10/29-31/2021 October 31, 2021October 31, 2021 ~ The Cyber Beat ~ Leave a comment Federal Push to Identify, Protect Critical Groups From Hackers Gains MomentumGoogle FI Is Getting End-To-End Encrypted Phone CallsUK Data Watchdog Calls for End-To-End Encryption Across Video Chat Apps by DefaultMozilla Firefox Joins Browsers Implementing Global Privacy ControlMicrosoft: Windows Web Content Filtering Now Generally AvailableGoogle Chromebooks Failing to Enroll Due to Network IssueTwo of the Biggest Bitcoin Mining Companies in the World Are Battling It Out in a Small Texas Town of 5,600 PeopleRansomware Has Disrupted Almost 1,000 Schools in the US This YearHow an Accidental Phone Answer Exposed Rogers Communications ‘Coup Plan’Data-Breached Guntrader Website Calls in Liquidators, Is Reborn as Guntrader 2 LtdMinnesota Man Charged with Hacking Pro Sports LeaguesPolice Arrest Suspected Ransomware Hackers Behind 1,800 Attacks WorldwideTrickBot Malware Dev Extradited to U.S. Faces 60 Years in PrisonGraff Jeweler Attack: ‘Tycoons and Celebrities on Leak List as Russian Gang Demands Ransom’Toronto Transit Commission Still Recovering From Ransomware AttackHacker Breaches Texas Lavaca Medical Center in Hallettsville, Exposing 48K Patients’ InfoSchreiber Foods Back to Normal After Ransomware Attack Shuts Down Milk PlantsTA575 Criminal Group Using ‘Squid Game’ Lures for Dridex MalwareChaos Ransomware Targets Gamers via Fake Minecraft Alt ListsMicrosoft Warns of Rise in Password Sprays Targeting Cloud AccountsSnake Malware Biting Hard on 50 Apps for Only $25Hive Ransomware Now Encrypts Linux and FreeBSD SystemsGoogle Chrome is Abused to Deliver Malware as ‘Legit’ Win 10 AppNew ‘Shrootless’ Bug Could Let Attackers Install Rootkit on macOS Systems
10/28/2021 October 28, 2021October 29, 2021 ~ The Cyber Beat ~ Leave a comment National Cyber Policy Will Disrupt Crime and Instill HopeBiden Administration Officials Outline Steps to Tackle Urgent Cyber ThreatsNSA and CISA Share Guidance on Securing 5G Cloud InfrastructureMicrosoft Announces Plan to Cut Cybersecurity Workforce Shortage in Half by 2025EU’s Green Pass Vaccination ID Private Key Reportedly LeakedWorkers Quickly Get State Income Benefits After Cyberattack on German ManufacturerRansomware Gangs Use SEO Poisoning to Infect VisitorsCybersecurity: Eight Ways To Protect The Business And Find A PartnerSuspected REvil Gang Insider IdentifiedAlleged Russian Hacker Extradited From South Korea to Stand Trial in U.S.U.S. Dismisses Assange Suicide Risk in Extradition AppealICS Security Firm Dragos Reaches $1.7B Valuation in Latest Funding RoundTwitter’s Infosec Chief Makes the Case for Cybersecurity Expertise in BoardroomsFacebook Is Going MetaEmergency Google Chrome Update Fixes Zero-Days Used in AttacksKrebs: Zales.com Leaked Customer Data, Just Like Sister Firms Jared, Kay Jewelers Did in 2018Email Hack At UMass Memorial Health Exposes Personal Information Of More Than 200,000 PatientsThrockmorton (TX) County Memorial Hospital Exposed Employees’ Wages, Patients’ Health DataSensitive Data of 400,000 German Students Exposed by API FlawPHI Stolen in Practice Management Firm PracticeMax (AZ) Ransomware AttackLuxury Hotel Chain in Thailand Reports Data BreachAvista Warns Customers of Ransomware AttackMartin County (FL) Tax Collector’s Possibly Hit by Ransomware AttackWashington Central Unified Union School District (VT) May Have Been Hit With RansomwareAnn Arbor’s TheRide Latest Victim of Cyber AttackAndroid Spyware Spreading as Antivirus Software in JapanNew AbstractEmu Malware Roots Android Devices, Evades DetectionNew Wslink Malware Loader Runs as a Server and Executes Modules in MemoryMicrosoft: Shrootless Bug Lets Hackers Install macOS RootkitsWordPress Plugin Bug Impacts 1m Sites, Allows Malicious RedirectsAll Windows Versions Impacted by New LPE Zero-Day Vulnerability
