8/30/2021 August 31, 2021August 31, 2021 ~ The Cyber Beat ~ Leave a comment Biden Administration Establishes Program to Recruit Tech Professionals to Serve in GovernmentRights Group Advises Afghans to Delete DataCISA: Don’t Use Single-Factor Auth on Internet-Exposed SystemsCISA to Host Third Annual President’s Cup Cybersecurity CompetitionSEC Sanctions Brokerages Over Email Break-InsArmy Testing Facial Recognition in Child-Care CentersChina Limits Online Video Games to Three Hours a Week for Young PeopleChinese A.I. Firm SenseTime Files for Hong Kong IPO despite Tech Crackdown and U.S. BlacklistElon Musk’s Loop Gets Autopilot — And an IntruderMicrosoft Azure Cosmos DB Incident Underscores the Need to Closely Watch Cloud DataLockBit Gang to Publish 103GB of Bangkok Air Customer DataDeFi Protocol Cream Finance Hacked for Second Time This YearDuPage Medical Group (IL) Notifying 600,000 Patients About a Data BreachPassport & Healthcare Info and Leaked From Indonesia’s COVID-19 Test-and-Trace App for TravelerNorthern Ontario Police Force Recovering From Ransomware AttackRansomware Attack on Swiss City Rolle Exposed Citizens’ DataHPE Warns Sudo Bug Gives Attackers Root Privileges to Aruba PlatformMicrosoft Exchange ‘ProxyToken’ Bug Allows Email SnoopingAMD Zen+, Zen 2 CPUs Vulnerable to AttackQNAP Works on Patches for OpenSSL Bugs Impacting Its NAS Devices
8/27-29/2021 August 30, 2021August 30, 2021 ~ The Cyber Beat ~ Leave a comment British Embassy Exposed Details of Afghan Workers during Rush to EvacuateWhite House Rallies Private Industry in Cyber BattleChina Plans to Ban U.S. IPOs for Data-Heavy Tech FirmsJustice Department Establishes Program to Train Prosecutors to Handle Cyber CasesFake DMCA Complaints, DDoS Threats Lead To BazaLoader MalwareAmazon Disables Website Used for ISIS PropagandaAmazon Web Services Will Give Free USB Security Keys to Some Employees of U.S.-Based CustomersRagnarok Ransomware Gang Bites the Dust, Releases DecryptorEthereum’s Blockchain Just Split in TwoBoston Public Library Discloses Cyberattack, System-Wide Technical OutageBangkok Airways Suffers Cyber AttackBilaxy Exchange Reports Hot Wallet Hacked, Amount Lost Still UnknownT-Mobile Confident No Ongoing Risks to User Data from Recent Hack…CEO: Hacker Brute-ForceMicrosoft Warns of Widespread Phishing Attacks Using Open RedirectsCritical Azure Cosmos DB Bug Allows Full Cloud Account TakeoverParallels Offers ‘Inconvenient’ Fix for High-Severity Bug
8/26/2021 August 26, 2021August 26, 2021 ~ The Cyber Beat ~ Leave a comment UK Plans New Post-Brexit Privacy Rules to Ease Data SharingChina’s Microsoft Hack May Have Had A Bigger Purpose Than Just SpyingT-Mobile Hacker Who Stole Data on 50 Million Customers: ‘Their Security Is Awful’The Real Victims of Mass Crypto-Hacks That Keep HappeningFBI Shares Technical Details for Hive RansomwareAngry Birds Developer Accused of Illegal Child Data CollectionSurveillance Tech Company Excession Technologies Ltd Sues Police Digital Service over ‘Flawed’ Scoring of Bids on £18m Contract171,000 Patients Exposed after Hackers Breach Illinois Physician Group EmailsWebsite For Cook County Clerk Of The Circuit County Down For Maintenance After Servers BreachedChinese Developers Expose Data Belonging to Android GamersSynology: Multiple Products Impacted by OpenSSL RCE VulnerabilityAtlassian Warns of Critical Confluence FlawVMware Issues Patches to Fix New Flaws Affecting Multiple Products
