10/29/2020 October 29, 2020October 29, 2020 ~ The Cyber Beat ~ Leave a comment Wisconsin Republicans Say Hackers Stole $2.3MHacker Releases Hall County’s (GA) Election-Related FilesU.S. Shares Info on Russian ComRAT and Zebrocy Malware (From State-Sponsored Turla and APT 28) Used to Target Parliaments, EmbassiesAkamai Sees Doubling in Malicious Internet Traffic as Remote World’s Bad Actors BoomU.S.: Collaboration Needed to Combat Online Child ExploitationKrebs: FBI, DHS, HHS Warn of Imminent, Credible Ransomware Threat Against U.S. Hospitals…Cyberattack Targets Networks of Vermont, New York, Oregon Hospitals…Kegtap, Singlemalt, Winekey Malware Serve Up Ransomware to HospitalsPandemic Forces Companies to Confront Technology Ethics QuestionsTaiwanese Company Admits Stealing US Trade SecretsXfinity, McAfee Brands Abused by Parked Domains in Active CampaignsKashmirBlack Botnet Hijacks Thousands of Sites Running On Popular CMS PlatformsSalem’s (NH) Town Computers Offline After Ransomware AttackUniversity Email Hijacking Attacks Push Phishing, MalwareREvil Gang Promises a Big Video-Game Hit; Claims Massive RevenueMaze Ransomware Is Shutting Down Its Cybercrime OperationOracle WebLogic Server RCE Flaw Under Active AttackMicrosoft Warns of Ongoing Attacks Using Windows Zerologon FlawMcAfee Debuts Remote Browser Isolation Solution, XDR Platform
10/28/2020 October 29, 2020 ~ The Cyber Beat ~ Leave a comment Trump Campaign Website Hacked with Cryptocurrency ScamMan Arrested for Altering Voter Registration Data of Florida Governor: PoliceMicrosoft: Iranian Hacking Group Targeting Attendees of Major International Security ConferencesRussian Espionage Group Turla Updates Custom Malware SuiteGermany’s Robert Koch Institute for Infectious Disease Control Hit by Hackers Days Before Arson Attack: SpiegelFBI Probes String of Recent Ransomware Attacks on U.S. HospitalsExperts Weigh in on E-Commerce Security Amid Snowballing ThreatsHow the Pandemic is Reshaping the Bug-Bounty LandscapeHome Depot Blunder Emails Customer Order Info to StrangersCedar County Memorial Hospital (MO) Hit With Ransomware AttackTrickBot Linux Variants Active in the Wild Despite Recent TakedownQNAP Warns of New QTS Bugs That Allow Take Over of DevicesMicrosoft’s SMBGhost Flaw Still Haunts 108K Windows SystemsMicrosoft Defender ATP Adds Vulnerable Windows Device TrackingMicrosoft Shares List of URLs Required by Microsoft Defender ATPKrebs: Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo
10/27/2020 October 27, 2020October 27, 2020 ~ The Cyber Beat ~ Leave a comment Election Officials Warn of Widespread Suspicious Email CampaignFacebook Removes Accounts Linked to Foreign Influence Efforts Ahead of ElectionChina Clamping Down on Mobile Web Browsers Over Dissemination of ‘Chaos’How the 2020 Election War on Bots and Trolls Differs From 2016Some Ballot Requests May Be Affected by Cyber Attack in Chenango County (NY)U.S. Homeland Security Agency Faulted for Election Planning Around Potential ViolenceZoom Finally Adds End-to-End Encryption for All, for Free – With CaveatsRemote Workers Ignore Training to Open Suspicious EmailsAmazon Fires Employee Who Leaked Customer Names, EmailsFormer California Police Captain Pleads Guilty in eBay Cyberstalking CaseFlorida Woman Arrested for Hacking Home Camera SystemStudent Teacher Jailed for Sexting ChildrenEnel Group Hit by Ransomware Again, Netwalker Demands $14 MillionSteelcase Furniture Giant Hit by Ryuk Ransomware AttackLax Security Exposes Smart-Irrigation Systems to Attack Across