10/27/2021 October 27, 2021October 27, 2021 ~ The Cyber Beat ~ Leave a comment Blinken Formally Announces New State Department Cyber BureauU.S. Bans China Telecom Americas Over National Security RisksLawmakers Split on Next Steps to Secure Transportation Sectors Against HackersHackers Had Second Go At SEPA During Cyber AttackAndroid Spyware Apps Target Israel in Three-Year-Long CampaignU.S. Launches Appeal Against UK Assange Extradition DecisionIndia’s Supreme Court Orders Pegasus ProbeFederal Trade Commission Scrutinizing Facebook DisclosuresSecuring Your Digital Life, Part Two: The Bigger Picture—and Special CircumstancesTwitter Employees Required to Use Security Keys After 2020 HackHackers Arrested for ‘Infiltrating’ Ukraine’s Health DatabaseRussian ‘Grief’ Cybercriminals Claim to Have Hacked the NRACream Finance Appears to Have Suffered Major Loss in Flash Loan HackRansomware Hackers Freeze Millions in Papua New Guinea Aid CashA Security Bug in Health App Docket Exposed COVID-19 Vaccine RecordsTeen Rakes in $2.74M Worth of Bitcoin in Phishing ScamDDoS Attacks Are Crippling UK VoIP OperatorsWar-Driving Technique Allows Wi-Fi Password-Cracking at ScaleNPM Packages Disguised as Roblox API Code Caught Carrying RansomwareFree Decryptor Released for Atom Silo and LockFile RansomwareBabuk Ransomware Decryptor Released to Recover Files for Free
10/26/2021 October 26, 2021 ~ The Cyber Beat ~ Leave a comment State Department to Form New Cyber Office to Face Proliferating Global ChallengesKrebs: FBI Raids Chinese Point-of-Sale Giant PAX TechnologyNorth Korea APT ‘Lazarus’ Attackers Turn to the IT Supply Chain with ‘BlindingCan RAT’FBI: Ranzy Locker Ransomware Hit at Least 30 U.S. Companies This YearMSPs, Not Bank Of America, Are The New Ransomware Target, Says ThreatLockerPolice Arrest 150 Dark Web Vendors of Illegal Drugs and GunsMoney Launderers for Russian Hacking Groups Arrested in UkraineColorado Man, Formerly of Florida, Pleads Guilty to Falsifying Clinical Trial DataIran Says Cyberattack Causes Widespread Disruption at Gas StationsThird-Party Data Breach in Singapore Hits Healthcare Provider Fullerton HealthTulsa Restaurant Chain Flo’s Burger Diner Closes for One Day After Thieves Hack Bank AccountPinelands Regional School District (NJ) Investigates Data BreachAttackers Hijack Craigslist Emails to Bypass Security, Deliver MalwareSpammers Use Squirrelwaffle Malware to Drop Cobalt StrikeBrutal WordPress Plugin Bug Allows Subscribers to Wipe SitesAdobe Issues Emergency Fixes for 92 Security Holes in 14 Products
10/25/2021 October 25, 2021October 25, 2021 ~ The Cyber Beat ~ Leave a comment Russian SolarWinds Hackers ‘Nobelium’ Targeting U.S. Networks in ‘Very Large and Ongoing’ Cyberattack…Russia Undeterred by U.S. ActionsEx-NSA Hacker Says a Supply Chain Cyberattack Is One of the Things That Keeps Him up at NightKrebs: Conti Ransom Gang Starts Selling Access to VictimsChina Is Pushing to Develop Its Own Chips — But the Country Can’t Do Without Foreign TechFacebook Posts Slower Sales Growth… With Apple Privacy PolicySecuring Your Digital Life, Part One: The BasicsHow We Can Narrow the Talent Shortage in CybersecurityUpdated Cybercrime Pact Aims to Speed Cross-Border InvestigationsNYC’s ‘Peculiar’ New