12/30/2020 December 31, 2020December 31, 2020 ~ The Cyber Beat ~ Leave a comment ‘Bullet Has Left the Chamber’: Biden Will Not Likely Roll Back Trump Campaign Against China TechCISA Updates SolarWinds Guidance, Tells U.S. Gov’t Agencies to Update Right AwayLocal Governments Needn’t Face Ransomware Streak Alone, Experts SayTaking a Neighborhood Watch Approach to Retail CybersecurityThe Curse of Knowing a Bit About IT: ‘Could You Just…?’ and ‘No I Haven’t Changed Anything’54 Predictions About The State Of Data In 2021KrebsOnSecurity Turns 11T-Mobile Data Breach Exposed Phone Numbers, Call RecordsGermany: ‘Colossal’ Cyberattack Knocks Out Funke News GroupEmotet Malware Hits Lithuania’s National Public Health CenterPune-Based Engineering Company Loses 56,000 Euros in Cyber AttackNew Worm Turns Windows, Linux Servers Into Monero MinersAdobe Now Shows Alerts in Windows 10 to Uninstall Flash Player
12/29/2020 December 30, 2020December 30, 2020 ~ The Cyber Beat ~ Leave a comment Microsoft: SolarWinds Hackers’ Goal Was the Victims’ Cloud DataOp-Ed: What Nobody Else Will Say About the New Cybersecurity CrisisU.S. Treasury Warns of Ransomware Targeting COVID-19 Vaccine ResearchFBI: Swatters Hijack Smart Home Devices to Watch Emergency Responders2020 Work-for-Home Shift: What We Learned2020 Was the Worst Year Ever for Ransomware: 2021 Will Be More of the SameLawsuit Claims Flawed Facial Recognition Led to Man’s Wrongful ArrestChina Eyes Shrinking Jack Ma’s Business EmpireJapanese Aerospace Firm Kawasaki Warns of Data BreachVoyager Cryptocurrency Broker Halted Trading Due to CyberattackAntwerp General Medical Laboratory Becomes Latest Victim of Cyber-AttackCity of Cornelia (GA) Hit by Ransomware AttackA Google Docs Bug Could Have Allowed Hackers See Your Private DocumentsWasabi Cloud Storage Service Knocked Offline for Hosting MalwareAutoHotkey-Based Password Stealer Targeting US, Canadian Banking UsersCryptojacking: Has Your Computer Been Hijacked Yet?India: A Growing Cybersecurity Threat
12/28/2020 December 29, 2020December 29, 2020 ~ The Cyber Beat ~ Leave a comment Biden Calls for Modernizing U.S. Defenses Following Massive HackFinnish Parliament Says Some Lawmakers’ Emails HackedHackers Amp Up COVID-19 IP Theft AttacksCISA Releases Azure, Microsoft 365 Malicious Activity Detection ToolRansomware in 2020: A Banner Year for Extortion…Health to Be on Cyber-Security’s Front Line in 2021After Ledger Hack, Who Can You Trust For Bitcoin Storage?UK NCA Visits WeLeakInfo Users to Warn of Using Stolen DataHome Appliance Giant Whirlpool Hit in Nefilim Ransomware AttackCyber Attack on Budget Department in the Dominican RepublicAthens (GA) Optometrist Five Points Eye Care Reports Data BreachAida Cruises Cancels Trips Due to Mysterious “IT Restrictions”Multi-Platform Card Skimmer Found on Shopify, BigCommerce StoresGitHub-Hosted Malware Calculates Cobalt Strike Payload From Imgur Pic10 Benefits of Running Cybersecurity Exercises
12/24-27/2020 December 28, 2020December 28, 2020 ~ The Cyber Beat ~ Leave a comment Hackers Also ‘Impacting’ State, Local Governments, U.S. Cybersecurity Agency SaysSuspected Russian Hackers Used Microsoft Vendors to Breach CustomersSolarWinds: Hacked Firm Issues Urgent Security FixSolarWinds Releases Updated Advisory for New SUPERNOVA Malware…Cleanup Could Take Months or LongerSuspected Russian Hackers Tried to Access CrowdStrike’s Email…CrowdStrike Releases Free Azure Security Tool After Failed HackNashville Explosion Uncover Weakness in Communication Infrastructure: Security ExpertGoDaddy Employees Were Told They Were Getting a Holiday Bonus: It Was Actually a Phishing TestHow 2020 Supercharged Cloud Security CompaniesQuarterbacking Vulnerability RemediationHacker Earns $2m in Bug Bounties on HackerOneAlibaba, Ant Face Crackdowns From Chinese RegulatorsPolice Arrest 21 WeLeakInfo