10/29/2020

Wisconsin Republicans Say Hackers Stole $2.3M

Hacker Releases Hall County’s (GA) Election-Related Files

U.S. Shares Info on Russian ComRAT and Zebrocy Malware (From State-Sponsored Turla and APT 28) Used to Target Parliaments, Embassies

Akamai Sees Doubling in Malicious Internet Traffic as Remote World’s Bad Actors Boom

U.S.: Collaboration Needed to Combat Online Child Exploitation

Krebs: FBI, DHS, HHS Warn of Imminent, Credible Ransomware Threat Against U.S. Hospitals

Cyberattack Targets Networks of Vermont, New York, Oregon Hospitals

Kegtap, Singlemalt, Winekey Malware Serve Up Ransomware to Hospitals

Pandemic Forces Companies to Confront Technology Ethics Questions

Taiwanese Company Admits Stealing US Trade Secrets
Xfinity, McAfee Brands Abused by Parked Domains in Active Campaigns

KashmirBlack Botnet Hijacks Thousands of Sites Running On Popular CMS Platforms

Salem’s (NH) Town Computers Offline After Ransomware Attack

University Email Hijacking Attacks Push Phishing, Malware

REvil Gang Promises a Big Video-Game Hit; Claims Massive Revenue

Maze Ransomware Is Shutting Down Its Cybercrime Operation

Oracle WebLogic Server RCE Flaw Under Active Attack

Microsoft Warns of Ongoing Attacks Using Windows Zerologon Flaw

McAfee Debuts Remote Browser Isolation Solution, XDR Platform

10/28/2020

Trump Campaign Website Hacked with Cryptocurrency Scam

Man Arrested for Altering Voter Registration Data of Florida Governor: Police

Microsoft: Iranian Hacking Group Targeting Attendees of Major International Security Conferences

Russian Espionage Group Turla Updates Custom Malware Suite

Germany’s Robert Koch Institute for Infectious Disease Control Hit by Hackers Days Before Arson Attack: Spiegel

FBI Probes String of Recent Ransomware Attacks on U.S. Hospitals

Experts Weigh in on E-Commerce Security Amid Snowballing Threats

How the Pandemic is Reshaping the Bug-Bounty Landscape
Home Depot Blunder Emails Customer Order Info to Strangers

Cedar County Memorial Hospital (MO) Hit With Ransomware Attack

TrickBot Linux Variants Active in the Wild Despite Recent Takedown

QNAP Warns of New QTS Bugs That Allow Take Over of Devices

Microsoft’s SMBGhost Flaw Still Haunts 108K Windows Systems

Microsoft Defender ATP Adds Vulnerable Windows Device Tracking

Microsoft Shares List of URLs Required by Microsoft Defender ATP

Krebs: Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

10/27/2020

Election Officials Warn of Widespread Suspicious Email Campaign

Facebook Removes Accounts Linked to Foreign Influence Efforts Ahead of Election

China Clamping Down on Mobile Web Browsers Over Dissemination of ‘Chaos’

How the 2020 Election War on Bots and Trolls Differs From 2016

Some Ballot Requests May Be Affected by Cyber Attack in Chenango County (NY)

U.S. Homeland Security Agency Faulted for Election Planning Around Potential Violence

Zoom Finally Adds End-to-End Encryption for All, for Free – With Caveats

Remote Workers Ignore Training to Open Suspicious Emails

Amazon Fires Employee Who Leaked Customer Names, Emails

Former California Police Captain Pleads Guilty in eBay Cyberstalking Case

Florida Woman Arrested for Hacking Home Camera System

Student Teacher Jailed for Sexting Children
Enel Group Hit by Ransomware Again, Netwalker Demands $14 Million