Delivery App Law Raises Data Breach FearsNYT Journalist Ben Hubbard Repeatedly Hacked with Pegasus after Reporting on Saudi ArabiaNearly 30k Former and Current CU Boulder Students’ Personal Information HackedJanesville Schools (WI) Hit With Ransomware Attack Locking Digital SystemsMcAllen Surgical Specialty Center (TX) Identifies Possible Data BreachMillions of Android Users Targeted in Subscription Fraud CampaignNew Attack Let Attacker Collect and Spoof Browser’s Digital FingerprintsBillQuick Billing App Rigged to Inflict RansomwareCISA Urges Sites to Patch Critical RCE in DiscourseMicrosoft Defender ATP Adds Live Response for Linux and macOSMozilla Blocks Malicious Add-Ons Installed by 455k Firefox Users
10/22-24/2021 October 25, 2021October 25, 2021 ~ The Cyber Beat ~ Leave a comment U.S. Ban on Sales of Cyberattack Tools Is Anemic, Experts WarnCISA Awards $2 Million to Cybersecurity Programs for Rural, Diverse CommunitiesGroove Ransomware Calls on All Extortion Gangs to Attack U.S. InterestsAmerica Must Protect These 5 Technologies if It Wants to Remain a Superpower, Intelligence Officials Warn22% of Brits Received Proof of Vaccination Phishing Email in Past Six MonthsEdward Snowden Warns Weakening Encryption Would Have Dire Consequences: ‘Privacy Is Power’FTC: ISPs Collect and Monetize Far More User Data Than You’d ThinkMicrosoft Rolls Out a Public Preview of E2EE in Teams CallsHow Many Users Does Facebook Have? The Company Struggles to Figure It OutGoogle Charges More Than Twice Its Rivals in Ad Deals, Unredacted Suit SaysNebraska Issues First Federal Cyber-stalking SentenceHacker Sells the Data for Millions of Moscow Drivers… for $800DarkSide Ransomware Rushes to Cash Out $7 Million in Bitcoin‘Lone Wolf’ Hacker Group Targeting Afghanistan and India with Commodity RATsTesco Admits It Has Been Hit by a Cyber-AttackCoinMarketCap Hack Reportedly Leaks 3.1 Million User Email AddressesItalian Celebs’ Data Exposed in Ransomware Attack on SIAESCUF Gaming Store Hacked to Steal Credit Card Info of 32,000 CustomersCorry School District (PA) Says Ransomware Attack May Have Exposed Data on Staff, StudentsAcorn Stairlifts Is Victim of Cyber AttackThreat Actors Abuse Discord to Push MalwarePopular NPM Library Hijacked to Install Password-Stealers, MinersMicrosoft Warns of TodayZoo Phishing Kit Used in Extensive Credential Stealing AttacksMicrosoft: WizardUpdate Mac Malware Adds New Evasion TacticsMicrosoft 365 Will Get Support for Custom Arc ConfigurationsBlackMatter Ransomware Victims Quietly Helped Using Secret Decryptor
10/21/2021 October 21, 2021October 21, 2021 ~ The Cyber Beat ~ Leave a comment U.S., Allied Nations Force REvil Ransomware Group OfflineRansomware Gang ‘Fin7’ Masquerades as Real Company ‘Bastion Secure’ to Recruit Tech TalentMicrosoft Now Defends Nonprofits Against Nation-State AttacksDocument Leak Reveals Nations Lobbying to Change Key Climate Report450 Million Cyberattacks Attempted on Japan Olympics Infrastructure: NTTCybercrime Matures as Hackers Are Forced to Work SmarterHow Psychology Can Save Your Cybersecurity Awareness Training ProgramNew Senate Bill Would Take Steps to Protect AI-Collected DataResearch Finds Consumer-Grade IoT Devices Showing Up On Corporate NetworksU.S. Imprisons Bulletproof Hosting ProvidersDutch Arrest Nine for Impersonating Bank Clerks to Steal From the ElderlyTrump’s Truth Social Hacked Within Hours of AnnouncementGigabyte Allegedly Hit by AvosLocker RansomwarePHI Stolen From Humana and Anthem Vendor PracticeMaxMCH Group Targeted in Latest Swiss Cyber AttackMassive Campaign Uses YouTube to Push Password-Stealing MalwareEvil Corp Demands $40 Million in New Macaw Ransomware AttacksRAT Malware Spreading in Korea Through Webhards and TorrentsTA551 Shifts Tactics to Install Sliver Red-Teaming ToolBug in Popular WinRAR Software Could Let Attackers Hack Your ComputerGoogle Launches Android Enterprise Bug Bounty Program