Customers Who Bought Breached Personal DataKoei Tecmo Discloses Data Breach After Hacker Leaks Stolen DataNetGalley Discloses Data Breach After Website Was HackedRussian Crypto-Exchange Livecoin Hacked After It Lost Control of Its ServersREvil Threaten to Leak Plastic Surgery Pictures From The/Transform Hospital GroupFreePBX Developer Sangoma Hit With Conti Ransomware AttackSangoma Technologies Disclose Ransomware Attack: Conti Ransomware Gang InvolvedMisconfigured AWS Bucket Exposes Hundreds of Social InfluencersEyeMed Email Hack Exposes Data of 485k+ Aetna, Blue Cross MembersSky Lakes Finds Ransomware Attack Didn’t Compromise Patient InformationFake Amazon Gift Card Emails Deliver the Dridex MalwareAttackers Abusing Citrix NetScaler Devices to Launch Amplified DDoS AttacksWindows Zero-Day Still Circulating After Faulty Fix
12/23/2020 December 24, 2020December 24, 2020 ~ The Cyber Beat ~ Leave a comment SolarWinds Sunburst: UK Data Watchdog Issues Hack AlertU.S. Homeland Security Warns American Business Not to Use Chinese Tech or Let Data Behind the Great FirewallFBI: Iran Behind Pro-Trump ‘Enemies of the People’ Doxing SiteNo Emails Have Leaked From the 2020 Election Campaigns Yet — Tiny USB Sticks May Be One Reason WhyLazarus Group Hits COVID-19 Vaccine-Maker in Espionage AttackHey Alexa, Who Am I Messaging? Microphones Sensitive Enough to Record PINs and Other Sensitive InfoWeb Page Layout Can Trick Users into Divulging More InfoCompanies Face Privacy, Data-Flow Risks in Post-Brexit UKCoalition of Human Rights Groups Joins Suit Against Israeli Firm NSOLeaky Server Exposes 12 Million Medical Records to Meow AttackerData Breach Hits Members of BlueCross BlueShield of Tennessee’s Vision Care Vendor EyeMedData Breach Hits 30,000 Signed up to Workplace Pensions Provider Now:PensionsCyber-Attack on European Court of Human RightsPSA: Active Chase Phishing Scam Pretends to Be Fraud AlertsQNAP Fixes High Severity QTS, QES, and QuTS Hero VulnerabilitiesWindows Zero-Day With Bad Patch Gets New Public Exploit CodeMicrosoft 365 Admins Can Now Get Security Incident Email AlertsFact vs. Fiction: Film Industry’s Portrayal of Cybersecurity
12/22/2020 December 23, 2020December 23, 2020 ~ The Cyber Beat ~ Leave a comment Biden Says Huge Data Breach Poses ‘Grave Risk’ to U.S., Promises Response…Campaign Says Twitter Will Wipe POTUS Account’s FollowersEuropean Medicines Regulator Says Cyberattack Limited to One It ApplicationFBI Warns of Ongoing COVID-19 Vaccine Related Fraud SchemesPhishers Spoof New York Department of LaborHow U.K. Racing Team McLaren Almost Got PhishedPolice Seize Safe-Inet VPN Service Beloved by Cyber-criminalsSignal: Cellebrite Claimed to Have Cracked Chat App’s EncryptionJoker’s Stash Carding Site Taken DownRoanoke College (VA) Delays Spring Semester After CyberattackNintendo Has Reportedly Suffered Another Major Data Leak, Now Related to SwitchTennessee Medicaid Plan’s Vendor Mails PHI to Wrong Members, Exposes 3,300University of Vermont Medical Center Finally Admits It Was Victim of RansomwareHoliday German Shepherd Puppy Swindle Has Consumers HowlingRobinhood User Says $300,000 Restored From Hack, Then Taken BackEmotet Campaign Restarts After Seven-Week Hiatus
12/21/2020 December 22, 2020December 22, 2020 ~ The Cyber Beat ~ Leave a comment Al Jazeera Journalists ‘Hacked via NSO Group Spyware’…Microsoft, Google, Cisco, Dell Join Legal Battle Against Hacking Company NSOBarr Says Russia Appears to Be Behind Massive Hack…Russia Officially Denies Large-scale U.S. Hack…Dummy Run Last Year?