Steelcase Furniture Giant Hit by Ryuk Ransomware Attack

Lax Security Exposes Smart-Irrigation Systems to Attack Across the Globe

Data Breach at Swedish Security Company Gunnebo Leaks 38,000 Sensitive Documents

Aussie Media Monitoring Provider Isentia Hit by Cyber Attack

Sky Lakes Medical Center (OR) Targeted in Ransomware Attack

Medical Supplies Manufacturer DeRoyal Industries Suffers Ransomware Attack

Wall Township School District (NJ) Hit With Cyber-Attack

Car Theft in Chicago May Have Involved a Hack; ‘We’ve Never Had This Kind of Electronic Break Into the Vehicle’

FBI: Hackers Stole Government Source Code via SonarQube Instances

Majority of Microsoft 365 Admins Don’t Enable MFA

Mac Users Unable to Print After Apple Revoked Hp Certificate

10/23-26/2020

National Guard Called in to Thwart Cyberattack in Louisiana Weeks Before Election

Georgia Election Data Hit in Ransomware Attack

Russians Who Pose Election Threat Have Hacked Nuclear Plants and Power Grid

Facebook Says It’s Helped 4.4M People Register to Vote This Year

China Says Honours Its Obligations Over North Korea Sanctions

Treasury Sanctions Russian Group Accused of Targeting U.S. Critical Facilities With Destructive Malware

French Court Asks Microsoft for Safeguards Against U.S. Surveillance of Health Data

Hospitals Brace for More Cyberattacks as Coronavirus Cases Rise

Study Shows Which Messengers Leak Your Data, Drain Your Battery, and More

Experts Warn of Privacy Risks Caused by Link Previews in Messaging Apps

Why Cybersecurity Awareness Month Still Matters

Harvest Finance Places Bounty on Hacker

Microsoft IE Browser Death March Hastens
Therapy Patients Blackmailed for Cash After Finland Clinic Vastaamo Data Breach

Nando’s Hackers Feast on Customer Accounts

‘Among Us’ Mobile Game Under Siege by Attackers

WastedLocker Ransomware Hits Boyne Resorts Ski Resort Operator

Stelco Announces Cybersecurity Attack

News Agency Press Trust of India’s (PTI) Hit With Ransomware Attack, News Publishing Disrupted for Several Hours

New ‘Abaddon’ RAT Malware Gets Commands via Discord, Has Ransomware Feature

Containerd Bug Exposes Cloud Account Credentials

Massive Nitro Data Breach Impacts Microsoft, Google, Apple, More

Adware Found in 21 Android Apps With More Than 7 Million Downloads

Google Employees Personal Info Exposed in Law Firm Data Breach

Krebs: Google Mending Another Crack in Widevine

Microsoft Upgrades Password Spray Attack Detection Capabilities

HPE Fixes Maximum Severity Remote Auth Bypass Bug in SSMC Console

10/22/2020

Iran Seeking to Intimidate U.S. Voters With Spoofed Emails, Intelligence Official Says

‘Dumb Mistake’ Exposed Iranian Hand Behind Fake Proud Boys U.S. Election Emails

Five Takeaways on Iran, Russia Election Interference

Russian State Hackers Stole Data From U.S. Government Networks

EU Sanctions Russian Hackers Over 2015 German Parliament Attack

Voter Websites In California And Florida Could Be Vulnerable To Hacks, Report Finds

Cybersecurity Company Finds Hacker Selling Info on 186 Million U.S. Voters

Researcher: I Hacked Trump’s Twitter by Guessing Password

Twitter Says ‘No Evidence’ Trump’s Account Was Hacked With Laughably Bad Password

Krebs: The Now-Defunct Firms Behind 8chan, QAnon
Dr Reddy’s: COVID Vaccine-Maker Suffers Cyber-Attack

Japanese Drug Firm Shionogi & Co. Hit by Cyberattack, Data Breach

French IT Giant Sopra Steria Hit by Ryuk Ransomware

Lewd Tweets on Fort Bragg Account Were From Administrator, Not a Hack as Army First Said