8/25/2021 August 25, 2021August 25, 2021 ~ The Cyber Beat ~ Leave a comment White House Gathers Tech, Education, Banking Leaders for Cyber Meeting…Biden: Cybersecurity Is the ‘Core National Security Challenge’…Google, Microsoft Plan to Spend Billions on Cybersecurity after Meeting with BidenU.S. Media, Retailers Targeted by New SparklingGoblin APTFIN8 Cybercrime Gang Backdoors U.S. Orgs with New Sardonic MalwareKrebs: Man Robbed of 16 Bitcoin Sues Young Thieves’ ParentsDrug Dealers Get 27 Years After Police Crack EncroChat CommsAustralia Passes Identify and Disrupt Bill73,000 Patients’ Data Affected in Ransomware Attack on Singapore Eye ClinicAtlanta Allergy & Asthma Sends Notice of Healthcare Data Breach to 9,800 PatientsCalifornia State University, Chico Data Breach Exposes Student Requests for Vaccine ExemptionsMirai-Style IoT Botnet Is Now Scanning for Router-Pwning Critical Vuln in Realtek KitCritical F5 BIG-IP Bug Impacts Customers in Sensitive SectorsEthereum Urges Go Devs to Fix Severe Chain-Split VulnerabilityMicrosoft: ProxyShell Bugs “Might Be Exploited,” Patch Servers Now!Microsoft Will Add Secure Preview for Office 365 Quarantined Emails
8/24/2021 August 25, 2021August 25, 2021 ~ The Cyber Beat ~ Leave a comment Amazon, Apple, Microsoft & Other CEOs Reportedly to Attend White House Cybersecurity MeetingBahraini Activists Targeted Using a New iPhone Zero-Day Exploit From NSO Group…New Zero-Click iPhone Exploit Used to Deploy NSO SpywareChinese Auto-Maker Accused of Altering Data after Fatal Autonomous Car AccidentHYCU Initiative Offers Free Evaluation for Ransomware Recovery ProspectsOver a Third of Smart Device Owners Do Not Take Security MeasuresSamsung Can Remotely Disable Their TVs Worldwide Using TV BlockCoinbase Slammed for What Users Say Is Terrible Customer Service after Hackers Drain Their AccountsCyber-thieves Scam Town of Peterborough (NH) Out of $2.3MCarePointe Ear, Nose and Throat (IN) Targeted in Ransomware AttackFake OpenSea Support Staff Are Stealing Cryptowallets and NFTSFake Apple Rep Amasses 620,000+ Stolen iCloud Pics, Vids in Hunt for Images of Nude Women to TradePysa Ransomware Gang’s Script Shows Exactly the Files They’re AfterCustom WhatsApp Build Delivers Triada MalwareSteelSeries Bug Gives Windows 10 Admin Rights by Plugging in a DeviceB. Braun Updates Faulty IV Pump after McAfee Discovers Vuln Allowing Attackers to Change Doses
8/23/2021 August 23, 2021August 23, 2021 ~ The Cyber Beat ~ Leave a comment UN-Backed Tech Group Adds Taliban to List of Terrorist OrganizationsSingapore, U.S. Pledge Deeper Collaboration in CybersecurityHackers Leak Footage of Iranian PrisonCompany Data Hoards Create Tempting Targets for HackersFBI: OnePercent Group Ransomware Targeted U.S. Orgs since Nov 2020CISA Warns Admins to Urgently Patch Exchange ProxyShell BugsHacker Behind $600 Million Crypto Heist Returns Final Slice of Stolen Funds…Gets 500k RewardNew Research Finds 38 Million Records Exposed Online Earlier This YearNokia Subsidiary SAC Wireless Discloses Data Breach after Conti Ransomware AttackPhishing Attack Exposes Medical Information for 12,000 Patients at Revere Health (UT)Researchers Detail Modus Operandi of ShinyHunters Cyber Crime GroupPhishing Campaign Uses UPS.com XSS Vuln to Distribute MalwareAttackers Actively Exploiting Realtek SDK FlawsRazer to Fix Windows Installer That Grants Admin Powers If You Plug in a Mouse