10/20/2021 October 20, 2021October 20, 2021 ~ The Cyber Beat ~ Leave a comment Major Russian Hacking Group ‘Evil Corp’ Linked to Ransomware Attack on Sinclair…Olympus tooGoogle Says Russian-Speaking Hackers Hijacked YouTube Channels for Cryptocurrency ScamDDoS Attacks Against Russian Firms Have Almost Tripled in 2021Commerce Department Cracks Down on Sale of Hacking Products to Foreign GovernmentsUK NHS Digital Exposes Hundreds of Email Addresses After BCC Blunder Copies in Entire Invite List to ‘Let’s Talk Cyber’ EventNew Gummy Browsers Attack Lets Hackers Spoof Tracking ProfilesNew PurpleFox Botnet Variant Uses WebSockets for C2 CommunicationGeriatric Microsoft Bug Exploited by APT Using Commodity RATsResearchers Break Intel SGX With New ‘SmashEx’ CPU Attack TechniqueMicrosoft Warns of New Security Flaw Affecting Surface Pro 3 DevicesMicrosoft 365 Will Get Enhanced Insider Risk Management Tools
10/19/2021 October 20, 2021October 20, 2021 ~ The Cyber Beat ~ Leave a comment Potential Chinese Hackers ‘LightBasin’ Targeting Telecommunications CompaniesLyceum APT Returns, This Time Targeting Tunisian FirmsBlackByte Ransomware Decryptor Released to Recover Files for FreeChina’s VPN Market Now Open to Foreign InvestmentZerodium Wants Zero-Day Exploits for Windows VPN ClientsBrave Ditches Google for Its Own Privacy-Centric Search EngineTwitter Suspends Hacker Who Allegedly Stole Data of 45 Million ArgentiniansThe Simmering Cybersecurity Risk of Employee BurnoutData Breach Hits North American Dental ManagementCandy Corn Maker Ferrara Hit With RansomwareManhasset Schools (NY) Victim of Ransomware AttackQuickfox VPN Misconfiguration Exposes One Million UsersTA505 Gang Is Back With Newly Polished FlawedGrace RATAbout 26% Of All Malicious Javascript Threats Are ObfuscatedSquirrel Bug Lets Attackers Execute Code in Games, Cloud Services
10/18/2021 October 19, 2021October 19, 2021 ~ The Cyber Beat ~ Leave a comment Donald Trump’s Website Hacked by ‘Turkish and Muslim Hacktivist’ RootAyyildiz Who Previously Hit Biden Campaign SiteAgencies Say Agriculture Groups Being Targeted by BlackMatter RansomwareState-Backed Hackers ‘Harvester’ Breach Telcos With Custom MalwareSuspected Chinese Hackers Behind Attacks on Ten Israeli HospitalsCyber Private Eyes Go After Hackers, Without CounterattackingTwitter Suspends Accounts Used to Snare Security ResearchersCredit Card PINs Can Be Guessed Even When Covering the ATM PadSinclair Broadcast Group Hit by Ransomware Attack, Upending Local TV NewscastsAcer Hit With Second Cyberattack in Less Than a Week, Taiwanese Authorities NotifiedSpanish Business Customer Solution Giant Atento Suffers Cyber-Attack in BrazilMissouri Teacher Pension System Probing Possible Cyber AttackTikTok Serves Up Fresh Gamer Targets via Fake Among Us, Steam OfferingsMicrosoft Asks Admins to Patch PowerShell to Fix WDAC Bypass
