacking: The Unseen Threat Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs Spammers Smuggle LokiBot Via URL Obfuscation Tactic Critical Flaws Discovered in Popular Industrial Remote Access Systems NVIDIA Fixes High Severity Flaws in Windows Display Driver

9/30/2020

House Panel Says U.S. Intelligence Community Not Equipped to Address Evolving Chinese Threats Chinese APT Group Palmerworm (aka BlackTech) Targets Media, Finance, and Electronics Sectors Android Spyware Variant From APT-C-23 (aka Two-Tailed Scorpion and Desert Scorpion) Snoops on WhatsApp, Telegram Messages North Korea Has Tried to Hack 11 Officials of the UN Security Council DFAT Reveals Email Addresses of Vulnerable Australians Stranded Overseas Facebook Small Business Grants Spark Identity-Theft Scam Federal Internet of Things Security Rules Could Provide Blueprint for Private Sector Anthem to Pay Nearly $40 Million to Settle Data Breach Probe by U.S. States Two Charged for Hacking NBA, NFL Players’ Social Media Accounts Russian Hacker, Described as ‘Brilliant’ by Judge, Gets Seven Years in U.S. Prison for Raiding LinkedIn, Dropbox

Kylie Jenner’s Makeup Company Warns of Data Breach Applicants Say a DC Bar Website Bug Exposed Their Personal Data and Background Checks Northern California Casino Cache Creek Casino Resort Shut Down by External Computer Attack, May Be Ransomware Cyber Attack Interrupts Online Learning at Greece Central School District (NY) Patient Data Compromised in Oaklawn (MI) Email Security Incident Some Pell City (AL) Utility Customers May Have Suffered Data Breach QNAP Warns Customers of Recent Wave of Ransomware Attacks Blackbaud: Ransomware Gang Had Access to Banking Info and Passwords OAuth Consent Phishing Ramps Up with Microsoft Office 365 Attacks Microsoft Exchange Servers Still Open to Actively Exploited Flaw

9/29/2020

Nokia Clinches 5G Deal With BT to Phase Out Huawei’s Kit in EE Network Biden Campaign Urges Facebook to Remove Trump Posts Spreading ‘Falsehoods’ Krebs: Who’s Behind Monday’s 14-State 911 Outage? Microsoft Outage Was Not Part of ‘Coordinated Campaign,’ Says Cybersecurity Agency Microsoft Reports Spike in Foreign Targeting of COVID-19 Researchers, Think Tanks Universal Health Says Corporate Network Remains Offline Shipping Firm CMA CGM Says No Communications Breach in Cyber Attack Amazon One: Palm Scanner Launched for ‘Secure’ Payments

Swatch Shuts Down Some Technology Systems After Cyberattack Ransomware Hits Us-Based Arthur J. Gallagher Insurance Giant Health-Care Provider Medisys Reports Data Breach Affecting 60,000 Clients Plane-Tracking Site Flight Radar 24 DDoS’d… Just as Drones Spotted Buzzing Over Azerbaijan and Armenia Hacker Releases Information on Clark County (NV) Students After Officials Don’t Pay Ransom Fake Software Crack Sites Used to Push Exorcist 2.0 Ransomware Over 247k Exchange Servers Unpatched for Actively Exploited Flaw Cisco Fixes Actively Exploited Bugs in Carrier-Grade Routers Microsoft Clarifies Patch Confusion for Windows Zerologon Flaw

9/28/2020

Federal Agencies Warn of Disinformation Around Cyberattacks on Election Infrastructure Hacking Voting Systems to Be a Federal Crime in US Twitter Appoints Rinki Sethi as New Information Security Head Researchers Uncover Cyber Espionage Operation Aimed At Indian Army 20% of Remote Staff Have Downloaded Company Data on Personal Devices Awareness Is Everything in Cybersecurity — Until It Wears Off Tennessee Bureau Urges Parents to Supervise Children Online OCR Imposes $6.85M Penalty, 2nd Largest HIPAA Violation Fine Ever, on Premera Blue Cross Over Data Breach