the GlobeData Breach at Swedish Security Company Gunnebo Leaks 38,000 Sensitive DocumentsAussie Media Monitoring Provider Isentia Hit by Cyber AttackSky Lakes Medical Center (OR) Targeted in Ransomware AttackMedical Supplies Manufacturer DeRoyal Industries Suffers Ransomware AttackWall Township School District (NJ) Hit With Cyber-AttackCar Theft in Chicago May Have Involved a Hack; ‘We’ve Never Had This Kind of Electronic Break Into the Vehicle’FBI: Hackers Stole Government Source Code via SonarQube InstancesMajority of Microsoft 365 Admins Don’t Enable MFAMac Users Unable to Print After Apple Revoked Hp Certificate
10/23-26/2020 October 27, 2020October 27, 2020 ~ The Cyber Beat ~ Leave a comment National Guard Called in to Thwart Cyberattack in Louisiana Weeks Before ElectionGeorgia Election Data Hit in Ransomware AttackRussians Who Pose Election Threat Have Hacked Nuclear Plants and Power GridFacebook Says It’s Helped 4.4M People Register to Vote This YearChina Says Honours Its Obligations Over North Korea SanctionsTreasury Sanctions Russian Group Accused of Targeting U.S. Critical Facilities With Destructive MalwareFrench Court Asks Microsoft for Safeguards Against U.S. Surveillance of Health DataHospitals Brace for More Cyberattacks as Coronavirus Cases RiseStudy Shows Which Messengers Leak Your Data, Drain Your Battery, and MoreExperts Warn of Privacy Risks Caused by Link Previews in Messaging AppsWhy Cybersecurity Awareness Month Still MattersHarvest Finance Places Bounty on HackerMicrosoft IE Browser Death March HastensTherapy Patients Blackmailed for Cash After Finland Clinic Vastaamo Data BreachNando’s Hackers Feast on Customer Accounts‘Among Us’ Mobile Game Under Siege by AttackersWastedLocker Ransomware Hits Boyne Resorts Ski Resort OperatorStelco Announces Cybersecurity AttackNews Agency Press Trust of India’s (PTI) Hit With Ransomware Attack, News Publishing Disrupted for Several HoursNew ‘Abaddon’ RAT Malware Gets Commands via Discord, Has Ransomware FeatureContainerd Bug Exposes Cloud Account CredentialsMassive Nitro Data Breach Impacts Microsoft, Google, Apple, MoreAdware Found in 21 Android Apps With More Than 7 Million DownloadsGoogle Employees Personal Info Exposed in Law Firm Data BreachKrebs: Google Mending Another Crack in WidevineMicrosoft Upgrades Password Spray Attack Detection CapabilitiesHPE Fixes Maximum Severity Remote Auth Bypass Bug in SSMC Console
10/22/2020 October 23, 2020October 23, 2020 ~ The Cyber Beat ~ Leave a comment Iran Seeking to Intimidate U.S. Voters With Spoofed Emails, Intelligence Official Says…‘Dumb Mistake’ Exposed Iranian Hand Behind Fake Proud Boys U.S. Election Emails…Five Takeaways on Iran, Russia Election InterferenceRussian State Hackers Stole Data From U.S. Government Networks…EU Sanctions Russian Hackers Over 2015 German Parliament AttackVoter Websites In California And Florida Could Be Vulnerable To Hacks, Report FindsCybersecurity Company Finds Hacker Selling Info on 186 Million U.S. VotersResearcher: I Hacked Trump’s Twitter by Guessing Password…Twitter Says ‘No Evidence’ Trump’s Account Was Hacked With Laughably Bad PasswordKrebs: The Now-Defunct Firms Behind 8chan, QAnonDr Reddy’s: COVID Vaccine-Maker Suffers Cyber-AttackJapanese Drug Firm Shionogi & Co. Hit by Cyberattack, Data BreachFrench IT Giant Sopra Steria Hit by Ryuk RansomwareLewd Tweets on Fort Bragg Account Were From Administrator, Not a Hack as Army First SaidMicrosoft Teams Phishing Attack Targets Office 365 UsersFacebook, News and XSS Underpin Complex Browser Locker AttackNVIDIA Patches High Severity GeForce Experience VulnerabilitiesSnyk to Automatically Check Docker Official Images for Security ProblemsSecurity Experts Alarmed by ‘Broken’ Cyber MarketFraud Analysts Miss Dark Web Data