8/20-22/2021 August 23, 2021August 23, 2021 ~ The Cyber Beat ~ Leave a comment China Passes Major Data Protection Law as Regulatory Scrutiny on Tech Sector Intensifies…Jack Ma’s Costliest Business Lesson: China Has Only One LeaderState Department Hit by Cyber Attack, Source SaysUS Census Bureau Failed Breach Response, Watchdog SaysSchools, Colleges Brace for Cyberattacks as Students ReturnInside Afghanistan’s Cryptocurrency Underground as the Country Plunges into TurmoilCybersecurity Jobs: This Is What We’re Getting Wrong When Hiring – And Here’s How to Fix It“Cybersecurity Is the New Seat Belt” Says STX NextSynAck Ransomware Decryptor Lets Victims Recover Files for FreeWeb Censorship Systems Can Facilitate Massive DDoS AttacksWhy Phone Scams Are So Difficult to TackleKey QAnon Influencer ‘GhostEzra’ IdentifiedNew York Man Gets Three Years for Stealing Nude Photos from College VictimsT-Mobile Data Breach Just Got Worse — Now at 54 Million CustomersAT&T Denies Data Breach after Hacker Auctions 70 Million User DatabaseNYC Teachers’ Social Security Numbers ExposedTwin Falls County (ID) Identifies Ransomware as Source of Computer ProblemsPersonal Data Breached in Rockwood School District (MO) Ransomware AttackMozi IoT Botnet Now Also Targets Netgear, Huawei, and ZTE Network GatewaysMicrosoft Exchange Servers Being Hacked by New LockFile RansomwareLockFile Ransomware Uses PetitPotam Attack to Hijack Windows DomainsCloudflare Mitigated One of the Largest DDoS Attack Involving 17.2 Million RPSPegasus iPhone Hacks Used as Lure in Extortion SchemeRazer Bug Lets You Become a Windows 10 Admin by Plugging in a MouseMicrosoft Shares Guidance on Securing Windows 365 Cloud PCs
8/19/2021 August 19, 2021August 19, 2021 ~ The Cyber Beat ~ Leave a comment North Korea Linked APT InkySquid Exploiting Known IE BugsThe Pandemic Revealed the Health Risks of Hospital Ransomware AttacksCOVID-19 Contact-Tracing Data Exposed, Fake Vax Cards CirculateYou Can Post LinkedIn Jobs as Any Employer — So Can AttackersWanted: Disgruntled Employees to Deploy Ransomware (Krebs)CISA Shares Guidance on How to Prevent Ransomware Data BreachesFacebook Hit With New Antitrust Suit From Federal Trade CommissionWoman’s Facebook Account Hacked, Loses More than a Decade’s Worth of FriendsCEO Tried Funding His Startup by Asking Insiders to Deploy RansomwareFlorida Women Charged Over Sexually Exploitative Child Modeling SitesMore than $90 Million in Cryptocurrency Stolen from Japanese Exchange LiquidJPMorgan Chase Notifies Montana Customers of Data BreachBrazil’s Clothing Chain Renner Suffers Ransomware Attack and Systems Are DownData Stolen as Social Housing Group Suffers Ransomware AttackAttempted Marion County (IN) Cyberattack Delaying Some Death CertificatesWhat To Do If You Think You’re Affected by the T-Mobile BreachRansomware: Amateur Attack Shows How Clueless Criminals Are Trying to Get In on the ActionCritical Cisco Bug in Small Business Routers to Remain UnpatchedHackers Can Bypass Cisco Security Products in Data Theft AttacksNew Unofficial Windows Patch Fixes More PetitPotam Attack Vectors