Universal Health Services (UHS) Hit With Cyberattack, Potentially Largest Hospital Attack in U.S. History Shipping Group CMA CGM Says Dealing With Cyber Attack Scouts Victoria Reports Data Breach After Employee Duped by Phishing Campaign Data Breach within Elite Comms Group Montgomery County (TN) Computer Network Back up After Weekend Outage Due to Data Security Breach Fashion Retailer BrandBQ Exposes Seven Million Customer Records Windows 7 ‘Upgrade’ Emails Steal Outlook Credentials REvil Ransomware Deposits $1 Million in Hacker Recruitment Drive

9/25-27/2020

Judge Blocks Trump Administration’s Ban on New TikTok Downloads From U.S. App Stores White House Chief of Staff Knocks FBI Director Over Testimony on Election Fraud Tyler Technologies Says Clients Reported Suspicious Logins After Hack Microsoft Kills 18 Azure Accounts Tied to Nation-State Attacks Facebook Takes Down More Beijing-Backed Fake Accounts Google to Temporarily Bar Election-Related Ads After Polls Close on Nov. 3 Facebook Critics Launch Alternative Oversight Board Could Estonia Be the Model for Secure Online Voting? Brussels Report: Governments’ Concerns Rise About Pandemic Cyberattacks on Health Care Industrial Cyberattacks Get Rarer but More Complex Ring’s Flying In-Home Camera Drone Escalates Privacy Worries Trump Administration Signs AI Research and Development Agreement With the UK Student Arrested Over Cyber-attacks on Indiana Schools Krebs: Who is Tech Investor John Bernard?

Cyber-Partisans Hack Websites of State Channels in Belarus Hackers Have Infiltrated Many of Washington State’s Agencies Millcreek Township (PA) Confirms Computer System Hacked Hungarian Banks, Telecoms Services Briefly Hit by Cyber Attack: Magyar Telekom FinSpy Spyware for Mac and Linux OS Targets Egyptian Organisations KuCoin Cryptocurrency Exchange Hacked for $150 Million Twitter Is Warning Devs That API Keys and Tokens May Have Leaked Techies Scramble to Fix Airbnb Website Bug That Let Strangers Read Each Others’ Account Messages Louis Vuitton Fixes Data Leak and Account Takeover Vulnerability Coffee Machine Hit By Ransomware Attack—Yes, You Read That Right Most Local Banks Ignore Cyber Security FortiGate VPN Default Config Allows MitM Attacks ThunderX Ransomware Silenced With Release of a Free Decryptor Pastebin Adds ‘Burn After Read’ and ‘Password Protected Pastes’ to the Dismay of the Infosec Community Microsoft Windows XP Source Code Reportedly Leaked Online

9/24/2020

ByteDance Applies for Export License From China as TikTok Deal Waits for Approval Fears Mount Over Russian and Chinese Hackers Targeting the 2020 U.S. Presidential Election …Facebook Removes Hundreds of Accounts Linked to Russian Agencies Ahead of Election …Despite Ransomware Attack, Tyler Technologies Says Election Programs Safe …FBI, DHS Say They Have ‘Not Identified’ Hacking Schemes to Change Vote Tallies Ahead of U.S. Election …FBI Director Casts Doubt on Concerns Over Mail-in Voting Fraud …But Warns That Chinese Hackers Are Still Targeting U.S. COVID-19 Research Undisclosed Federal Agency Hit With Successful Cyberattack, Data Stolen U.S. Customs and Border Protection Failed to Safeguard Data Microsoft Supports Commission Calling for Re-Establishment of U.S. Cyber Czar UAE, Israeli Cyber Chiefs Discuss Joining Forces to Combat Common Threats Polish Police Shut Down Hacker Super-Group Involved in Bomb Threats, Ransomware, Sim Swapping