10/21/2020 October 22, 2020October 22, 2020 ~ The Cyber Beat ~ Leave a comment U.S. Tries to Get Huawei Blocked From Brazil’s 5G Networks With $1 Billion Financing PledgeTrump Signs Legislation Making Hacking Voting Systems a Federal CrimeCybercriminals Step Up Their Game Ahead of U.S. ElectionsThreatening Emails Escalate Voter Intimidation ConcernsBiden Campaign App ‘Hack’ Shows Him Wearing MAGA Hat, Telling People to Vote TrumpDisjointed Covid-19 Apps Across U.S. Raise Questions About Tech’s RoleFort Bragg Deletes Twitter Account, Blames Hack for Explicit TweetsMastercard, Idemia, and MatchMove to Pilot Contactless Card With Biometric Reader in Asia…U.S. PayPal Users Can Soon Use Crypto in Lieu of Fiat CurrencyCoinDesk: Ban All Ransomware Payments, in Bitcoin or OtherwiseThought the FBI Were the Only Ones Able to Unlock Encrypted Phones? Pretty Much Every U.S. Cop Can Get the Job DoneGoogle Chrome Now Blocks Site Notifications With Abusive ContentMontreal’s STM Public Transport System Hit by Ransomware AttackCity of Shafter (CA) Hit by Ransomware AttackJekyll Island (GA) Authority Still Addressing Ransomware AttackEgregor Claims Responsibility for Barnes & Noble Attack, Leaks DataM&S Boss Spoofed in Gift Voucher ScamLockBit Ransomware Moves Quietly on the Network, Strikes FastQNAP Warns of Windows Zerologon Flaw Affecting Some NAS DevicesLightning Network Discloses “Concerning” Crypto VulnerabilitiesOracle Kills 402 Bugs in Massive October Patch UpdateWordPress Deploys Forced Security Update for Dangerous Bug in Popular PluginWindows 10 20H2 Adds Faster Malware Detection to Security Baseline
10/20/2020 October 21, 2020October 21, 2020 ~ The Cyber Beat ~ Leave a comment U.S.-China Tensions Could Split the Internet — and Data Will Play a Key Role in How Far That Goes..Sweden Bans Use of Huawei, ZTE Equipment in New 5G Networks…U.S. Spy Agency Warns That Chinese Hackers Target Military, Defense Industry…Chinese Hackers Are Hitting These 25 Vulnerabilities, Says NSAJapan Will Take Steps to Guard Against Olympics Cyberattacks…Kremlin Denies Olympics Hacking AllegationsMicrosoft Disables Most of Cybercriminals’ Control Over Massive Computer NetworkTrickBot Malware Under Siege From All Sides, and It’s WorkingIoT Security Foundation Launches Vulnerability Disclosure PlatformCybersecurity And The Remote ClassroomJustice Department Hits Google With Antitrust LawsuitHouse Republicans Urge Democrats to Call Hearing With Tech CEOsPharma Giant Pfizer Leaks Customer Prescription Info, Call TranscriptsMade in Oregon Notifies 7,800 Customers of Possible Data BreachMedicaid Billing Company Timberline Billing Service LLC’s Data Accessed by ‘Unknown Actor’; Firm Works With Many Iowa School Districts Toledo Public Schools (OH) Vows Support for Staff Affected by Breach After 9GB of Data Posted OnlineFacebook: A Top Launching Pad For Phishing AttacksMobile Browser Bugs Open Safari, Opera Users to MalwareOrgs Struggling to Secure SaaS Applications Following Shift to the CloudCisco Warns of Attacks Targeting High Severity Router VulnerabilityAdobe Fixes 16 Critical Code-Execution Bugs Across PortfolioVMware Patches ESXi Flaw That Can Be Abused on the Network to Hijack Hosts, Other VulnsNew Google Chrome Version Fixes Actively Exploited Zero-Day BugIranian Millionaire Jailed for Violating US Sanctions