8/18/2021 August 19, 2021August 19, 2021 ~ The Cyber Beat ~ Leave a comment Census Bureau Computer Servers Target of January 2020 CyberattackHacks Rank Among Top Power Grid Risks, Watchdog SaysChina Orders Annual Security Reviews for All Critical Information Infrastructure OperatorsFacebook Shares AI Advancements Improving Content ModerationFeds Expected to Reveal New Strategy in Facebook Antitrust FightBitcoin Mixer Owner Pleads Guilty to Laundering over $300 MillionAirline Employee Jailed for Spending Passengers’ MoneyKrebs: T-Mobile Breach Exposed SSN/DOB of 40M+ People…U.S. Telecoms Agency to Probe T-Mobile Data BreachPine Labs Faces Alleged Data Breach; 50,000 Unique Records ExposedBogus Cryptomining Apps Infest Google PlayHolesWarm Malware Exploits Unpatched Windows, Linux ServersDiavol Ransomware Sample Shows Stronger Connection to TrickBot GangGitHub Urges Users to Enable 2FA after Going Passwordless
8/17/2021 August 17, 2021August 17, 2021 ~ The Cyber Beat ~ Leave a comment Rubio Reiterates Calls for TikTok Ban after China’s Reported Ownership StakeFacebook Says It Will Keep Ban on Taliban Content…WhatsApp Can’t Ban the Taliban Because It Can’t Read Their TextsIranian APT Hackers Impersonate HR Employees to Hit Israeli TargetsBrazilian Government Discloses National Treasury Ransomware AttackConti Ransomware Prioritizes Revenue and Cyberinsurance Data TheftLockBit 2.0 Ransomware Proliferates GloballyPhishing Costs Reach New High of $14.8M for Large CompaniesCrypto Platform Hit by $600 Million Heist Asks Hacker to Become Its Chief Security AdvisorChicago Pharmacist Arrested After Selling CDC COVID-19 Vaccination Cards On eBayApple: CSAM Image-Detection Backdoor ‘Narrow’ in ScopeChase Bank Accidentally Leaked Customer Info to Other CustomersRecords Missing from Illinois Vaccination PortalIndiana Contact Tracing Data BreachedJapan’s Tokio Marine Is the Latest Insurer to Be Victimized by RansomwareKrebs: T-Mobile Investigating Claims of Massive Data BreachMalicious Ads Target Cryptocurrency Users With Cinobi Banking TrojanMalware Campaign Uses Clever ‘CAPTCHA’ to Bypass Browser WarningBug in Millions of Flawed IoT Devices Lets Attackers EavesdropCISA Releases Alert on BadAlloc Vulnerability in BlackBerry ProductsIf You Haven’t Updated ThroughTek DVR since 2018 Do So Now, Warns Mandiant of Critical VulnFortinet Delays Patching Zero-Day Allowing Remote Server Takeover
8/16/2021 August 16, 2021August 16, 2021 ~ The Cyber Beat ~ Leave a comment Afghan Broadcasters for U.S. Government Radio Fear Taliban BacklashSecret Terrorist Watchlist with 2 Million Records Exposed OnlineColonial Pipeline Reports Data Breach after May Ransomware AttackTech Hack Notification Delays Can Leave Corporate Customers in the LurchAnonymous Messaging App Yik Yak Returns after 4-Year ShutdownTesla Autopilot Faces U.S. Safety Regulator’s Scrutiny after Crashes with Emergency VehiclesEducation Giant Pearson Fined $1M for Downplaying Data BreachSim Swap Scammer Pleads Guilty to Instagram Account Hijacks, Crypto TheftT-Mobile Confirms Servers Were Hacked, Investigates Data BreachDallas Cops Lost 8TB of Criminal Case Data during Bungled MigrationSUNY Research Foundation Breach Potentially Affects 47,000Malware Dev Infects Own PC and Data Ends up on Intel PlatformTroubling New Disk-Level Encryption Ransomware ‘DeepBlueMagic’ SurfacesXSS Bug in SEOPress WordPress Plugin Allows Site TakeoverDozens of STARTTLS Related Flaws Found Affecting Popular Email ClientsCritical Valve Bug Lets Gamers Add Unlimited Funds to Steam Wallets