French Based GEFCO Hit by Cyber Attack Free Apple iPhone 12? Chatbot Scam Spreads Via Texts Phishing Attacks Are Targeting Your Social Network Accounts Scammers Drain Bank Accounts Using AnyDesk and Sim-Swapping Krebs: Microsoft Says Attackers Exploiting ‘ZeroLogon’ Windows Flaw Mount Locker Ransomware Joins the Multi-Million Dollar Ransom Game Alien Android Banking Trojan Sidesteps 2FA Major Instagram App Bug Could’ve Given Hackers Remote Access to Your Phone Instagram Bug Allowed Crashing the App via Image Sent to Device Cisco Patch-Palooza Tackles 29 High-Severity Bugs Cybersecurity: Your Supply Chain Is Now Your Weakest Link Cyberattacks Are Fast Becoming a Physical Threat

9/23/2020

Here’s Why Most Americans Are Not Able to Vote Online in 2020 Treasury Sanctions Individuals, Groups Tied to Russian Malign Influence Activities Democrats Call for Declassifying Election Threats After Briefing by Trump Officials Gamer Credentials Now a Booming, Juicy Target for Hackers Hackers Sell Access to Your Network via Remote Management Apps Thieves Fail to Auction Bruce Springsteen’s Legal Documents Supreme Court Review of Hacking Law Puts Cybersecurity Researchers on Alert Four Former eBay Workers to Plead Guilty in U.S. to Cyberstalking Campaign

Krebs: Govt. Services Firm Tyler Technologies Hit in Apparent Ransomware Attack India’s COVID-19 Surveillance Tool Exposed Millions of User Data Town Sports Fitness Chains Suffer Data Breach Affecting 600k Customers Shopify Insiders Attempted to Steal Customer Transactional Records OldGremlin Ransomware Group Bedevils Russian Orgs CISA: LokiBot Stealer Storms Into a Resurgence AgeLocker Ransomware Targets QNAP NAS Devices, Steals Data Tor Browser 10 Released to Sync With Latest Firefox ESR Version

9/22/2020

‘Hooligan Logic’: Chinese State Media Hardens Stance on TikTok Deal, Casts Doubt Over Beijing’s Approval …Popular TikTok Profiles Promote Scammy Apps Generating $500,000 U.S. Warns ‘Foreign Actors’ Aim to Sow Doubts Over Mail-in Voting Russian Hackers Use Fake NATO Training Docs to Breach Gov’t Networks Fatal Hospital Hack Linked to Russia Government Watchdog Recommends Creation of White House Cyber Director Position Trump to Meet With Republican State Attorneys General on Tech Liability Shield Uncomplicated Cyber Insurance Program Launched Hackers Harassed Teen Daughter of Ransomware Target in St. Louis, Feds Say Authorities Arrest 179 in Crackdown on Opioid Trafficking on Darknet British Hacker Sentenced to 5 Years for Blackmailing U.S. Companies

Data Breach at Stony Brook University Hospital St. Clair County Government (AL) Target of Cyber Attack Anglicare Sydney Hit by Ransomware Activision Refutes Claims of 500K-Account Hack Emotet Double Blunder: Fake ‘Windows 10 Mobile’ and Outdated Messages Google Cloud Buckets Exposed in Rampant Misconfiguration Google Chrome Bugs Open Browsers to Attack Known Citrix Workspace Bug Open to New Attack Vector Microsoft Overhauls Patch Tuesday Security Update Guide Firefox 81 Release Kills High-Severity Code-Execution Bugs

9/21/2020

‘Unfair’ but Not the Worst-Case Scenario: Chinese State Media Reacts to ‘Reasonable’ TikTok Deal …Chinese Leaders Split Over Releasing Blacklist of U.S. Companies …Murky TikTok Deal Raises Questions About China’s Role …ByteDance Says It Will Not Transfer Algorithm and Technology to Oracle as Part of TikTok Deal …ByteDance Says It Will Own 80% of TikTok Global, Contradicts Trump’s Claims Deal Has ‘Nothing to Do With China’ …Oracle Can Now Claim to Be Hosting ‘Two Most Important Sites of Our Generation’ — TikTok and Zoom 2.5 Million U.S. Users Register to Vote Using Facebook, Instagram, Messenger US CISA: Agencies Must Patch Zerologon Bug by Monday Phishing Awareness Training Wears off After a Few Months Firefox for Android Bug Allows ‘Epic Rick-Rolling’