Microsoft Teams Phishing Attack Targets Office 365 Users

Facebook, News and XSS Underpin Complex Browser Locker Attack

NVIDIA Patches High Severity GeForce Experience Vulnerabilities

Snyk to Automatically Check Docker Official Images for Security Problems

Security Experts Alarmed by ‘Broken’ Cyber Market

Fraud Analysts Miss Dark Web Data

10/21/2020

U.S. Tries to Get Huawei Blocked From Brazil’s 5G Networks With $1 Billion Financing Pledge

Trump Signs Legislation Making Hacking Voting Systems a Federal Crime

Cybercriminals Step Up Their Game Ahead of U.S. Elections

Threatening Emails Escalate Voter Intimidation Concerns

Biden Campaign App ‘Hack’ Shows Him Wearing MAGA Hat, Telling People to Vote Trump

Disjointed Covid-19 Apps Across U.S. Raise Questions About Tech’s Role

Fort Bragg Deletes Twitter Account, Blames Hack for Explicit Tweets

Mastercard, Idemia, and MatchMove to Pilot Contactless Card With Biometric Reader in Asia

U.S. PayPal Users Can Soon Use Crypto in Lieu of Fiat Currency

CoinDesk: Ban All Ransomware Payments, in Bitcoin or Otherwise

Thought the FBI Were the Only Ones Able to Unlock Encrypted Phones? Pretty Much Every U.S. Cop Can Get the Job Done

Google Chrome Now Blocks Site Notifications With Abusive Content
Montreal’s STM Public Transport System Hit by Ransomware Attack

City of Shafter (CA) Hit by Ransomware Attack

Jekyll Island (GA) Authority Still Addressing Ransomware Attack

Egregor Claims Responsibility for Barnes & Noble Attack, Leaks Data

M&S Boss Spoofed in Gift Voucher Scam

LockBit Ransomware Moves Quietly on the Network, Strikes Fast

QNAP Warns of Windows Zerologon Flaw Affecting Some NAS Devices

Lightning Network Discloses “Concerning” Crypto Vulnerabilities

Oracle Kills 402 Bugs in Massive October Patch Update

WordPress Deploys Forced Security Update for Dangerous Bug in Popular Plugin

Windows 10 20H2 Adds Faster Malware Detection to Security Baseline

10/20/2020

U.S.-China Tensions Could Split the Internet — and Data Will Play a Key Role in How Far That Goes

..Sweden Bans Use of Huawei, ZTE Equipment in New 5G Networks

U.S. Spy Agency Warns That Chinese Hackers Target Military, Defense Industry

Chinese Hackers Are Hitting These 25 Vulnerabilities, Says NSA

Japan Will Take Steps to Guard Against Olympics Cyberattacks

Kremlin Denies Olympics Hacking Allegations

Microsoft Disables Most of Cybercriminals’ Control Over Massive Computer Network

TrickBot Malware Under Siege From All Sides, and It’s Working

IoT Security Foundation Launches Vulnerability Disclosure Platform

Cybersecurity And The Remote Classroom

Justice Department Hits Google With Antitrust Lawsuit

House Republicans Urge Democrats to Call Hearing With Tech CEOs
Pharma Giant Pfizer Leaks Customer Prescription Info, Call Transcripts

Made in Oregon Notifies 7,800 Customers of Possible Data Breach

Medicaid Billing Company Timberline Billing Service LLC’s Data Accessed by ‘Unknown Actor’; Firm Works With Many Iowa School Districts

Toledo Public Schools (OH) Vows Support for Staff Affected by Breach After 9GB of Data Posted Online

Facebook: A Top Launching Pad For Phishing Attacks

Mobile Browser Bugs Open Safari, Opera Users to Malware

Orgs Struggling to Secure SaaS Applications Following Shift to the Cloud

Cisco Warns of Attacks Targeting High Severity Router Vulnerability

Adobe Fixes 16 Critical Code-Execution Bugs Across Portfolio

VMware Patches ESXi Flaw That Can Be Abused on the Network to Hijack Hosts, Other Vulns