‘Dozens of Email Accounts’ Were Hacked at U.S. Treasury -Senator WydenNew SUPERNOVA Backdoor Found in SolarWinds Cyberattack AnalysisSecurity Vendors: It’s Time to Come Clean About IntrusionsTrump Breakup Plan for Cyber Command and NSAU.S. Seizes Domains Used for COVID-19 Vaccine Phishing AttacksDutch Program Aims to Deter Young Hackers Before They Commit CrimesDark Web Pricing Skyrockets for Microsoft RDP Servers, Payment-Card DataEXMO Cryptocurrency Exchange Hacked, Loses 5% of Total AssetsPhysical Addresses of 270k Ledger Owners Leaked on Hacker Forum…Why Ledger Kept All That Customer Data in the First PlaceAuction Software Provider Freedman Hit with Foreign Ransomware AttackCity of Ellensburg (Wa) Hit With Ransomware, All Data InaccessibleTSYS Staff in Belfast and Derry Told PII at Risk After Ransomware AttackSmart Doorbell Disaster: Many Brands Vulnerable to AttackNosy Ex-Partners Armed with Instagram Passwords Pose a Serious ThreatCritical Bugs in Dell Wyse Thin Clients Allow Code Execution, Client TakeoversZero-Click Apple Zero-Day Uncovered in Pegasus Spy Attack
12/18-20/2020 December 21, 2020December 21, 2020 ~ The Cyber Beat ~ Leave a comment U.S. Cyber-Attack: Around 50 Firms ‘Genuinely Impacted’ by Massive Breach…Russia ‘Clearly’ Behind SolarWinds Operation, Says Pompeo…Romney Calls for Response ‘of Like Magnitude or Greater’ to Russia Hack…Christopher Krebs Says U.S. Should Be ‘Cautious’ About Escalating Cyber War With Russia…‘Powerful Tradecraft’: How Foreign Cyber-Spies Compromised America…Krebs: VMware Flaw a Vector in SolarWinds Breach?…Second Hacking Team Was Targeting SolarWinds at Time of Big Breach…Hackers’ Broad Attack Sets Cyber Experts Worldwide Scrambling to Defend Networks…Cloudflare CEO Says ‘Zero-Trust Architecture’ Is an Answer to U.S. Government BreachAlibaba Facial Recognition Tech Picks Out Uyghur MinoritiesCloud is King: 9 Software Security Trends to Watch in 2021Europol Launches New Decryption Platform for Law EnforcementUnsecured Azure Blob Exposed 500k+ Highly Confidential Docs From UK Firm’s CRM CustomersA Facebook Bug Exposed Instagram Users’ Personal Email Addresses and BirthdaysGoogle Blames Gmail, YouTube Outage on Error in User ID SystemBouncy Castle Bug Puts Bcrypt Passwords at RiskFlavors Designer Symrise Halts Production After Clop Ransomware AttackGreater Baltimore Medical Center Systems Nurse: Hospital ‘Crippled’ by December Ransomware CyberattackStealthy Magecart Malware Mistakenly Leaks List of Hacked StoresFirefox to Ship ‘Network Partitioning’ as a New Anti-Tracking DefenseApple, Google, Microsoft, and Mozilla Ban Kazakhstan’s MitM HTTPS CertificateCloud is King: 9 Software Security Trends to Watch in 2021Port of Los Angeles Plans Cyber Intelligence Facility as Maritime Threats Grow
12/17/2020 December 18, 2020December 18, 2020 ~ The Cyber Beat ~ Leave a comment U.S. Cyber-Attack: Hack of Government Agencies and Companies Poses ‘Grave Risk’…‘Will Take Years to Overcome,’ Former National Intelligence Official Says…Microsoft Says It Found Malicious Software in Its Systems…Nuclear Weapons Agency Breached Amid Massive Cyber Onslaught…U.S. Energy Department Probes Hack, Says No Threat to National Security…Hack Suggests New Scope, Sophistication for Cyberattacks…Biden Calls Cybersecurity a ‘Top Priority’Experts Urge Users to Ignore Facebook Christmas Bonus ScamHow to Use Password Length to Set Best Password Expiration Policy50% of U.S. Tech Execs Say State-Sponsored Cyber Warfare Their Biggest Threat: CNBC SurveyGoogle Hit With Another Antitrust Lawsuit by StatesEU Regulators Seek to Extend Cybersecurity Rules to More IndustriesPeople’s Energy Data Breach Affects All 270,000 CustomersForward Air Corporation Likely Hit in CyberattackNation-State Hackers Breached U.S. Think Tank Thrice in a RowSoftware Supply-Chain Attack Hits Vietnam Government Certification AuthorityIranian Nation-State Hackers Linked to Pay2Key Ransomware‘Off the Shelf’ Tor Backdoor Malware SystemBC Is a Firm Favorite With Ransomware OperatorsRansomware Masquerades as Mobile Version of Cyberpunk 2077Air-Gap Attack Turns Memory Modules into Wi-Fi RadiosBouncy Castle Crypto Authentication Bypass Vulnerability Revealed5M WordPress Sites Running ‘Contact Form 7’ Plugin Open to AttackAd-Blocker AdGuard Deploys World’s First DNS-over-QUIC Resolver