Cyber-Criminals Spoof Texas Government Activision Accounts Have Been Hacked, Fans Recommended To Change Passwords Immediately Data of More Than 500,000 Referees Stolen in Botched Ransomware Hack of ArbiterSports University of Tasmania Students’ Personal Information Exposed in Email Bungle U of Missouri Health Care Email Hack Exposes Info of 5,000 Patients Ray-Ban Owner Luxottica Reportedly Hit With Cyberattack Unsecured Microsoft Bing Server Leaks Search Queries, Location Data Strava App Shows Your Info to Nearby Users Unless This Setting Is Disabled Android Malware Bypasses 2FA And Targets Telegram, Gmail Passwords Popular Password Manager BitWarden Could Have a Critical Vulnerability

9/18-20/2020

U.S. to Rein In TikTok, WeChat on Sunday …Trump Says He Has Approved a Deal for Purchase of TikTok …Federal Judge Blocks Trump Administration’s U.S. WeChat Ban TikTok: Security Experts Weigh in on the App’s Risks Twitter Beefs up Security for U.S. Election Candidates Officials Say NASA Facing Increased Targeting by Foreign and Domestic Hackers Researchers Discover Six-Year Espionage Campaign Targeting Iranian Dissidents FinCEN Files: HSBC Moved Ponzi Scheme Millions Despite Warning SecOps Teams Wrestle with Manual Processes, HR Gaps The Cybersecurity Threat No One Talks About Is A Simple Code Lawsuit Accuses Facebook of Using Mobile Phone Cameras to Spy on Instagram Users Prosecutors Open Homicide Case After Hacker Attack on German Hospital Cyber-fraud Prevention Company CEO Charged with Fraud

Leading U.S. Laser Developer IPG Photonics Hit With Ransomware Hackers Leak Details of 1,000 High-Ranking Belarus Police Officers Argentina Hack Reveals Data on Thousands of Swiss Travellers Cyber Attack on India’s National Informatics Centre (NIC) Computers FBI Joins Probe of City Carmel (IN) Website Hack: Site Still Shut Down Netwalker Goes After the College of the Nurses of Ontario Tutanota Encrypted Email Service Suffers DDoS Cyberattacks Google App Engine Feature Abused to Create Unlimited Phishing Pages Stubborn WooCommerce Plugin Bugs Get Third Patch A Bug Could Let Attackers Hijack Firefox for Android via Wi-Fi Network Android 11 — 5 New Security and Privacy Features You Need to Know Microsoft Sysmon Now Logs Data Copied to the Windows Clipboard Microsoft Removes Windows Defender Ability After Security Concerns

9/17/2020

Politics Surrounding TikTok’s Future in the U.S. Pollute Valid Data Security Concerns, Expert Says Twitter Mandates Lawmakers, Journalists to Beef up Passwords Heading Into Election FBI Chief Says Russia Is Trying to Interfere in Election to Undermine Biden Former Australian Prime Minister Tony Abbott Hacked After Posting Boarding Pass on Instagram Video Encoders Using Huawei Chips Have Backdoors and Bad Bugs – Chinese Giant Says It’s Not to Blame Treasury Dept. Sanctions Iranian Government-Backed Hackers U.S. Charges Three Iranians Over Satellite Tech Firm Hacking Krebs: Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