10/15-17/2021 October 18, 2021October 18, 2021 ~ The Cyber Beat ~ Leave a comment Treasury: $590M Paid Out by Victims of Ransomware Attacks in First Half of 2021U.S. Links $5.2 Billion Worth of Bitcoin Transactions to RansomwareREvil Ransomware Shuts Down Again After Tor Sites Were HijackedTwitch Says No Passwords or Login Credentials Leaked in Massive BreachCambridge University Pauses £400m UAE Deal Over Spyware ClaimResearchers Condemn Apple’s Proposed Phone-Scanning FeaturesFacebook Should Clarify Terms of Service, Irish Privacy Regulator SaysData Stolen from American Osteopath GroupAccenture Confirms Data Breach After August Ransomware AttackMiller County (AR) Tax Assessors Office Needs Help Retrieving Info After August Ransomware AttackRussian Cybercrime Gang ‘MirrorBlast’ Targets Finance Firms With Stealthy MacrosTrickBot Gang Enters Cybercrime Elite with Fresh Affiliates‘Clumsy’ BlackByte Malware Reuses Crypto Keys, Worms Into NetworksBrave Web Browser Will Add Bounce Tracking Privacy Protection
10/14/2021 October 15, 2021October 15, 2021 ~ The Cyber Beat ~ Leave a comment World Leaders Recognize Ransomware Attacks as ‘Global Security Threat’White House Ransomware Summit Eyes Tighter Global Scrutiny for CryptoAgencies Warn of Cyber Threats to Water, Wastewater SystemsGoogle: We’re Tracking 270 State-Sponsored Hacker Groups From Over 50 CountriesMicrosoft Folds LinkedIn Social-Media Service in ChinaFacebook to Shield Public Figures from Cyber-harassmentHouse Democrats Announce Bill to Rein in Tech AlgorithmsWhatsApp Rolls Out iOS, Android End-To-End Encrypted Chat BackupsKrebs: Missouri Governor Vows to Prosecute St. Louis Post-Dispatch for Reporting Security VulnerabilityAcer Confirms Second Cyberattack in 2021 After Ransomware Incident in March3D Printing Site Thingiverse Suffers Breach of 228,000 Email Addresses Amid Sluggish DisclosureDocuSign Phishing Campaign Targets Low-Ranking EmployeesNew Yanluowang Ransomware Used in Targeted Enterprise AttacksMalicious Chrome Ad Blocker Injects Ads Behind the ScenesRickroll Grad Prank Exposes Exterity IPTV BugCritical Remote Hacking Flaws Disclosed in Linphone and MicroSIP SoftphonesMicrosoft Releases Linux Version of the Windows Sysmon Tool
10/13/2021 October 13, 2021October 13, 2021 ~ The Cyber Beat ~ Leave a comment World Leaders Call For Enhanced Cooperation to Fight Escalating Wave of Ransomware AttacksRussia Excluded From 30-Country Meeting to Fight Ransomware and Cyber CrimeAustralia to Tackle Ransomware Data Breaches by Deleting Stolen Files30 Mins or Less: Rapid Attacks Extort Orgs Without RansomwareKrebs: How Coinbase Phishers Steal One-Time PasswordsU.S. Officially the Top Destination for Bitcoin Miners, Beating Out China for the First TimeEU Legislation Introduced to Ban Anonymous Domain RegistrationJohns Hopkins to Launch Degree Program in Cybersecurity and PolicyOpenSea ‘Free Gift’ NFTs Drain Cryptowallet BalancesCrypto Romance Scam Drains $1.4MVerizon Digital Carrier Visible Customer Accounts Were HackedBrazilian E-commerce Firm Hariexpress Leaks 1.75 Billion Sensitive FilesIsrael’ Hadera Hospital Hobbled by Cyber AttackLancaster Media Group (PA) Attacked by RansomwareMyKings Botnet Still Active and Making Massive Amounts of MoneyBrizy WordPress Plugin Exploit Chains Allow Full Site TakeoversApple Silently Fixes iOS Zero-Day, Asks Bug Reporter to Keep Quiet