12/16/2020 December 17, 2020December 17, 2020 ~ The Cyber Beat ~ Leave a comment Krebs: Malicious Domain in SolarWinds Hack Turned into Sunburst ‘Killswitch’…The SolarWinds Perfect Storm: Default Password, Access Sales and More…Billions Spent on U.S. Defenses Failed to Detect Giant Russian Hack…A Wake-up for the World on Cyber Security…Durbin Says Alleged Russian Hack ‘Virtually a Declaration of War’…Trump Aide O’Brien Cuts Europe Trip Short to Deal With Cyber HackTrump Twitter ‘Hack’: Police Accept Attacker’s ClaimChristopher Krebs Emphasizes Security of Election as Senators Butt HeadsSuspected Chinese Hackers Stole Camera Footage From African Union – MemoOhio Couple Sold Secrets to ChinaEU Unveils Revamp of Cybersecurity Rules Days After EMA HackBiden Faces Early Test on Digital Trade With EU Privacy TalksRansomware Attacks on the Rise Even as Cyber Insurers Scale BackTexas, Other States Bring Antitrust Lawsuit Against GoogleEmulated Mobile Devices Used to Steal Millions From U.S., EU BanksLithuania Suffers “Most Complex” Cyber-attack in YearsSonoma Valley Hospital (CA) Notifies 67k Patients of Data BreachFBI Says DoppelPaymer Ransomware Gang Is Harassing Victims Who Refuse to PaySextortionist Campaign Targets iOS, Android Users with New SpywareRyuk, Egregor Ransomware Attacks Leverage SystemBC BackdoorRansomware Attackers Using SystemBC Malware With RAT and Tor ProxyMalicious RubyGems Packages Used in Cryptocurrency Supply Chain AttackMalicious Chrome, Edge Extensions With 3M Installs Still in StoresHPE Discloses Critical Zero-Day in Server Management SoftwareNew 5G Network Flaws Let Attackers Track Users’ Locations and Steal DataMerchant Ships’ Dualog Connection Suite Riddled With Security VulnerabilitiesUS-CERT Reports 17,447 Vulnerabilities Recorded in 2020
12/15/2020 December 16, 2020December 16, 2020 ~ The Cyber Beat ~ Leave a comment Krebs: SolarWinds Hack Could Affect 18K Customers…Including Pentagon, State Department…Hackers Turned SolarWinds’ Dominance Against It…Shows Cyber Dangers to Supply Chains…White House: U.S. Taking Any Necessary Steps in Wake of Cyber Attack…Microsoft to Quarantine Compromised SolarWinds Binaries TomorrowModerna COVID-19 Vaccine Documents Accessed in EMA CyberattackFacebook Lifts Political Ad Ban for Georgia RunoffsGmail Hit by a Second Outage Within a Single DayTwitter Fined ~$550k Over a Data Breach in Ireland’s First Major GDPR DecisionThe Private Sector Needs a Cybersecurity TransformationThe Best Cybersecurity Predictions For 2021 RoundupMillions of Unpatched IoT, OT Devices Threaten Critical InfrastructureBeware Christmas Parcel Delivery Scams, Banks WarnHow Hackers Are Trying to Use QR Codes as an Entry Point for Cyber AttacksRansomware Masterminds Claim to Have 53GB of Data From Intel’s Habana LabsBanking Vendor American Bank Systems (ABS) Targeted in Cyber AttackNew Windows Trojan PyMICROPSIA May Soon Target Linux, MacOS DevicesGitpaste-12 Worm Widens Set of Exploits in New AttacksAgent Tesla Keylogger Gets Data Theft and Targeting Update45 Million Medical Images Left Exposed OnlineEasy WP SMTP Security Bug Can Reveal Admin CredentialsFirefox Patches Critical Mystery Bug, Also Impacting Google Chrome