8/13-15/2021 August 16, 2021August 16, 2021 ~ The Cyber Beat ~ Leave a comment Crypto Hacker Offered Reward After $600m Heist…How Hackers Stole and Returned $600M in Tokens From Poly NetworkUN Calls for Moratorium on Sale of Surveillance Tech Like NSO Group’s PegasusKrebs: New Anti Anti-Money Laundering Services for CrooksSynAck Ransomware Releases Decryption Keys After El_Cometa RebrandMysterious Hacker Group Suspected in July Cyberattack on Iranian TrainsCost of Cyberattacks Significantly Higher for Smaller Healthcare OrganizationsApp Store Competition Targeted by Bipartisan Senate BillSenators Want Answers About Amazon’s Biometric Data CollectionAmazon’s Plan to Track Worker Keystrokes: A Sign of Controls to Come?Facebook Adds End-to-End Encryption for Audio and Video Calls in MessengerMicrosoft Teams Will Alert Users of Incoming Spam CallsHacker Claims to Steal Data of 100 Million T-Mobile CustomersFord Bug Exposed Customer and Employee Records From Internal SystemsEmails From Lithuanian Ministry of Foreign Affairs for Sale on Data-Trading ForumCyberattack Hits Israel’s Bar Ilan University: ‘Data Is Being Erased Right Now’Memorial Health Systems (OH) Experiences Cyber AttackU.S. Brokers Warned of Ongoing Phishing Attacks Impersonating FINRAWordPress Sites Abused in Aggah Spear-Phishing CampaignCyberattackers Embrace CAPTCHAs to Hide Phishing, MalwareHackers Spotted Using Morse Code in Phishing Attacks to Evade DetectionVice Society Ransomware Joins Ongoing PrintNightmare AttacksResearchers Find Vulns in Wodify Gym Management Web App Used With CrossFitWindows 365 Exposes Microsoft Azure Credentials in Plaintext
8/12/2021 August 13, 2021August 13, 2021 ~ The Cyber Beat ~ Leave a comment Report Finds U.S. Government Has Made Progress on Cybersecurity, More Work RemainsHuawei Stole Our Tech and Created a ‘Backdoor’ to Spy on Pakistan, Claims CA IT BizBusinesses Push to Shape Federal Rules for Disclosing HacksA Cybersecurity Stop Sign: CISA Introduces Bad PracticesCovid-19 Vaccine Scammers Target Authorities in Dozens of Countries Including Italy and ColombiaSuspected Hacker Behind $600 Million Poly Network Crypto Heist Did It ‘for Fun’Rogue Marketplace AlphaBay RebootsUkraine Shuts Down Money Laundering Cryptocurrency ExchangesGoogle Search Led to Arrest of Cleared CampaignerChanel Apologizes for Data BreachQR Code Scammers Get Creative with Bitcoin ATMsHackers Now Backdoor Microsoft Exchange Using ProxyShell ExploitsMicrosoft: Evasive Office 365 Phishing Campaign Active Since July 2020Ransomware Gang Uses PrintNightmare to Breach Windows ServersCornell University Researchers Discover ‘Code-Poisoning’ AttackBrooklyn Tech Students Uncovered a NYC Schools Data Breach: Here’s How They Took ActionGitHub Picks Friday 13th to Kill off Password-Based Git Authentication
8/11/2021 August 11, 2021August 11, 2021 ~ The Cyber Beat ~ Leave a comment China Sentences Canadian Citizen to 11 Years for Espionage in Case at Heart of Diplomatic StandoffLawmakers Raise Concerns Over Federal Division of Cybersecurity ResponsibilitiesKaseya’s ‘Master Key’ to REvil Attack Leaked OnlineHackers Return Nearly Half of the $600 Million They Stole in One of the Biggest Crypto HeistsCrypto Industry Seeks to Build Momentum After Losing Senate FightThe Family That Bet Everything on Bitcoin When It Was $900 Is Now Storing It in Secret Vaults on Four Different ContinentsCyberfraud Shifts to Gaming, Travel and Leisure, Report FindsAttacks Leveraging Open Redirects on Google Meet, DoubleClick SurgeNorton LifeLock to Acquire Security Rival Avast in $8b DealApple Settles Copyright Lawsuit With Virtual iOS Software CompanyAccenture Restores Affected