Fatality After German Hospital Hacked Conroe Independent School District (TX) Makes System Adjustments Following Cyber Attack Universities Face Increase in Ransomware Attacks as Students Return Drug Spammers Start Using New Technique to Bypass Spam Filters Apple Bug Allows Code Execution on iPhone, iPad, iPod Hands on With iOS 14’s New Data Breach Notification Feature Maze Ransomware Now Encrypts via Virtual Machines to Evade Detection Mozi Botnet Accounts for Majority of IoT Traffic Google Play Bans Stalkerware and ‘Misrepresentation’

9/16/2020

Trump Administration Pushes for U.S. Control of TikTok Joe Biden’s Official App Had a Bug That Exposed User Voting History Hackers Continue Cyberattacks Against Vatican, Catholic Orgs FBI adds 5 Chinese APT41 Hackers to its Cyber’s Most Wanted List U.S. Charges Chinese Nationals in Cyberattacks on More Than 100 Companies Krebs: Two Russians Charged in $17M Cryptocurrency Phishing Spree

University Hospital New Jersey Hit by SunCrypt Ransomware, Data Leaked Hackers Take ID Information of Residents at Cincinnati Nursing Homes Hackers Post Stolen Data From Manitoulin Transport Following Cyber-Attack LockBit Ransomware Launches Data Leak Site to Double-Extort Victims This Security Awareness Training Email Is Actually a Phishing Scam Google Chrome Is Making It Easier to Reset Compromised Passwords

9/15/2020

TikTok, Oracle Seek Trump’s Approval as Clock Ticks Down TikTok Strives to Settle Privacy Lawsuit as Oracle Deal Nears Chinese Database Details 2.4 Million Influential People, Their Kids, Addresses, and How to Press Their Buttons Surge in DDoS Attacks Targeting Education and Academic Sector QR Codes Serve Up a Menu of Security Concerns Report: 97% of Cybersecurity Companies Have Leaked Data on the Dark Web Two Hackers Indicted for Allegedly Defacing U.S. Websites After Death of Iranian General

NZX Again Under Cyber Attack, but Trading Continues Blue Water Hit by Cyber Attack MFA Bypass Bugs Opened Microsoft 365 to Attack Windows Exploit Released For Microsoft ‘Zerologon’ Flaw Windows 10 ‘Finger’ Command Can Be Abused to Download or Steal Files IBM Spectrum Protect Plus Security Open to RCE Adobe Releases Out-of-Band Security Update for Adobe Media Encoder

9/14/2020

TikTok Fixes Flaws That Opened Android App to Compromise Privacy Issues Found in Vote Joe App Feds Warn Nation-State Hackers are Actively Exploiting Unpatched Microsoft Exchange, F5, VPN Bugs UK Government Releases Toolkit to Easily Disclose Vulnerabilities Researchers, Companies Slam Mobile Voting Firm Voatz for ‘Bad Faith’ Attacks Trucking Firms Grapple With Cybersecurity Amid New Regulation and Risks Krebs: Due Diligence That Money Can’t Buy Blackbaud Ransomware Demonstrates the Potential Devastation Caused by Supply Chain Attacks

VA Hit by Data Breach Impacting 46,000 Veterans Cloud Leak Exposes 320M Dating-Site Records Staples Discloses Data Breach Exposing Customer Info Newhall Schools (CA) Put Virtual Lessons on Hold Due to Ransomware Attack DeFi Platform bZX Sees New $8m Hack From One Misplaced Line of Code Magecart Attack Impacts More Than 10K Online Shoppers Travel Sites Riddled with Hundreds of Vulnerabilities

9/11-13/2020

Oracle Wins Bid for TikTok in U.S., After Microsoft Proposal Rejected Russia and China Dismiss Microsoft Allegations of Bids to Hack Biden and Trump Camps Russian-linked APT28 Mounts Rapid, Large-Scale Theft of Office 365 Logins U.K. Government Funds Cybersecurity Assessments for Smaller Medical Suppliers Cyber Attacks in Paterson (NJ) Hack Virtual Classrooms With Pornography, Threats Against Teachers It’s No ‘Giggle’: Managing Expectations for Vulnerability Disclosure Political Disruptor Charged with Wire Fraud Conspiracy