10/12/2021 October 13, 2021October 13, 2021 ~ The Cyber Beat ~ Leave a comment Congress Looks to Strengthen Government’s Aging Cyber InfrastructureDOJ Sees Crypto Seizures as a Priority in Anti-Ransomware PushU.S. Cyber Agency Hopes to Avoid the ‘Regulator’ LabelNSA Warns of Wildcard Certificate Risks, Provides MitigationsGoogle Creates Cybersecurity Team to Respond to Increased HacksStudy Reveals Android Phones Constantly Snoop on Their UsersPhoto Editor Android App Still Sitting on Google Play Store Is Malware1Password Unveils Secure Sharing Tool for Passwords, SecretsPhishing Campaign Uses Math Symbols to Evade DetectionDutch Police Send Warning Letters to DDoS Booter Customers‘Nukegate’ SCANA CEO Imprisoned for FraudMicrosoft Kills Bug Being Exploited in APT MysterySnail Espionage CampaignMicrosoft Fended Off a Record 2.4 Tbps DDoS Attack Targeting Azure CustomersOlympus US Systems Hit by Cyberattack Over the WeekendCyberattack Shuts Down Ecuador’s Largest Bank, Banco PichinchaUniversity of Sunderland Hit by Suspected Major Cyber Attack, IT Systems and Website DownPrivate Hospital Group Macquarie (NSW) Health Takes System Offline Following Cyber IncidentRansomware Attack Inhibits Servers in DeKalb County (GA)SnapMC Hackers Skip File Encryption and Just Steal Your FilesFreakOut Botnet Now Attacks Vulnerable Video DVR DevicesPyPI Removes ‘mitmproxy2’ Over Code Execution ConcernsKrebs: Patch Tuesday, October 2021 EditionMicrosoft Revokes Insecure SSH Keys for Azure DevOps Customers
10/11/2021 October 11, 2021October 11, 2021 ~ The Cyber Beat ~ Leave a comment UK Cyber Head Says Russia Responsible for ‘Devastating’ Ransomware AttacksChina Has Won AI Battle With U.S., Pentagon’s Ex-software Chief SaysMicrosoft Reports Iranian Hackers Targeting U.S., Israeli Defense CompaniesU.S. Set Out to Hobble China’s Huawei, and So It Has…Huawei Cloud Targeted by Updated Cryptomining MalwareCybersecurity Is A Journey, Not A DestinationGoogle Gives Security Keys to 10,000 High-Risk UsersFacebook Says It Will Add New Safety Features, Notably for Teens on Instagram, After Bombshell Whistleblower LeakUkrainian Police Arrest DDoS Operator Controlling 100,000 BotsPacific City Bank Discloses Ransomware Attack Claimed by AvosLockerHacker Steals Patients’ Data From San Juan Regional Medical Center (NM)Quest-Owned Fertility Clinic ReproSource Announces Data Breach After August Ransomware AttackOregon Eye Specialists Discloses Data Breach Following Employee Email CompromiseLibreOffice, OpenOffice Bug Allows Hackers to Spoof Signed DocsGitHub Revokes Duplicate SSH Auth Keys Linked to Library BugApple Releases iOS 15.0.2 for iPhone With Bug and Security FixesMicrosoft Defender for Identity to Detect Windows Bronze Bit Attacks
10/8-10/2021 October 10, 2021October 10, 2021 ~ The Cyber Beat ~ Leave a comment Biden Signs Bill to Strengthen K-12 School CybersecurityDemocrats Urge Federal Agencies to Address Use of Cryptocurrencies for Ransomware PaymentsPoll: Americans Think U.S. Politicians, Social Media Spread Misinformation More Than Foreign GovernmentsU.S. Navy Engineer Charged in Attempt to Sell Nuclear Submarine SecretsAmnesty International Links Indian Cybersecurity Firm to Spyware OperationRussian Orgs Heavily Targeted by Smaller Tier Ransomware GangsGoogle Warns 14,000 Gmail Users Targeted by Russian Group APT28Bank of America Insider Charged With Money Laundering for BEC ScamsBrewDog Token Gaffe Causes Massive PII BreachCox Media Group Confirms Ransomware Attack That Took Down BroadcastsSchneck Medical Center (IN) Electronic Medical Records Back Online 10 Days After Ransomware AttackTwitch Game Page Backgrounds Defaced With Jeff Bezos’ FaceIntuit Warns Quickbooks Customers of Ongoing Phishing AttacksResearchers Warn of FontOnLake Rootkit Malware Targeting Linux SystemsMicrosoft Adds Tamper Protection to Windows 11 Security Baseline