10/16-19/2020 October 20, 2020October 20, 2020 ~ The Cyber Beat ~ Leave a comment Krebs: QAnon/8Chan Sites Briefly Knocked OfflineBiden Campaign Staffers Targeted in Cyberattack Leveraging Antivirus Lure, Dropbox PloyFederal Commission Issues Recommendations for Securing Critical Tech Against Chinese ThreatsTokyo Olympics: Russian Hackers Targeted Games, UK SaysRussian Hackers in the NotPetya, Ukraine Power Grid, 2018 Olympics, 2017 French Election Attacks: U.S. IndictmentU.S. Blocked Chinese Purchase of San Diego Fertility Clinic Over Medical Data Security ConcernsMicrosoft Exchange, Outlook Under Siege By APTsChina Revises Laws to Strengthen Protection of Minors OnlineInstagram’s Handling of Children’s Data Under EU InvestigationNation-State Actor Hit Google With the Largest DDoS AttackMicrosoft Issues Out-of-Band Windows Security Updates for RCE BugsMysterious ‘Robin Hood’ Hackers Donating Stolen MoneyRapper Scams $1.2M in COVID-19 Relief, Gloats with ‘EDD’ VideoPhishers Capitalize on Headlines with Breakneck SpeedFBI Warns of Newly Registered Domains Spoofing U.S. Census BureauHackers Smell Blood as Schools Grapple With Virtual InstructionMicrosoft is the Most-Imitated Brand for Phishing EmailsToshiba Targets $3 Billion Revenue in Quantum Cryptography by 2030Lawsuit Accuses Indian Hackers of Leaking Businessman’s EmailsVerificient Technologies’ Anti-Cheating Software Suffers Data BreachFanduel, Draftkings Data Provider Stats Perform Hit by Ransomware AttackAlbion Online Game Maker Discloses Data BreachHaldiram’s (India) Hit by Ransomware Attack, Hackers Asked for $7.5 LakhHackers Hijack Telegram, Email Accounts in SS7 Mobile AttackHackers Now Abuse BaseCamp for Free Malware HostingCyber-attack on Yazoo County School District (MS) Costs $300kMichigan Medicine Notifies Patients of Email Information BreachWaze Vulnerability Lets Attackers Track and Identify UsersCoinbase Phishing Hijacks Microsoft 365 Accounts via OAuth AppRyuk Ransomware Gang Uses Zerologon Bug for Lightning-Fast AttackOverlay Malware Targets Windows Users with a DLL Hijack TwistWatch Out for Emotet Malware’s New ‘Windows Update’ AttachmentGravityRAT Comes Back to Earth with Android, macOS SpywareThunderX Ransomware Rebrands as Ranzy Locker, Adds Data Leak SiteGoogle Warns of Zero-Click Bluetooth Flaws in Linux-based Devices
10/15/2020 October 16, 2020October 16, 2020 ~ The Cyber Beat ~ Leave a comment Study: Half of Battleground States Facing Cybersecurity Challenges Ahead of ElectionTwitter Locks Trump Campaign Account…Twitter Suffers Massive Outage; ‘No Evidence’ of Hack or Security BreachIran Says Hackers Attacked Two of Its Key InstitutionsTrump Administration Rolls Out Strategy to Secure, Promote Critical TechnologiesData Breaches Hit Thousands of K-12 Students, Federal Watchdog ReportsFederal Watchdog Finds Escalating Cyberattacks on Schools Pose Potential Harm to StudentsHow One Family’s Nightmare Illustrates the Growing Threat of Real Estate Wire FraudMicrosoft Now Lets You Disable Insecure JScript in Internet ExplorerUS Indicts Money Launderers From Criminal Organization QQAAZZKrebs: Breach at Dickey’s BBQ Smokes 3M CardsBroadvoice Leak Exposes 350M Records, Personal Voicemail TranscriptsCrytek Hit by Egregor Ransomware, Ubisoft Data LeakedRobinhood Internal Probe Finds Hackers Hit Almost 2,000 AccountsBarnes & Noble Hack: A Reading List for Phishers and CrooksOnline Proctor Service ProctorTrack Disables Service After HackYorktown, Croton-Harmon Schools (NY) Suffer Cybersecurity AttacksPossible Data Breach Exposes 2,219 Patient Files at McLaren Oakland Hospital (MI)FIFA 21 Blockbuster Release Gives Fraudsters an Open Field for TheftCritical Magento Holes Open Online Shops to Code Execution