Fourth Judicial District Court of Louisiana Documents Published in Ransomware Attack U.S. Staffing Firm Artech Discloses Ransomware Attack, Data Breach Development Bank of Seychelles Hit by Ransomware Attack Moffitt Cancer Center (FL): Stolen Briefcase Exposed Data of 4,056 Cancer Patients WordPress Plugin Flaw Allows Attackers to Forge Emails Researcher Kept a Major Bitcoin Bug Secret for Two Years to Prevent Attacks

9/10/2020

Russian, Chinese Hackers Have Targeted 200 Groups Tied to U.S. Election, Microsoft Says …Kremlin Calls Reports ‘Nonsense’ Treasury Dept. Sanctions Russian, Ukrainian Individuals for Election Interference Chinese Ambassador’s Twitter Account “Hacked” Thai Hospitals and Companies Hit by Ransomware Attacks APT Groups Increasingly Targeting Linux-Based Devices Zoom Adds Two-Factor Authentication (2FA) Support to All Accounts Hackers Are Fighting a War Over 300k Vulnerable WordPress Sites How to Talk Vulnerability Management With the C-Suite – and Make Them Care Floyd Family Considers Legal Action After Alleged Hospital Data Breach

Razer Gaming Fans Caught Up in Data Leak St. Louis County Takes Down Website to Thwart Hackers Data Center Giant Equinix Discloses Ransomware Incident MAZE Claims Attack on Fairfax County Public Schools (VA) SoftServe Hit by Ransomware, Windows Customization Tool Exploited CDRThief Malware Targets VoIP Gear in Carrier Networks New Raccoon Attack Could Let Attackers Break SSL/TLS Encryption Bluetooth Bug Opens Devices to Man-in-the-Middle Attacks Office 365 Phishing Runs Real-Time Check of Stolen Domain Logins

9/9/2020

Key Swing States Could Face ‘Serious Problems’ With Voting, House Warns Former DHS Chiefs Call for Stepped-Up Response to Election Threats Whistleblower Alleges Top DHS Officials Sought to Alter Intelligence Products to Fit Trump’s Comments TikTok, U.S. Discuss Ways to Avoid Sale …Spyware Labeled ‘TikTok Pro’ Exploits Fears of US Ban Ireland to Order Facebook to Stop Sending User Data to U.S. Fake Alert Scams Increasingly Targeting Mobile Networks Singapore to Begin Nationwide Distribution of COVID-19 Contact Tracing Wearables Cyber Chiefs Calculate Data Breach Costs to Explain Risks to Executives Employee Social Media Use Viewed as Risky

Leading U.S. Video Delivery Provider SeaChange International Confirms Ransomware Attack Fort Dodge Community School District (IA) Cancels Thursday Classes Following Cyber Attack on Internet and Phones Toledo Public Schools (OH) Provides Update on Cyberattack NZX Website Hit by Renewed Cyber Attacks, but Trade Continues TeamTNT Gains Full Remote Takeover of Cloud Instances Zeppelin Ransomware Returns with New Trojan on Board Google Squashes Critical Android Media Framework Bug Samsung Fixes Critical Android Flaws With September Updates Azure Now Installs Security Updates on Windows VMs Automatically

9/8/2020

China Accuses U.S. of ‘Bullying’ as It Touts New Global Data Security Push Top U.S. Federal Election Protection Official Says No Sign of Infrastructure Hacks Japan & New Zealand Also Warn of Sudden Uptick in Emotet Trojan Attacks Officials Warn Privacy Shield Replacement May Be a Long Way Off DOJ Scam Targets Elderly Americans Almost a Quarter of UK Work Computers Lack Adequate Security Software How to Respond to a Data Breach iPhone Users: Do This Simple Thing Every Week How Kids’ Videogame Accounts Get Hacked: Advice for Parents Make Cybersecurity a Strategic Asset Bug in Google Maps Opened Door to Cross-Site Scripting Attacks Critical Intel Active Management Technology Flaw Allows Privilege Escalation Krebs: Microsoft Patch Tuesday, Sept. 2020 Edition