New Google Chrome Version Fixes Actively Exploited Zero-Day Bug

Iranian Millionaire Jailed for Violating US Sanctions

10/16-19/2020

Krebs: QAnon/8Chan Sites Briefly Knocked Offline

Biden Campaign Staffers Targeted in Cyberattack Leveraging Antivirus Lure, Dropbox Ploy

Federal Commission Issues Recommendations for Securing Critical Tech Against Chinese Threats

Tokyo Olympics: Russian Hackers Targeted Games, UK Says

Russian Hackers in the NotPetya, Ukraine Power Grid, 2018 Olympics, 2017 French Election Attacks: U.S. Indictment

U.S. Blocked Chinese Purchase of San Diego Fertility Clinic Over Medical Data Security Concerns

Microsoft Exchange, Outlook Under Siege By APTs

China Revises Laws to Strengthen Protection of Minors Online

Instagram’s Handling of Children’s Data Under EU Investigation

Nation-State Actor Hit Google With the Largest DDoS Attack

Microsoft Issues Out-of-Band Windows Security Updates for RCE Bugs

Mysterious ‘Robin Hood’ Hackers Donating Stolen Money

Rapper Scams $1.2M in COVID-19 Relief, Gloats with ‘EDD’ Video

Phishers Capitalize on Headlines with Breakneck Speed

FBI Warns of Newly Registered Domains Spoofing U.S. Census Bureau

Hackers Smell Blood as Schools Grapple With Virtual Instruction

Microsoft is the Most-Imitated Brand for Phishing Emails

Toshiba Targets $3 Billion Revenue in Quantum Cryptography by 2030

Lawsuit Accuses Indian Hackers of Leaking Businessman’s Emails
Verificient Technologies’ Anti-Cheating Software Suffers Data Breach

Fanduel, Draftkings Data Provider Stats Perform Hit by Ransomware Attack

Albion Online Game Maker Discloses Data Breach

Haldiram’s (India) Hit by Ransomware Attack, Hackers Asked for $7.5 Lakh

Hackers Hijack Telegram, Email Accounts in SS7 Mobile Attack

Hackers Now Abuse BaseCamp for Free Malware Hosting

Cyber-attack on Yazoo County School District (MS) Costs $300k

Michigan Medicine Notifies Patients of Email Information Breach

Waze Vulnerability Lets Attackers Track and Identify Users

Coinbase Phishing Hijacks Microsoft 365 Accounts via OAuth App

Ryuk Ransomware Gang Uses Zerologon Bug for Lightning-Fast Attack

Overlay Malware Targets Windows Users with a DLL Hijack Twist

Watch Out for Emotet Malware’s New ‘Windows Update’ Attachment

GravityRAT Comes Back to Earth with Android, macOS Spyware

ThunderX Ransomware Rebrands as Ranzy Locker, Adds Data Leak Site

Google Warns of Zero-Click Bluetooth Flaws in Linux-based Devices

10/15/2020

Study: Half of Battleground States Facing Cybersecurity Challenges Ahead of Election

Twitter Locks Trump Campaign Account

Twitter Suffers Massive Outage; ‘No Evidence’ of Hack or Security Breach

Iran Says Hackers Attacked Two of Its Key Institutions

Trump Administration Rolls Out Strategy to Secure, Promote Critical Technologies

Data Breaches Hit Thousands of K-12 Students, Federal Watchdog Reports

Federal Watchdog Finds Escalating Cyberattacks on Schools Pose Potential Harm to Students

How One Family’s Nightmare Illustrates the Growing Threat of Real Estate Wire Fraud

Microsoft Now Lets You Disable Insecure JScript in Internet Explorer

US Indicts Money Launderers From Criminal Organization QQAAZZ
Krebs: Breach at Dickey’s BBQ Smokes 3M Cards

Broadvoice Leak Exposes 350M Records, Personal Voicemail Transcripts

Crytek Hit by Egregor Ransomware, Ubisoft Data Leaked

Robinhood Internal Probe Finds Hackers Hit Almost 2,000 Accounts

Barnes & Noble Hack: A Reading List for Phishers and Crooks

Online Proctor Service ProctorTrack Disables Service After Hack

Yorktown, Croton-Harmon Schools (NY) Suffer Cybersecurity Attacks

Possible Data Breach Exposes 2,219 Patient Files at McLaren Oakland Hospital (MI)