10/14/2020 October 15, 2020October 15, 2020 ~ The Cyber Beat ~ Leave a comment Facebook and Twitter Reducing Distribution of New York Post Hunter Biden StoryTwitter’s Security Fell Short Before Hack Targeting Celebrities, Regulator SaysYouTube Bans COVID-19 Vaccine MisinformationNew York Regulator Urges Oversight for Social-Media GiantsIranian Hackers Restart Attacks on Universities as the New School Year BeginsZoom Rolls Out End-to-End Encryption (E2EE) Next WeekPolice Raided German Spyware Company FinFisher OfficesBrit Webcam Criminal Snared in FBI Luminositylink Creepware Sting Spared PrisonThe Important Difference Between Cybersecurity And Cyber Resilience (And Why You Need Both)Carnival Confirms Passenger Data CompromisedCyber Attack Disrupts Remote Learning in Sandwich Public Schools (MA)FIN11 Cybercrime Gang Shifts Tactics to Double-Extortion RansomwareTravelex, Other Orgs Face DDoS Threats as Extortion Campaign Rages OnCanva Design Platform Actively Abused in Credentials PhishingGoogle, Intel Warn on ‘Zero-Click’ Kernel Bug in Linux-Based IoT DevicesCritical SonicWall VPN Portal Bug Allows DoS, Worming RCEU.S. Cyber Command: Patch Windows ‘Bad Neighbor’ TCP/IP Bug NowMicrosoft Rolls Out New Edge Extensions API but Promises to Leave Ad Blockers Alone
10/13/2020 October 14, 2020October 14, 2020 ~ The Cyber Beat ~ Leave a comment State Officials Warn of Delayed Election Results From Influx of Mail-in Ballots…Election Systems Under Attack via Microsoft Zerologon Exploits…As Voters Cast Their Ballots, Courts Nationwide Issue Election Security Edicts…Cut Cable Shuts Down Virginia’s Online Voter RegistrationRussia Blamed for Cyber-attack on Norwegian ParliamentUS GAO Calls for Greater Cybersecurity for Commercial AirplanesSecurity Experts Warn of Amazon Prime Day ScamsExecutive Overconfidence a Security RiskHow to Improve the Cybersecurity of Your Remote WorkersLondon’s Hackney Borough Council Hit by Hack AttackInternational Law Firm Seyfarth Discloses Ransomware AttackMiami Tech Company Intcomex Suffers Major Data BreachFacility Services Provider Spotless Suffers Ransomware AttackLemon Duck Cryptocurrency-Mining Botnet Activity SpikesAuthentication Bug Opens Android Smart-TV Box to Data TheftWindows and Mac Users Alike Urged to Patch PhantomPDF Over Use-After-Free VulnsCritical Flash Player Flaw Opens Adobe Users to RCEKrebs: Microsoft Patch Tuesday, October 2020 Edition
10/9-12/2020 October 12, 2020October 12, 2020 ~ The Cyber Beat ~ Leave a comment Court Orders Seizure of Ransomware Botnet Controls as U.S. Election NearsHackers Used VPN Flaws to Access Us Gov’t Elections Support SystemsGeorgia Marred by Technical Problems, Long Lines on First Day of Early VotingDHS: Unknown Hackers Targeted the U.S. Census Bureau NetworkCyber-attacks on Angolan Journalists Who Reported Government CorruptionThai Army Denies Twitter Disinformation Campaign After TakedownsCambridge University Releases Fake News GameKrebs: Microsoft Uses Trademark Law to Disrupt Trickbot Botnet…Krebs: U.S. Cyber Command Behind Trickbot Tricks (WashPo Report)Gov-Linked “Fatima” Cybersecurity Career Advert Removed After BacklashFacebook Debuts Bug-Bounty ‘Loyalty Program’Budget and Hiring Practices Hinder Cities’ Cybersecurity EffortsRansomware Attackers Buy Network