12/14/2020 December 14, 2020December 14, 2020 ~ The Cyber Beat ~ Leave a comment Krebs: U.S. Treasury, Commerce Depts. Hacked Through SolarWinds Compromise…U.S. Homeland Security, Thousands of Businesses Also Scramble After Suspected Russian Hack…FireEye…U.S. Cybersecurity Agency Issues Emergency Directive Following Government Hacks…Undetected for Months…Kremlin Denies…No One Knows How Deep Russia’s Hacking Rampage GoesApple Adds Privacy Labels Showing What Information Apps Collect About UsersMicrosoft, Nintendo, and Sony Pledge to Make Gaming ‘Safer’ TogetherPornhub Removes All Unverified Content to Combat Child Sexual AbuseU.S. Jails Journalists’ Cyber-StalkerGmail, Youtube, Google Docs, and Other Google Services Hit by Massive OutageData Leak Exposes Details of Two Million Chinese Communist Party MembersNorway’s Cruise Line Hurtigruten Hit by Major It HackTwo Indian Banks Affected by Windows Ransomware AttacksFBI Investigating Ransomware Attack on Weslaco School District (TX)Text Messages Promising $1,200 Stimulus Checks Are Actually Scams, IRS WarnsHacking Group’s New Malware Abuses Google and Facebook ServicesNew Python-based Windows Trojan Steals Browser Credentials, Outlook FilesMicrosoft Office 365 Credentials Under Attack By Fax ‘Alert’ Emails
12/11-13/2020 December 14, 2020December 14, 2020 ~ The Cyber Beat ~ Leave a comment Suspected Russian Hackers Spied on U.S. Treasury Emails – Sources…Broad Hacking CampaignFacebook Shutters Accounts Used in APT32 CyberattacksWhen a Top Cybersecurity Firm Like FireEye Gets Hacked, What Is the Takeaway for the Average Netizen?Was Anna Kendrick’s Twitter Hacked? Offensive Posts on Her Timeline Has Fans WonderingEast London Hackney Cyber-Attack Causes Collapse of Property PurchasesPrivacy Groups Alarmed at Supermarket’s Facial Recognition TrialEx-Cisco Employee Who Crippled Webex and Cost Cisco Millions Gets 2 Years in U.S. PrisonU.S. Frees ISIL Cyber-OperativeGoogle Hires Goldman Sachs Veteran Phil Venables to Lead Cloud SecurityMicrosoft Office Security Updates Fix Critical SharePoint RCE BugsSamsung Fixes Critical Android Bugs in December 2020 UpdatesAdobe Releases Final Flash Player Update, Warns of 2021 Kill SwitchIT Company SolarWinds Says It May Have Been Hit in ‘Highly Sophisticated’ HackIntel’s Habana Labs Hacked by Pay2Key Ransomware, Data StolenDassault Falcon Jet Hit by Windows Ragnar Locker RansomwareTax Relief Biz Marriage Tax Refund Exposed Personal Info on 100,000 ClientsSubway UK Customers Receive ‘Malware’ Emails…Subway Marketing System Hacked to Send TrickBot Malware EmailsJersey City Utilities Agency Investigating Ransomware Attack That Blocked Access to ‘Vital’ DataLaurentian University Fends off Cyber AttackPGMiner, Innovative Monero-Mining Botnet, Surprises ResearchersMountLocker Ransomware Offering Double Extortion Scheme to Other HackersSecurity Issues in Verifone and Ingenico PoS Terminals Open Consumers to Fraud
12/10/2020 December 11, 2020December 11, 2020 ~ The Cyber Beat ~ Leave a comment FCC Rejects Huawei Appeal of National Security Threat DesignationChinese APT Suspected of Supply Chain Attack on Mongolian Government AgenciesChinese Embassy Blames Hackers for Retweet of Trump’s Claim That Democrats Cheated in ElectionMatthew Masterson to Leave Federal Cybersecurity AgencyU.S. Warns of Increased Cyberattacks Against K-12 Distance LearningOnline Ludlow (MA) Council Meeting Hijacked With Racist Abuse and Beheading VideosMisery of Ransomware Hits Hospitals the HardestSenior Managers Set Terrible Example for Secure Remote WorkingThe Line Between Physical Security & Cybersecurity Blurs as World Gets More DigitalNesos Raises Funding for Medical Device to ‘Hack’ the BrainAI Could Replace Humans in Cybersecurity by 2030Achieving The Golden Ratio In The Art Of CybersecurityNew Model Shows Why Countries That Retaliate Too Much Against Online Attacks Make Things Worse for ThemselvesTeen Who Shook the Internet in 2016 Pleads Guilty to DDoS AttacksKrebs: Payment Processing Giant TSYS: Ransomware Incident “Immaterial” to CompanyOne Million U.S. Patients Impacted by Dental Care Alliance BreachTech Unicorn UiPath Discloses Data BreachTourism Agency in Little Rock Target of HackCedar Springs Hospital (CO) Reports Data Breach After Surveyor Loses Storage DeviceSpotify