Systems After Reported Ransomware Attack…Accenture Says LockBit Ransomware Attack Caused ‘No Impact’Millions of Seniors Hit by SeniorAdvisor Data BreachPatient Information May Have Been Stolen in St. Joseph’s/Candler (GA) Ransomware AttackScripps Health (CA) Cyber Attack Cost the Company $113 MillionCharlotte Mecklenburg Schools (NC) Says Release Of Confidential Student Data Was Human Error, Not Hack‘Friends’ Reunion Anchors Video SwindleNew AdLoad Malware Variant Slips Through Apple’s XProtect DefensesMicrosoft Confirms Another Windows Print Spooler Zero-Day BugSAP Patches Nine Critical & High-Severity Bugs
8/10/2021 August 11, 2021August 11, 2021 ~ The Cyber Beat ~ Leave a comment Senate Includes Over $1.9 Billion for Cybersecurity in Infrastructure BillAmazon Awarded Secret $10B NSA Cloud Computing Contract Chinese Espionage Group UNC215 Targeted Israeli Government Networks Tucker Carlson’s Spying Allegations Being Investigated by National Security Agency WatchdogMike Lindell’s 2020 Election Symposium Delayed by ‘Hacked’ LivestreamConnected Farms Easy Pickings for Global Food Supply-Chain HackAn Escalating Threat: How Smart Buildings Can Fall Victim to a Cyber AttackMain Street Overconfidence: America’s Small Businesses Aren’t Worried About HackingRemote Workers Duck Security RulesCybercrime Victims Reluctant to Call CopsTech-Savvy Teens Falling Prey to Online Scams Faster Than Their GrandparentsHackers Netting Average of Nearly $10,000 for Stolen Network AccessBoffins Propose Pretty Good Phone Privacy to End Pretty Invasive Location Data Harvesting by Telcos$600M in Cryptocurrencies Swiped From Poly Network Servers After Security SnafuCrytek Confirms Egregor Ransomware Attack, Customer Data TheftElectromed Reveals Data Breach, Offers Identity Theft Protection to CustomersFraudsters Impersonate DPD in “Convincing” New Smishing ScamChaos Malware Walks Line Between Ransomware and WipereCh0raix Ransomware Variant Targets QNAP, Synology NAS DevicesKrebs: Microsoft Patch Tuesday, August 2021 Edition…Microsoft Fixes Windows Print Spooler PrintNightmare Vulnerability…Windows Security Update Blocks PetitPotam NTLM Relay AttacksMicrosoft Revives Deprecated RDCMan After Fixing Security FlawAdobe Fixes Critical Preauth Vulnerabilities in MagentoFirefox Adds Enhanced Cookie Clearing, HTTPS by Default in Private Browsing
8/6-9/2021 August 10, 2021August 10, 2021 ~ The Cyber Beat ~ Leave a comment Krebs: Phishing Sites Targeting Scammers and ThievesHouse of Commons (HoC) Beefs up Cyber Training Following Matt Hancock CCTV Leak ScandalWhy Understanding Cybersecurity Is No Longer Optional For BusinessesRansomware Poses Threat to Vulnerable Local GovernmentsPutin Is Crushing Biden’s Room to Negotiate on RansomwareWhite House Backs Senators Pushing for Stricter Crypto Reporting RulesFTC Hits Facebook Over ‘Inaccurate’ Explanation for Banning ResearchersThousands Sign Open Letter Arguing Against Apple Plan to Scan U.S. iPhones for Child Sexual Abuse ImagesVirtual Vaccination Card Prompts Cybersecurity FearsYelp to Allow Users to Filter Businesses Based on Vaccination RequirementsFlorida Martial Arts Instructor Accused of Spying on StudentsU.S. Imprisons Drone WhistleblowerMicrosoft Adds Fusion Ransomware Attack Detection to Azure SentinelGoogle Drops Bluetooth Titan Security Keys in Favor of Nfc Versions Pulse Secure VPNs Get New Urgent Update for Poorly Patched Critical FlawMicrosoft Exchange