Access in Cyberattack ShortcutHere’s How Many Americans Still Secretly Use Their Ex’s PasswordsCybercriminals Are Impersonating Parents for Ransomware Attacks on Teachers55 New Security Flaws Reported in Apple Software and ServicesSoftware AG Hit by Data-Stealing Ransomware AttackCyber Attack Targets Georgia Department of Human ServicesCity of Mt. Pleasant (MI) Falls Victim to Remote Ransomware AttackFranklin, MA Loses $522K to ‘Spear Phishing’ CyberattackInvestigation Underway After Tyngsboro (MA) Schools Hit by CyberattackPolice Investigating Cyber Attack on Walled Lake (MI) School DistrictFairfax County Public Schools (AV) Announces Student, Teacher PII Leaked to the Dark WebRobinhood Says Some Customer Accounts May Have Become Target of HackersIndia Lab Testing Company Dr Lal PathLabs Exposed Sensitive Patient DataLake George Conservancy Hit by Ransomware AttackRansomware Gang Exposes Truckers’ PII After Attack on Daseke Carrier E.W. WylieFitbit Spyware Steals Personal Data via Watch FaceUndocumented Backdoor That Covertly Takes Snapshots Found in Xplora’s X4 Kids’ SmartwatchWormable Apple iCloud Bug Allows Automatic Photo TheftQBot Uses Windows Defender Antivirus Phishing Bait to Infect PCsBazarLoader Used to Deploy Ryuk Ransomware on High-Value TargetsSophisticated Android Ransomware Executes with the Home ButtonWindows Update Can Be Abused to Execute Malicious Files
10/8/2020 October 9, 2020October 9, 2020 ~ The Cyber Beat ~ Leave a comment Facebook, Twitter Dismantle Global Array of Disinformation NetworksU.S. Seizes 92 Domains Used by Iran for ‘Global Disinformation Campaign’Judge Orders Twitter To Unmask FBI Impersonator Who Set Off Seth Rich ConspiracyTrojan Malware Targets Trump SupportersAmazon Prime Day Spurs Spike in Phishing, Fraud AttacksNew EU ‘Gateway’ Will Link Coronavirus Apps Across BordersJustice Department Rolls Out Report Detailing Cryptocurrency Security ThreatsWaterbear Malware Used in Attack Wave Against Government AgenciesKrebs: Amid an Embarrassment of Riches, Ransom Gangs Increasingly Outsource Their WorkFormer eBay Workers Plead Guilty to Cyberstalking Campaign Against CoupleWisepay: School Payments Service Hit by Cyber-AttackSpringfield Public Schools District (MA) Shut Down by Ransomware AttackHall County (GA) Phone Services Available After Wednesday Ransomware Attack, Recovery OngoingData Breach at AAA Ambulance Service (MS) Exposes Sensitive Information of PatientsRAINBOWMIX Apps in Google Play Serve Up Millions of Ad Fraud VictimsSam’s Club Customer Accounts Hacked in Credential Stuffing AttacksMontysThree APT Takes Unusual Aim at Industrial TargetsHEH P2P Botnet Sports Dangerous Wiper FunctionMicrosoft Azure Flaws Open Admin Servers to TakeoverCisco Fixes High-Severity Webex, Security Camera Flaws
10/7/2020 October 8, 2020October 8, 2020 ~ The Cyber Beat ~ Leave a comment Huawei: ‘Clear Evidence of Collusion’ With Chinese Communist PartyFacebook to Slap Labels on Posts if Candidates Prematurely Declare VictoryPhishing Emails Lure Victims With Inside Info on Trump’s HealthIRS COVID-19 Relief Payment Deadlines Anchor Convincing PhishU.S. Brokerage Firms Warned of Widespread Survey Phishing AttacksRemote Workers Keep IT Issues to Themselves‘Mercenary’ Hacker Group ‘Bahamut’ Runs Rampant in Middle East, Cybersecurity Research ShowsKrebs: Promising Infusions of Cash, Fake Investor John Bernard Walked Away With $30MUK Regulator Bans Cryptocurrency DerivativesUkraine Plan to Tackle Hackers Sparks Privacy FearsSupreme Court Hears Landmark $9B