FIFA 21 Blockbuster Release Gives Fraudsters an Open Field for Theft

Critical Magento Holes Open Online Shops to Code Execution

10/14/2020

Facebook and Twitter Reducing Distribution of New York Post Hunter Biden Story

Twitter’s Security Fell Short Before Hack Targeting Celebrities, Regulator Says

YouTube Bans COVID-19 Vaccine Misinformation

New York Regulator Urges Oversight for Social-Media Giants

Iranian Hackers Restart Attacks on Universities as the New School Year Begins

Zoom Rolls Out End-to-End Encryption (E2EE) Next Week

Police Raided German Spyware Company FinFisher Offices

Brit Webcam Criminal Snared in FBI Luminositylink Creepware Sting Spared Prison

The Important Difference Between Cybersecurity And Cyber Resilience (And Why You Need Both)
Carnival Confirms Passenger Data Compromised

Cyber Attack Disrupts Remote Learning in Sandwich Public Schools (MA)

FIN11 Cybercrime Gang Shifts Tactics to Double-Extortion Ransomware

Travelex, Other Orgs Face DDoS Threats as Extortion Campaign Rages On

Canva Design Platform Actively Abused in Credentials Phishing

Google, Intel Warn on ‘Zero-Click’ Kernel Bug in Linux-Based IoT Devices

Critical SonicWall VPN Portal Bug Allows DoS, Worming RCE

U.S. Cyber Command: Patch Windows ‘Bad Neighbor’ TCP/IP Bug Now

Microsoft Rolls Out New Edge Extensions API but Promises to Leave Ad Blockers Alone

10/13/2020

State Officials Warn of Delayed Election Results From Influx of Mail-in Ballots

Election Systems Under Attack via Microsoft Zerologon Exploits

As Voters Cast Their Ballots, Courts Nationwide Issue Election Security Edicts

Cut Cable Shuts Down Virginia’s Online Voter Registration

Russia Blamed for Cyber-attack on Norwegian Parliament

US GAO Calls for Greater Cybersecurity for Commercial Airplanes

Security Experts Warn of Amazon Prime Day Scams

Executive Overconfidence a Security Risk

How to Improve the Cybersecurity of Your Remote Workers
London’s Hackney Borough Council Hit by Hack Attack

International Law Firm Seyfarth Discloses Ransomware Attack

Miami Tech Company Intcomex Suffers Major Data Breach

Facility Services Provider Spotless Suffers Ransomware Attack

Lemon Duck Cryptocurrency-Mining Botnet Activity Spikes

Authentication Bug Opens Android Smart-TV Box to Data Theft

Windows and Mac Users Alike Urged to Patch PhantomPDF Over Use-After-Free Vulns

Critical Flash Player Flaw Opens Adobe Users to RCE

Krebs: Microsoft Patch Tuesday, October 2020 Edition

10/9-12/2020

Court Orders Seizure of Ransomware Botnet Controls as U.S. Election Nears

Hackers Used VPN Flaws to Access Us Gov’t Elections Support Systems

Georgia Marred by Technical Problems, Long Lines on First Day of Early Voting

DHS: Unknown Hackers Targeted the U.S. Census Bureau Network

Cyber-attacks on Angolan Journalists Who Reported Government Corruption

Thai Army Denies Twitter Disinformation Campaign After Takedowns

Cambridge University Releases Fake News Game

Krebs: Microsoft Uses Trademark Law to Disrupt Trickbot Botnet

Krebs: U.S. Cyber Command Behind Trickbot Tricks (WashPo Report)

Gov-Linked “Fatima” Cybersecurity Career Advert Removed After Backlash

Facebook Debuts Bug-Bounty ‘Loyalty Program’