Resets Passwords After a Bug Exposed Users’ Private Account InfoPLEASE_READ_ME Ransomware Attacks 85K MySQL ServersFake Data Breach Alerts Used to Steal Ledger Cryptocurrency WalletsMicrosoft Exposes Adrozek, Malware That Hijacks Chrome, Edge, and FirefoxHackers Can Use WinZip Insecure Server Connection to Drop MalwareCritical Steam Flaws Could Let Gamers Crash Opponents’ ComputersRemote Code Execution Vuln Uncovered in Starbucks Mobile PlatformSophos Fixes SQL Injection Vulnerability in Their Cyberoam OSZero-Click Wormable RCE Vulnerability in Cisco Jabber Gets Fixed, Again
12/9/2020 December 10, 2020December 10, 2020 ~ The Cyber Beat ~ Leave a comment Huawei Worked on Facial Recognition System to Surveil UighursChina Bans TripAdvisor, Other Apps in Crackdown on Pornography, Improper ContentEuropean Medicines Agency (EMA) Hit by Cyberattack…Hackers Steal Pfizer/BioNTech COVID-19 Vaccine Data in Europe, Companies SayCOVID Data Manager Investigated, Raided for Using Publicly Available PasswordRussian APT28 Hackers Using COVID-19 as Bait to Deliver Zebrocy MalwareRansomware Gangs Are Getting Faster at Encrypting NetworksScammers Create Instagram Click Farm, Leave Their Operation Exposed OnlineHow to Protect Yourself From Cybercrime When Holiday Shopping OnlineHow Big Data Turned Into Big Business for Cyber and Privacy LawyersFederal Government and 46 States File Antitrust Suit Seeking to Split up FacebookAl Jazeera Journalist Files Hack and Leak Suit Against Saudi and UAE Crown PrincesSideWinder APT Targets Nepal, Afghanistan in Wide-Ranging Spy CampaignMolerats APT Cyber-Espionage Campaign Targeting Middle Eastern PoliticiansMonroe Surgical Hospital (LA) Reports Possible Data Breach, Notifying PatientsHackers Redirect Church Website to Satanic Portal Promoting ‘Sex Spells’Credit Card Stealer Hides in CSS Files of Hacked Online StoresQbot Malware Switched to Stealthy New Windows Autostart MethodDHS-CISA Urges Admins to Patch OpenSSL DoS VulnerabilityAdobe Fixes Critical Security Vulnerabilities in Lightroom, PreludeMicrosoft Fixes New Windows Kerberos Security Bug in Staged RolloutKrebs: Patch Tuesday, Good Riddance 2020 Edition
12/8/2020 December 9, 2020December 9, 2020 ~ The Cyber Beat ~ Leave a comment China Regulator Puts Country’s Fintech Giants on Notice Hinting at More RulesSenate Confirms Trump FCC Nominee Amid Democratic PushbackNorway: Russian APT28 State Hackers Likely Behind Parliament AttackBeware of COVID Vaccine Scams: Here’s How to Make Sure You Get a Real OneOne in Five Online Marketplace Listings Show Signs of FraudCredit Card Stealing Malware Bundles Backdoor for Easy ReinstallScammers Spoof Target’s Gift Card Balance Checking PageWhy Companies Should Stop Scaring Employees About CybersecurityIf You Get Hacked Once, You’ll Probably Be Attacked Again Within a YearFormula 1 Driver Romain Grosjean’s Instagram Account HackedWhat Happens When Someone Uses Your Email Address to Sign up for Paypal, Car Hire, Doctors, Security Systems and MoreGitHub Rolls Out Dependency Review, Vulnerability Alerts for Pull RequestsUK Judge Blocks Extradition of Alleged Webcam Hacker to U.S.German Court Orders Encrypted Email Biz Tutanota to Build a Backdoor in User’s MailboxU.S. Cyber Firm FireEye Says It Was Breached by Nation-State HackersRansomware Forces Hosting Provider Netgain to Take Down Data CentersFoxconn Says Internet Connection Back to Normal After Ransomware AttacksSpearphishing Attack Spoofs Microsoft.com to Target 200M Office 365 Users‘Amnesia:33’ TCP/IP Flaws Affect Millions of IoT DevicesCritical, Unpatched Bugs Open GE Radiological Devices to Remote Code ExecutionCritical Remote Hacking Flaws Affect D-Link VPN RoutersAll Kubernetes Versions Affected by Unpatched MiTM VulnerabilityMicrosoft Issues Guidance for DNS Cache Poisoning VulnerabilityAdobe Warns Windows, macOS Users of Critical-Severity FlawsGoogle Patches Critical Wi-Fi and Audio Bugs in Android HandsetsMicrosoft Wraps Up a Lighter Patch Tuesday for the Holidays