Copyright Fight Between Oracle, GoogleMore Than 1,600 Mayo Clinic Patients Impacted by Privacy BreachHeartland Community College (IL) Addressing Cybersecurity BreachRansomware Hackers Claim Attack on Texas Customs Broker Daniel B. HastingsFormer Congress Member Katie Hill’s Twitter Account Hacked After Movie Deal AnnouncementMumbai University Distance Education Exams Hit By Cyber AttackEight Exchange Operators Also Attacked During New Zealand Hack, Says Cyber Intelligence Group ChairmanPoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating ConflictComcast TV Remote Hack Opens Homes to SnoopingQNAP Fixes Critical Flaws That Could Lead to Device TakeoverGoogle’s Chrome 86: Critical Payments Bug, Password Checker Among Security NotablesMicrosoft Adds Consent Phishing Protection to Office 365
10/6/2020 October 7, 2020October 7, 2020 ~ The Cyber Beat ~ Leave a comment DHS Points to Russia as Key Disinformation Threat Ahead of ElectionOfficials Urge Social Media Groups to Weed Out Election Disinformation Targeting Minority VotersAPT Attack Injects Malware into Windows Error ReportingCISA: Emotet Increasing Attacks on U.S. State, Local GovernmentsIsraeli Government Reportedly Investigating Unsuccessful Hack Targeting Crypto CEOsMore Than 100 Charities Report Being Caught up in Blackbaud Ransomware AttackEU Seeks Authority to Cut Off Banks’ Tech Suppliers if Found Wanting on CybersecurityAnti-Virus Creator John McAfee Arrested Over Tax Evasion ChargesCisco Ordered to Pay $1.9 Billion for Security Patent InfringementBoom! Mobile Customer Data Lost to Fullz House/Magecart AttackChowbus Delivery Service Breached, Hacker Emails Data to UsersQiui’s Cellmate Male Cage Chastity Gadget Hack Could Lock Users InREvil Ransomware Gang Offers $1 Million As Part Of Recruitment DriveMalware Campaigns Deliver Payloads via Obscure Paste ServiceUnpatched Apple T2 Chip Flaw Plagues MacsChrome 86 Rolls Out With Massive User Security EnhancementsCloudflare Can Now Send DDoS Alerts for Sites Are Under Attack
10/2-5/2020 October 6, 2020October 6, 2020 ~ The Cyber Beat ~ Leave a comment Majority of Americans Concerned About Potential Foreign Election Interference: PollVoter Registration ‘Error’ Phish Hits During U.S. Election FrenzyRansomware Disrupts COVID-19 Medical TrialsHer Majesty’s Revenue and Customs (HMRC) Hit by Multiple Phishing and Spam EmailsCEOs of Google, Facebook and Twitter to Testify Before SenateYears-Long ‘SilentFade’ Attack Drained Facebook Victims of $4MLatAm Banking Trojans Collaborate in Never-Before-Seen EffortRare Bootkit Malware Targets North Korea-Linked DiplomatsMicrosoft: Iranian Hackers Actively Exploiting Windows Zerologon FlawKrebs: Attacks Aimed at Disrupting the Trickbot BotnetA Millionaire Hacker’s Lessons for Corporate AmericaVideo-Game Piracy Group ‘Team Xecuter’ Leaders in CustodyResearchers Mixed on Sanctions for Ransomware NegotiatorsRansomware Victims Aren’t Reporting Attacks to Police. That’s Causing a Big ProblemMalware Families Turn to Legit Pastebin-Like ServiceEgregor Ransomware Threatens ‘Mass-Media’ Release of Corporate DataHacker Group Compromises Mobile Provider to Steal Credit CardsGrindr Fixed a Bug Allowing Full Takeover of Any User AccountStudents and Employees Notified of Gulf Coast State College Data BreachHorry County (SC) Police Investigating After Virtual Classroom Hacked, According to DistrictBlack-T Malware Emerges From Cryptojacker Group TeamTNTTenda Router Zero-Days Emerge in Spyware Botnet CampaignCrypto-Mining Malware Adds Linux Password Stealing CapabilityMosaicregressor: Second-Ever UEFI Rootkit Found in the WildPost Grid WordPress Plugin Flaws Allow Site TakeoversHP Device Manager Backdoor Lets Attackers Take Over Windows SystemsNew Flaws in Top Antivirus Software Could Make Computers More VulnerableNew Ransomware Vaccine Kills Programs Wiping Windows Shadow VolumesHacker Uploads Own Fingerprints To Crime Scene In Dumbest Cyber Attack Ever