Budget and Hiring Practices Hinder Cities’ Cybersecurity Efforts

Ransomware Attackers Buy Network Access in Cyberattack Shortcut

Here’s How Many Americans Still Secretly Use Their Ex’s Passwords

Cybercriminals Are Impersonating Parents for Ransomware Attacks on Teachers

55 New Security Flaws Reported in Apple Software and Services
Software AG Hit by Data-Stealing Ransomware Attack

Cyber Attack Targets Georgia Department of Human Services

City of Mt. Pleasant (MI) Falls Victim to Remote Ransomware Attack

Franklin, MA Loses $522K to ‘Spear Phishing’ Cyberattack

Investigation Underway After Tyngsboro (MA) Schools Hit by Cyberattack

Police Investigating Cyber Attack on Walled Lake (MI) School District

Fairfax County Public Schools (AV) Announces Student, Teacher PII Leaked to the Dark Web

Robinhood Says Some Customer Accounts May Have Become Target of Hackers

India Lab Testing Company Dr Lal PathLabs Exposed Sensitive Patient Data

Lake George Conservancy Hit by Ransomware Attack

Ransomware Gang Exposes Truckers’ PII After Attack on Daseke Carrier E.W. Wylie

Fitbit Spyware Steals Personal Data via Watch Face

Undocumented Backdoor That Covertly Takes Snapshots Found in Xplora’s X4 Kids’ Smartwatch

Wormable Apple iCloud Bug Allows Automatic Photo Theft

QBot Uses Windows Defender Antivirus Phishing Bait to Infect PCs

BazarLoader Used to Deploy Ryuk Ransomware on High-Value Targets

Sophisticated Android Ransomware Executes with the Home Button

Windows Update Can Be Abused to Execute Malicious Files

10/8/2020

Facebook, Twitter Dismantle Global Array of Disinformation Networks

U.S. Seizes 92 Domains Used by Iran for ‘Global Disinformation Campaign’

Judge Orders Twitter To Unmask FBI Impersonator Who Set Off Seth Rich Conspiracy

Trojan Malware Targets Trump Supporters

Amazon Prime Day Spurs Spike in Phishing, Fraud Attacks

New EU ‘Gateway’ Will Link Coronavirus Apps Across Borders

Justice Department Rolls Out Report Detailing Cryptocurrency Security Threats

Waterbear Malware Used in Attack Wave Against Government Agencies

Krebs: Amid an Embarrassment of Riches, Ransom Gangs Increasingly Outsource Their Work

Former eBay Workers Plead Guilty to Cyberstalking Campaign Against Couple
Wisepay: School Payments Service Hit by Cyber-Attack

Springfield Public Schools District (MA) Shut Down by Ransomware Attack

Hall County (GA) Phone Services Available After Wednesday Ransomware Attack, Recovery Ongoing

Data Breach at AAA Ambulance Service (MS) Exposes Sensitive Information of Patients

RAINBOWMIX Apps in Google Play Serve Up Millions of Ad Fraud Victims

Sam’s Club Customer Accounts Hacked in Credential Stuffing Attacks

MontysThree APT Takes Unusual Aim at Industrial Targets

HEH P2P Botnet Sports Dangerous Wiper Function

Microsoft Azure Flaws Open Admin Servers to Takeover

Cisco Fixes High-Severity Webex, Security Camera Flaws

10/7/2020

Huawei: ‘Clear Evidence of Collusion’ With Chinese Communist Party

Facebook to Slap Labels on Posts if Candidates Prematurely Declare Victory

Phishing Emails Lure Victims With Inside Info on Trump’s Health

IRS COVID-19 Relief Payment Deadlines Anchor Convincing Phish

U.S. Brokerage Firms Warned of Widespread Survey Phishing Attacks

Remote Workers Keep IT Issues to Themselves

‘Mercenary’ Hacker Group ‘Bahamut’ Runs Rampant in Middle East, Cybersecurity Research Shows

Krebs: Promising Infusions of Cash, Fake Investor John Bernard Walked Away With $30M