Servers Scanned for ProxyShell Vulnerability, Patch NowWindows PetitPotam Vulnerability Gets an Unofficial Free Patch Computer Hardware Giant GIGABYTE Hit by RansomEXX RansomwareOne Million Stolen Credit Cards Leaked to Promote Carding Market162,000 Patients Exposed in Ransomware Attack on Gastroenterology Consultants (TX)Illinois’ FOID Card System Hit by Cyber AttackStarHub Suffers Data Breach, but Says No System Was Compromised Android Malware ‘FlyTrap’ Hijacks Facebook Accounts Australian Gov’t Warns of Escalating LockBit Ransomware Attacks‘Glowworm’ Attack Turns Power Light Flickers into AudioSynology Warns of Malware Infecting NAS Devices With RansomwareGolang Cryptomining Worm Offers 15% Speed BoostAuth Bypass Bug Exploited, Affecting Millions of RoutersGo, Rust “Net” Library Affected by Critical IP Address Validation VulnerabilityAmazon Kindle Vulnerable to Malicious EBooksIndia’s Koo, a Twitter-like Service, Found Vulnerable to Critical Worm AttacksCisco: Firewall Manager RCE Bug Is a Zero-Day, Patch Incoming
8/5/2021 August 6, 2021August 6, 2021 ~ The Cyber Beat ~ Leave a comment Senators Introduce Bipartisan Bill to Sanction Nations Involved in Ransomware AttacksAmazon, Google and Other Tech Companies Join Government Effort to Fight RansomwareRussian Group Releases Stolen Credit Cards on Dark Web. Here’s How to Protect Your Credit From CriminalsNew Hacking Group Shows Similarities to Gang That Attacked Colonial PipelineAngry Conti Ransomware Affiliate Leaks Gang’s Attack PlaybookKrebs: Ransomware Gangs and the Name Game DistractionMicrosoft Edge Just Got a ‘Super Duper Secure Mode’ UpgradeGoogle Expects Delays in Enforcing 2FA for Chrome Extension DevsApple Is About to Start Scanning iPhone Users’ Devices for Banned Content, Warns ProfessorUniversity of Kentucky Data Breach Exposes Email Addresses of 355k Students, TeachersJudson ISD (TX) Confirms $547,000 Ransomware Payment in Taxpayer FundsA Wide Range of Cyber Attacks Leveraging Prometheus TDS Malware ServiceLinux Version of BlackMatter Ransomware Targets VMware ESXi ServersMacOS Flaw in Telegram Retrieves Deleted MessagesNew DNS Vulnerability Allows ‘Nation-State Level Spying’ on CompaniesUnpatched Security Flaws Expose Mitsubishi Safety PLCs to Remote AttacksBlack Hat: Microsoft’s Patch for Windows Hello Bypass Bug is Faulty, Researchers SayNew Windows PrintNightmare Zero-Days Get Free Unofficial Patch
8/4/2021 August 4, 2021August 4, 2021 ~ The Cyber Beat ~ Leave a comment Senators Highlight National Security Threats From China During Rare Public HearingNSA and CISA Share Kubernetes Security RecommendationsSome Cyber Experts Want to Investigate Hacks Like Plane CrashesLockBit Ransomware Recruiting Insiders to Breach Corporate Networks‘I’m Calling About Your Car Warranty’, aka PII HijinxPersonal Data Breach Reports Fall Despite Rising AttacksThe Graph Foundation Launches Bug Bounty ProgramFacebook Suspends Accounts of NYU Researchers Who’ve Criticized PlatformSolarWinds Urges U.S. Judge to Toss Suit: We Got Hit by Russia, Give Us a BreakCybersecurity Trainer HackerU Acquires Cybint for $50mItaly’s ERG Says Only Minor Disruption From Cyber BreachRansomware Attack Forces Eskenazi Health (IN) To Divert PatientsSanford Health Target of Attempted Cyber AttackIsle of Wight Schools (TX) Hit by RansomwareRussian Federal Agencies Were Attacked With Chinese Webdav-O VirusPhishing Campaign Dangles SharePoint File-SharesNew Cobalt Strike Bugs Allow Takedown of Attackers’ ServersBlack Hat: Security Bugs Allow Takeover of Capsule Hotel RoomsINFRA:HALT Security Bugs Impact Critical Industrial Control DevicesCisco Fixes Critical, High Severity Pre-Auth Flaws in VPN Routers