12/7/2020 December 8, 2020December 8, 2020 ~ The Cyber Beat ~ Leave a comment Chinese Breakthrough in Quantum Computing a Warning for Security TeamsKremlin Hackers Exploiting Security Hole in VMware Software to Hijack Systems, NSA WarnsHacker Opens 2,732 PickPoint Package Lockers Across MoscowRansomware Attacks Pose 2021 Challenges for CongressHalf of U.S. Schools Skipped Remote Security TrainingCybercrime Costs World Economy over 1% of Global GDPEuropol Warns COVID-19 Vaccine Rollout Vulnerable to Fraud, TheftHealthcare in Crisis: Diagnosing Cybersecurity Shortcomings in Unprecedented TimesBTC-e Founder Sentenced to Five Years in Prison for Laundering Ransomware FundsNortonLifeLock to Acquire AviraMicrosoft Announces Azure Cloud for Top Secret Government DataFoxconn Electronics Giant Hit by Ransomware, $34 Million RansomHackers Leak Data From Embraer, World’s Third-Largest Airplane MakerRansomware Incident Impacts Greater Baltimore Medical Center SystemsSnyder City Hall (TX) Temporarily Closed After Ransomware AttackRansomware Cripples Municipal Computers in TexarkanaIndependence (MO) Dealing With Ransomware Attack on City Technology‘Free’ Cyberpunk 2077 Downloads Lead to Data HarvestingIranian Rana Android Malware Updates Allow WhatsApp, Telegram IM SnoopingPlayStation Now Bugs Let Sites Run Malicious Code on Windows PCsQNAP High-Severity Flaws Plague NAS SystemsCisco Fixes Security Manager Vulnerabilities With Public Exploits
12/4-6/2020 December 7, 2020December 7, 2020 ~ The Cyber Beat ~ Leave a comment Biden Says China Must Play by ‘International Norms’U.S. and Australia to Develop Shared Cyberattack Training PlatformMiddle East Facing ‘Cyber Pandemic’ as COVID Exposes Security Vulnerabilities, Cyber Chief SaysUAE Target of Cyber-Attacks After Israel DealKrebs: IRS to Make ID Protection PIN Open to AllFBI: You May Be a Money Mule and Not Even Know ItACLU Sues Government Over Secret Purchasing of GPS DataAI Collaborative Research Institute LaunchedSmart Sex Toy Sales Surge Poses Security RiskTech CEO Danny Boice Pleads Guilty to Investment FraudItalian Police Arrest Two in Data Theft Cyberattack on Leonardo Defense CorpLargest Global Staffing Agency Randstad Hit by Egregor RansomwareRansomware Hits Helicopter Maker KopterBlackShadow Hackers Extort Israeli Insurance Company Shirbit for $1 Million…Ransomware Gangs Are Now Cold-Calling Victims if They Restore From Backups Without Paying…The No. 1 Rule For Anyone Infected With RansomwareWalsall Construction Firm RMD Kwikform Targeted in Cyber AttackRiver City Bank (Sacramento, CA) Warns Customers of Data BreachHackers Use Monero Cryptojacking as Decoy for More Invasive AttacksMetaMask Phishing Steals Cryptocurrency Wallets via Google AdsHigh-Severity Chrome Bugs Allow Browser HacksVMware Rolls a Fix for Formerly Critical Zero-Day Bug
12/3/2020 December 4, 2020December 4, 2020 ~ The Cyber Beat ~ Leave a comment Coronavirus: Hackers Targeted COVID Vaccine Supply ‘Cold Chain’ According to IBMU.S. in Talks With Huawei Finance Chief Meng Wanzhou About Resolving Criminal Charges Bill to Crack Down on Fraudulent Foreign Firms Listed in U.S. Heads to Trump’s DeskEdward Snowden Asks Trump to Pardon Wikileaks Founder Julian AssangeTrump Signs Another Executive Order on Governmental AI DevelopmentOp-Ed: Why President-Elect Biden Needs to Appoint a Cybersecurity CzarUniversities Attacked by Phishing CampaignCredit Card Stealing Malware Hides in Social Media Sharing IconsData of 243 Million Brazilians Exposed Online via Website Source CodeAs Many as 113,000 Alaskans Impacted by Hack on Voter Registration SystemKmart, Latest Victim of Egregor RansomwareMetro Vancouver’s Transit System Hit by Ransomware AttackClop Gang Gallops Off with 2M Credit Cards from E-LandDeathStalker APT Spices Things Up with PowerPepper MalwareTrickBot Returns with a Vengeance, Sporting Rare Bootkit FunctionsGoogle Play Apps Remain Vulnerable to High-Severity Flaw