UK Regulator Bans Cryptocurrency Derivatives

Ukraine Plan to Tackle Hackers Sparks Privacy Fears

Supreme Court Hears Landmark $9B Copyright Fight Between Oracle, Google
More Than 1,600 Mayo Clinic Patients Impacted by Privacy Breach

Heartland Community College (IL) Addressing Cybersecurity Breach

Ransomware Hackers Claim Attack on Texas Customs Broker Daniel B. Hastings

Former Congress Member Katie Hill’s Twitter Account Hacked After Movie Deal Announcement

Mumbai University Distance Education Exams Hit By Cyber Attack

Eight Exchange Operators Also Attacked During New Zealand Hack, Says Cyber Intelligence Group Chairman

PoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating Conflict

Comcast TV Remote Hack Opens Homes to Snooping

QNAP Fixes Critical Flaws That Could Lead to Device Takeover

Google’s Chrome 86: Critical Payments Bug, Password Checker Among Security Notables

Microsoft Adds Consent Phishing Protection to Office 365

10/6/2020

DHS Points to Russia as Key Disinformation Threat Ahead of Election

Officials Urge Social Media Groups to Weed Out Election Disinformation Targeting Minority Voters

APT Attack Injects Malware into Windows Error Reporting

CISA: Emotet Increasing Attacks on U.S. State, Local Governments

Israeli Government Reportedly Investigating Unsuccessful Hack Targeting Crypto CEOs

More Than 100 Charities Report Being Caught up in Blackbaud Ransomware Attack

EU Seeks Authority to Cut Off Banks’ Tech Suppliers if Found Wanting on Cybersecurity

Anti-Virus Creator John McAfee Arrested Over Tax Evasion Charges

Cisco Ordered to Pay $1.9 Billion for Security Patent Infringement
Boom! Mobile Customer Data Lost to Fullz House/Magecart Attack

Chowbus Delivery Service Breached, Hacker Emails Data to Users

Qiui’s Cellmate Male Cage Chastity Gadget Hack Could Lock Users In

REvil Ransomware Gang Offers $1 Million As Part Of Recruitment Drive

Malware Campaigns Deliver Payloads via Obscure Paste Service

Unpatched Apple T2 Chip Flaw Plagues Macs

Chrome 86 Rolls Out With Massive User Security Enhancements

Cloudflare Can Now Send DDoS Alerts for Sites Are Under Attack

10/2-5/2020

Majority of Americans Concerned About Potential Foreign Election Interference: Poll

Voter Registration ‘Error’ Phish Hits During U.S. Election Frenzy

Ransomware Disrupts COVID-19 Medical Trials

Her Majesty’s Revenue and Customs (HMRC) Hit by Multiple Phishing and Spam Emails

CEOs of Google, Facebook and Twitter to Testify Before Senate

Years-Long ‘SilentFade’ Attack Drained Facebook Victims of $4M

LatAm Banking Trojans Collaborate in Never-Before-Seen Effort

Rare Bootkit Malware Targets North Korea-Linked Diplomats

Microsoft: Iranian Hackers Actively Exploiting Windows Zerologon Flaw

Krebs: Attacks Aimed at Disrupting the Trickbot Botnet

A Millionaire Hacker’s Lessons for Corporate America

Video-Game Piracy Group ‘Team Xecuter’ Leaders in Custody

Researchers Mixed on Sanctions for Ransomware Negotiators

Ransomware Victims Aren’t Reporting Attacks to Police. That’s Causing a Big Problem

Malware Families Turn to Legit Pastebin-Like Service
Egregor Ransomware Threatens ‘Mass-Media’ Release of Corporate Data

Hacker Group Compromises Mobile Provider to Steal Credit Cards

Grindr Fixed a Bug Allowing Full Takeover of Any User Account

Students and Employees Notified of Gulf Coast State College Data Breach

Horry County (SC) Police Investigating After Virtual Classroom Hacked, According to District