8/3/2021 August 3, 2021August 3, 2021 ~ The Cyber Beat ~ Leave a comment Senate Report Finds Major Cybersecurity Shortcomings Among Federal AgenciesRussia Tells UN It Wants Vast Expansion of Cybercrime Offenses, Plus Network Backdoors & Online CensorshipKaseya Ransomware Attack Sets off Race to Hack Service Providers: ResearchersAverage Cost to Buy Access to a Compromised Company: $1,000Bugs in Chrome’s Javascript Engine Can Lead To Powerful Exploits: This Project Aims to Stop ThemComing Soon: America’s Own Social Credit SystemLehigh Valley Health Network (PA) Patients’ Info Hacked in 3rd Party Guidehouse Cyber AttackReindeer Leaked the Sensitive Data of More Than 300,000 PeopleSilicon Valley VC Firm Advanced Technology Ventures Hit by RansomwareRaccoon Stealer Bundles Malware, Propagates Via Google SEO‘DeadRinger’ Targeted Exchange Servers Long Before DiscoveryPopular Technology That Hospitals Use to Send Lab Samples Is Vulnerable: Researchers
8/2/2021 August 3, 2021August 3, 2021 ~ The Cyber Beat ~ Leave a comment White House Cyber Chief Backs New Federal Bureau to Track ThreatsHuawei to America: You’re Not Taking Cyber-Security Seriously Until You Let China Vouch for UsGoogle Chrome to No Longer Show Secure Website IndicatorsYour Facebook Account Was Hacked: Getting Help May Take Weeks — Or $299Industrial Cyber Security Startup Nozomi Networks Raises $100mCDW Acquires Cybersecurity Company Focal Point Data RiskWisconsin Institute of Urology Patient Health Data Exposed After Email Hacking IncidentNew APT Hacking Group Targets Microsoft IIS Servers with ASP.NET ExploitsReports Point to Uptick in HTML Smuggling Attacks‘PwnedPiper’: Devastating Bugs in >80% of Hospital PneumaticsWindows PetitPotam Attacks Can Be Blocked Using New MethodBot Protection Now Generally Available in Azure Web Application Firewall
7/30-8/1/2021 August 1, 2021August 1, 2021 ~ The Cyber Beat ~ Leave a comment SolarWinds Hackers Accessed Over Two Dozen Federal Prosecutors’ Offices: DOJFrench Finance Minister’s Phone Investigated in Pegasus Spyware CaseNSA Warns Public Networks are Hacker HotbedsUnusual Malware Attack Can Go From First Contact to Ransomware in Just 48 HoursDarkSide Ransomware Gang Returns as New BlackMatter Operation‘COVID Vaccine Scammers Nearly Got Me’FBI Warns Investors of Fraudsters Posing as Brokers and AdvisersCISA Launches Vulnerability Disclosure Platform for Federal AgenciesGoogle to Block Logins on Old Android Devices Starting SeptemberAmazon Fined $886m by EU RegulatorsZoom Settles U.S. Class Action Privacy Lawsuit for $86mCoghlin Electrical Co. (MA) Hit With Ransomware AttackCarolina Panthers Apologize to Fans for Sending Personal Info to Other FansHackers Attack Rome Region Vaccine Sign-up SiteNew Bank-Fraud Malware Called Vultur Infects Thousands of DevicesPyPI Packages Caught Stealing Credit Card Numbers, Discord TokensNovel Meteor Wiper Used in Attack that Crippled Iranian Train SystemExperts Uncover Several C&C Servers Linked to WellMess MalwareLinux eBPF Bug Gets Root Privileges on Ubuntu – Exploit ReleasedRemote Print Server Gives Anyone Windows Admin Privileges on a PCNode.js Fixes Severe HTTP Bug That Could Let Attackers Crash Apps