12/2/2020 December 3, 2020December 3, 2020 ~ The Cyber Beat ~ Leave a comment Top Intelligence Official Says China Targeting Foreign Influence at Incoming Biden AdministrationNorth Korea-Linked Hackers Targeted Johnson & Johnson, Novavax in Hunt for COVID ResearchAPT Turla’s ‘Crutch’ Backdoor Leverages Dropbox in Espionage AttacksPhishing Targets U.S. Brokerage Firms Using FINRA Lookalike DomainHMRC Phishing Scam Abuses Mail Service to Bypass Spam FiltersSpotify Wrapped 2020 Rollout Marred by Pop Star HacksKrebs: Account Hijacking Site OGUsers Hacked, AgainMicrosoft Revamps ‘Invasive’ M365 Feature After Privacy BacklashHacker Given Three Years for Stealing Secret Nintendo Switch Blueprints, Collecting Child Sex Abuse VideosBrazilian Aerospace Firm Embraer Hit by CyberattackSouth Africa Absa Bank Embroiled in Data Leak, Rogue Employee Accused of TheftCyber Attack Robs Philabundance of Nearly $1MOnline Schooling Giant K12 Inc. Pays Ryuk Ransomware to Stop Data LeakElectronic Health Records Provider NTreatment Caught Out in Data BreachHousing Authority of Mcdonough County (IL) Experiences Ransomware Data BreachHalf of Docker Hub Images Feature Critical FlawsXerox DocuShare Bugs Allows Data LeaksFlaw Allowed iPhone Hacking Remotely Through WI-Fi
12/1/2020 December 2, 2020December 2, 2020 ~ The Cyber Beat ~ Leave a comment China Drafts Rules on Mobile Apps’ Collection of Personal DataFederal Agencies Warn That Hackers Are Targeting U.S. Think TanksFBI Warns of BEC Scammers Using Email Auto-Forwarding in AttacksVietnamese State Hackers APT32 (aka Ocean Lotus, BISMUTH) Deploy Coin Miners to VictimsZoom Impersonation Attacks Aim to Steal CredentialsAmazon Says Sellers Racked up More Than $4.8 Billion in Sales Over WeekendFacebook-Backed Libra Association Changes Its Name to DiemSupreme Court Weighs Breadth of Computer Hacking LawKrebs: Bomb Threat, DDoS Purveyor Gets Eight YearsPersonal Information Leaked in Suspected Cyberattack on Israeli Company Shirbit InsuranceStuller Headquarters (LA) Hit by Cyber AttackElectronic Medical Records Cracked Open by OpenClinic BugsCayman Islands Bank Records Exposed in Open Azure BlobCritical Oracle WebLogic Flaw Actively Exploited by DarkIRC MalwareAndroid Messenger App Still Leaking Photos, VideosSalesforce to Acquire Slack for $28 Billion…Uber Completes $2.65 Billion Postmates Acquisition
11/30/2020 December 1, 2020December 1, 2020 ~ The Cyber Beat ~ Leave a comment UK Bans Installation of Huawei 5G Equipment From SeptemberPandemic, A Driving Force in 2021 Financial CrimeBaltimore Students Told to Ditch Windows PCs After Ransomware Attack…Multiple Red FlagsVermont Hospitals Still Recovering From October Ransomware AttackManchester United Cyberattack Highlights Controversy in Paying Ransomware AttackersCompany Director Disqualified After AMS Marketing Limited Made 75,000 Nuisance CallsAjit Pai Formally Announces Plans to Leave FCCCybersecurity In The New Normal: Good Enough Is No Longer EnoughCompanies Urged to Adjust Hiring Requirements for Cyber JobsHealthcare Provider AspenPointe Data Breach Affects 295k PatientsHuntsville City Schools (AL) Close Early for Cybersecurity ThreatSomeone Just Moved $5m in BTC From the 2016 Bitfinex HackWhatsApp Hack Could Let People Steal Messages, Users Urged to Take PrecautionsMacOS Users Targeted By OceanLotus BackdoorDocker Malware Is Now Common, So Devs Need to Take Docker Security SeriouslyGootkit Malware Returns to Life Alongside REvil RansomwareCredit card skimmer fills fake PayPal forms with stolen order infoMicrosoft Defender for Identity Now Detects Zerologon Attacks