Black-T Malware Emerges From Cryptojacker Group TeamTNT

Tenda Router Zero-Days Emerge in Spyware Botnet Campaign

Crypto-Mining Malware Adds Linux Password Stealing Capability

Mosaicregressor: Second-Ever UEFI Rootkit Found in the Wild

Post Grid WordPress Plugin Flaws Allow Site Takeovers

HP Device Manager Backdoor Lets Attackers Take Over Windows Systems

New Flaws in Top Antivirus Software Could Make Computers More Vulnerable

New Ransomware Vaccine Kills Programs Wiping Windows Shadow Volumes

Hacker Uploads Own Fingerprints To Crime Scene In Dumbest Cyber Attack Ever

10/1/2020

Huawei ‘Failed to Improve UK Security Standards’

Lawmakers Introduce Bill Targeting Foreign Disinformation on Social Media

Privacy, Civil Rights Groups Demand Transparency From Amazon on Election Data Breaches

Emotet Emails Strike Thousands of DNC Volunteers

New Service Checks if Your Email Was Used in Emotet Attacks

Twitter Shutters 130 Iranian Accounts Trying to Disrupt Presidential Debate

Online Journals Flagged as Election Disinformation Threat

U.S. Treasury Warns Cyber Insurers Payments to Hackers May Violate Sanctions

Krebs: Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

Universal Health Services Says Its Network Is Being Restored After Malware Incident

Cloud Biz Blackbaud Admits Ransomware Criminals May Have Captured Folks’ Bank Info

H&M Fined €35.2m for GDPR Violations
Global Regulator International Maritime Organization Hit by Cyberattack

Hackers Leak Files Stolen in Pakistan’s K-Electric Ransomware Attack

Nebraska Medicine Provides Update on ‘Cyber Attack’ Causing Network Issues

InterPlanetary Storm Botnet Infects 13K Mac, Android Devices

Experts Warn of $15m Global BEC Campaign

Ransomware Gangs Add DDoS Attacks to Their Extortion Arsenal

Cryptojacking: The Unseen Threat

Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs

Spammers Smuggle LokiBot Via URL Obfuscation Tactic

Critical Flaws Discovered in Popular Industrial Remote Access Systems

NVIDIA Fixes High Severity Flaws in Windows Display Driver

9/30/2020

House Panel Says U.S. Intelligence Community Not Equipped to Address Evolving Chinese Threats

Chinese APT Group Palmerworm (aka BlackTech) Targets Media, Finance, and Electronics Sectors

Android Spyware Variant From APT-C-23 (aka Two-Tailed Scorpion and Desert Scorpion) Snoops on WhatsApp, Telegram Messages

North Korea Has Tried to Hack 11 Officials of the UN Security Council

DFAT Reveals Email Addresses of Vulnerable Australians Stranded Overseas

Facebook Small Business Grants Spark Identity-Theft Scam

Federal Internet of Things Security Rules Could Provide Blueprint for Private Sector

Anthem to Pay Nearly $40 Million to Settle Data Breach Probe by U.S. States

Two Charged for Hacking NBA, NFL Players’ Social Media Accounts

Russian Hacker, Described as ‘Brilliant’ by Judge, Gets Seven Years in U.S. Prison for Raiding LinkedIn, Dropbox
Kylie Jenner’s Makeup Company Warns of Data Breach

Applicants Say a DC Bar Website Bug Exposed Their Personal Data and Background Checks

Northern California Casino Cache Creek Casino Resort Shut Down by External Computer Attack, May Be Ransomware

Cyber Attack Interrupts Online Learning at Greece Central School District (NY)

Patient Data Compromised in Oaklawn (MI) Email Security Incident

Some Pell City (AL) Utility Customers May Have Suffered Data Breach

QNAP Warns Customers of Recent Wave of Ransomware Attacks

Blackbaud: Ransomware Gang Had Access to Banking Info and Passwords

OAuth Consent Phishing Ramps Up with Microsoft Office 365 Attacks

Microsoft Exchange Servers Still Open to Actively Exploited Flaw