Netwalker Ransomware Hits Pakistan’s Largest Private Power Utility Major Chilean Bank Banco Estado Shuts Down All Branches Following Ransomware Attack Hartford (CT) Postpones First Day of School After Ransomware Attack Pickens School District (SC) Says Cyberattack Caused Internet Outages District-Wide Texell Credit Union (TX) Reports Data Breach Eterbase’s Hack: $5 Million From ‘Hot’ Wallets Lost European Crypto Exchange Falls Victim to $1.6M Hack Hackers Use Legit Tool to Take Over Docker, Kubernetes Platforms Webmaster Portal Leaks 63 Million Records Cryptobugs Found in Numerous Google Play Store Apps Bug in Google Maps Opened Door to Cross-Site Scripting Attacks Critical Adobe Flaws Allow Attackers to Run JavaScript in Browsers

9/4-7/2020

China to Launch Initiative to Set Global Data-Security Rules China Accuses U.S. of ‘Hegemony’ After Trump Administration Threatens to Sanction Chipmaker SMIC Chinese State Media Accuses India of ‘Jingoism’ Over App Ban France Warns of Emotet Attacking Companies, Administration FBI Issues Second Alert About ProLock Ransomware Stealing Data Netwalker Ransomware Hits Argentinian Government, Demands $4 Million Election Officials Prepare for New Russian Interference Battle Trump Security Adviser Says China Has Biggest Election-Interference Program Trump Administration Rolls Out Policy to Secure Outer Space Technologies Against Cyberattacks Pentagon Says Microsoft Still Deserves $10 Billion Jedi Cloud Contract Hackers Acting in ‘Good Faith’ Gain Protections in Homeland Security Order CEOs Could Be Held Personally Liable for Cyberattacks that Kill How Black Friday and Cyber Monday Can Go From a Retailer’s Dream Into a CiSO’s Worst Nightmare Healthcare Makes Case for Blockchain Use Despite Challenges

Israel’s Tower Semi Halts Some Operations After Cyber Attack Service NSW Reveals 738GB of Customer Data Was Stolen During Email Breach Sophisticated Phishing Scam Targeting Lloyds Bank Customers Data Breach At Northwestern Medicine Affects 56,000 Patients, Donors Personal Info of 1,700 Exposed in Oregon State University Computer Breach Somerset Berkley Regional High School (MA) a Victim of Ransomware Attack Two Ventura County (CA) School Districts Affected by Cyber Attack Roper St. Francis Hospital Employee Email Hack Exposes 6,000 Patient Medical Records Ransomware Gang Says They Are Behind Newcastle University Attack New PIN Verification Bypass Flaw Affects Visa Contactless Payments Attackers Steal Outlook Credentials Via Overlay Screens on Legitimate Sites Windows 10 Sandbox Activation Enables Zero-Day Vulnerability Windows 10 Themes Can Be Abused to Steal Windows Accounts WhatsApp Discloses 6 Bugs via Dedicated Security Site

9/3/2020

Russia Is ‘Amplifying’ Claims of Mail-In Voter Fraud, Intel Bulletin Warns …Top Democrats Press Trump to Sanction Russian Individuals Over 2020 Election Interference Efforts …Facebook and Twitter Labeled Trump’s Post About Voting Twice India Bans 118 Chinese Apps, Including Tencent’s Hit Games, as Border Tensions Flare Up U.S. Seizes Domains Used by Terrorists CISA Pushes Vulnerability Disclosure Policies Homeland Security to Propose Biometric Collection Rules Chief Executives Face Rising Accountability for Cyber Lapses MIT Helping Companies Prioritize Their Cybersecurity Investments Krebs: The Joys of Owning an ‘OG’ Email Account Teen Arrested for Alleged Cyberattacks on Miami-Dade Schools