10/1/2020 October 2, 2020October 2, 2020 ~ The Cyber Beat ~ Leave a comment Huawei ‘Failed to Improve UK Security Standards’Lawmakers Introduce Bill Targeting Foreign Disinformation on Social MediaPrivacy, Civil Rights Groups Demand Transparency From Amazon on Election Data BreachesEmotet Emails Strike Thousands of DNC VolunteersNew Service Checks if Your Email Was Used in Emotet AttacksTwitter Shutters 130 Iranian Accounts Trying to Disrupt Presidential DebateOnline Journals Flagged as Election Disinformation ThreatU.S. Treasury Warns Cyber Insurers Payments to Hackers May Violate SanctionsKrebs: Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle SamUniversal Health Services Says Its Network Is Being Restored After Malware IncidentCloud Biz Blackbaud Admits Ransomware Criminals May Have Captured Folks’ Bank InfoH&M Fined €35.2m for GDPR ViolationsGlobal Regulator International Maritime Organization Hit by CyberattackHackers Leak Files Stolen in Pakistan’s K-Electric Ransomware AttackNebraska Medicine Provides Update on ‘Cyber Attack’ Causing Network IssuesInterPlanetary Storm Botnet Infects 13K Mac, Android DevicesExperts Warn of $15m Global BEC CampaignRansomware Gangs Add DDoS Attacks to Their Extortion ArsenalCryptojacking: The Unseen ThreatMicrosoft Office 365 Phishing Attack Uses Multiple CAPTCHAsSpammers Smuggle LokiBot Via URL Obfuscation TacticCritical Flaws Discovered in Popular Industrial Remote Access SystemsNVIDIA Fixes High Severity Flaws in Windows Display Driver
9/30/2020 October 1, 2020October 1, 2020 ~ The Cyber Beat ~ Leave a comment House Panel Says U.S. Intelligence Community Not Equipped to Address Evolving Chinese ThreatsChinese APT Group Palmerworm (aka BlackTech) Targets Media, Finance, and Electronics SectorsAndroid Spyware Variant From APT-C-23 (aka Two-Tailed Scorpion and Desert Scorpion) Snoops on WhatsApp, Telegram MessagesNorth Korea Has Tried to Hack 11 Officials of the UN Security CouncilDFAT Reveals Email Addresses of Vulnerable Australians Stranded OverseasFacebook Small Business Grants Spark Identity-Theft ScamFederal Internet of Things Security Rules Could Provide Blueprint for Private SectorAnthem to Pay Nearly $40 Million to Settle Data Breach Probe by U.S. StatesTwo Charged for Hacking NBA, NFL Players’ Social Media AccountsRussian Hacker, Described as ‘Brilliant’ by Judge, Gets Seven Years in U.S. Prison for Raiding LinkedIn, DropboxKylie Jenner’s Makeup Company Warns of Data BreachApplicants Say a DC Bar Website Bug Exposed Their Personal Data and Background ChecksNorthern California Casino Cache Creek Casino Resort Shut Down by External Computer Attack, May Be RansomwareCyber Attack Interrupts Online Learning at Greece Central School District (NY)Patient Data Compromised in Oaklawn (MI) Email Security IncidentSome Pell City (AL) Utility Customers May Have Suffered Data BreachQNAP Warns Customers of Recent Wave of Ransomware AttacksBlackbaud: Ransomware Gang Had Access to Banking Info and PasswordsOAuth Consent Phishing Ramps Up with Microsoft Office 365 AttacksMicrosoft Exchange Servers Still Open to Actively Exploited Flaw