Warner Music Group Finds Hackers Compromised Its Online Stores CNN-News18 Allegedly Hacked to Deny PayTM Hack Claims Cyber Threat Startup Cygilant Hit by Ransomware King George Schools (VA) Shut Down by Apparent Cyberattack FBI: Thousands of Orgs Targeted by RDoS Extortion Campaign European ISPs Report Mysterious Wave of DDoS Attacks Evilnum APT Adds Python-based PyVil RAT to Target FinTech Facebook to Warn Third-Party Developers of Vulnerable Code Google Rolls Out Secure DNS Support to Chrome for Android Google Ups Product-Abuse Bug Bounties

9/2/2020

Twitter Confirms Account of India PM Modi’s Personal Website Hacked DHS Withheld July Intelligence Bulletin Calling Out Russian Attack on Biden’s Mental Health DHS Cyber Agency Issues Order Boosting Cybersecurity Vulnerability Reporting U.S. Agencies Must Adopt Vulnerability-Disclosure Policies by March 2021 CISA Funds SLTT Cybersecurity Project UK NCSC Releases Cyber-Guidance Australian Government Releases Voluntary IoT Cybersecurity Code of Practice China-based APT TA413 Debuts Sepulcher Malware in Spear-Phishing Attacks U.S. Court: Mass Surveillance Program Exposed by Snowden Was Illegal Remote Learning During Pandemic Brings Privacy Risks Don’t Forget Cybersecurity on Your Back-to-School List Most Consumers Will Trade Their Data for Personalization Blackbaud: Hackers Have Donor Lists from 200 Institutions, Including the Smithsonian and the UK’s National Trust Darknet Moderator Jailed for 11 Years

New Zealand’s Mount Ruapehu’s Skifields Latest to Be Hit by Cyber Attacks Hackers Actively Exploiting Severe Bug in Over 300k WordPress Sites Somerset Berkley Regional High School (MA) a Victim of Ransomware Attack Northumbria University Suffers Major Disruption After Cyber Attack Cyber Attack at the Sixth Form Bolton Delays Students Returning Joker Spyware Plagues More Google Play Apps Attackers Abuse Google DNS Over HTTPS to Download Malware Triple-Threat Cryptocurrency RAT KryptoCibule Mines, Steals and Harvests Emotet Malware Uses Fake ‘Windows 10 Mobile’ Attachments Microsoft Defender Can Ironically Be Used to Download Malware Cisco Fixes Critical Code Execution Bug in Jabber for Windows

9/1/2020

TikTok Deal Talks Are Snarled Over Fate of App’s Algorithms …Chinese Researcher Arrested in Illegal Tech Theft Probe Hackers Test Defenses of Trump Campaign Websites Ahead of U.S. Election, Security Staff Warn …U.S. Voter Databases Offered for Free on Dark Web, Report …Federal Agencies Deny Seeing Attacks on Voting Infrastructure …Michigan Denies Hack After Public Voter Information Found on Russian Online Forum …Mark Zuckerberg and Priscilla Chan Are Donating $300 Million to Voting Efforts Norwegian Parliament Discloses Cyber-Attack on Internal Email System FBI: Ring Smart Doorbells Could Sabotage Cops U.S. Jails Racist Cyber-stalker Authorities Identify Another Teenager Behind Massive Twitter Hack

Iran-based Pioneer Kitten APT Sells Corporate Network Access New Zealand’s MetService Offline Again Today After Cyber Attack Miami-Dade County Public Schools’ Virtual Learning System Hit by Cyber Attack Mansfield City Schools (OH) : No Personal Data Compromised During Cyber Attack Cyber-Criminals Mimicking Global Brand Domain Names to Launch Scams Over 400 GOV.UK Domains Found on Spam Blacklists Credit Card Data Smuggled via Private Telegram Channel Magento Sites Vulnerable to RCE Stemming From Magmi Plugin Flaws Google Now Pays for Bugs Used to Bypass Its Anti-Fraud Systems New Threat Activity by Lazarus Group Spells Trouble For Orgs