10/7/2021 October 7, 2021October 7, 2021 ~ The Cyber Beat ~ Leave a comment Russia Charges Cybersecurity Executive Ilya Sachkov, Founder and CEO of Group-IB, With Treason…Russian Spies Reportedly Used SolarWinds Hack to Steal U.S. Counterintelligence Details…Russian-Speaking Hacking Group FIN12 Scaling up Ransomware Attacks on Hospitals…Microsoft Report Finds Russia Dominant Force Behind Cyberattacks in Past YearNavy Warship USS Kidd Facebook Page Hacked to Stream ‘Age of Empires’ GamingTwitch Blames Server Error for Massive Data Leak…Twitch: No Credentials or Card Numbers Exposed in Data Breach…Research: Twitch Leak Included Emails, Passwords in Clear TextPatching Too Tortuous for IT Pros?SEC’s Stepped-up Cyber Scrutiny Won’t Save Shareholder Data Breach SuitsNetherlands Orders Apple to Offer More App Store Payment MethodsFirefox Now Shows Ads as Sponsored Address Bar SuggestionsState-Sponsored Chinese Group APT41 Targeted India With Tax and COVID PhishingUK’s Weir Group Hit by Attempted Cyber Attack at End of Q3Transdev Denies Data Stolen by Ransomware Group, Connects Leak to September Attack on ClientRansomware Gang Hit Barlow Respiratory Hospital in Echo Park (CA)Vidar Stealer Abuses Mastodon to Silently Get C2 ConfigurationCode Execution Bug Affects Yamale Python Package — Used by Over 200 ProjectsUnpatched Dahua Cams Vulnerable to Unauthenticated Remote AccessApache Emergency Update Fixes Incomplete Patch for Exploited BugMicrosoft Fixes Bug Blocking Azure Virtual Desktops Security UpdatesMicrosoft Is Disabling Excel 4.0 Macros by Default to Protect UsersApple Now Requires All Apps to Make It Easy for Users to Delete Their Accounts
10/6/2021 October 7, 2021October 7, 2021 ~ The Cyber Beat ~ Leave a comment TSA to Issue Regulations to Secure Rail, Aviation Groups Against Cyber ThreatsU.S. Gov’t to Sue Contractors Who Hide Breach IncidentsLawmakers Advocate for Establishment of Standalone House and Senate Cyber PanelsRansom Disclosure Act Would Give Victims 48 Hours to Report PaymentsAmerica Urged to Prepare for Shift to Post-Quantum CryptographyFacebook Slows New Products for ‘Reputational Reviews’Hacker Breaches Amazon’s Twitch Video Site, Exposing Future Product PlansPrincess Haya: Dubai Ruler Had Ex-wife’s Phone Hacked – UK CourtFired IT Admin Revenge-Hacks School by Wiping Data, Changing PasswordsTexas Man Imprisoned Over COVID-19 HoaxIranian Hackers Abuse Dropbox in Cyberattacks Against Aerospace and Telecom FirmsU.S. Clothing Brand Next Level Apparel Reports Phishing-Related Data BreachLodi Unified School District (CA) ‘Cybersecurity Issue’ Affecting Phones, Computer SystemsCyber Attack Hits Senator Gordon (Philippines) Official WebsiteActively Exploited Apache 0-Day Also Allows Remote Code ExecutionCanopy Parental Control App Wide Open to Unpatched XSS BugsMultiple Critical Flaws Discovered in Honeywell Experion PKS and ACE ControllersMedtronic Urgently Recalls Insulin Pump Controllers Over Hacking ConcernsFirefox Improves Advertising Tracker Blocking in Private Browsing
10/5/2021 October 5, 2021October 5, 2021 ~ The Cyber Beat ~ Leave a comment What Happened to Facebook, WhatsApp, and Instagram?…Facebook Blames Engineering Error of ‘Our Own Making’ for Global Outage…Faulty Router Configuration…No, There Isn’t Proof That the Private Data of 1.5 Billion Facebook Users Is Being Sold by Hackers…Facebook Whistleblower: ‘Morally Bankrupt’ Social Giant Will Have to ‘Hook Kids’ to GrowNSA Director Expects to Be Facing Ransomware Attacks ‘Every Single Day’ in Five YearsLawmakers Introduce Bill to Identify and Protect Critical Groups From Cyber ThreatsSquid Game Scenes Cut Over Data ExposureNew Yubico Security Keys Let You Use Fingerprints Instead of PasswordsOne Identity Acquires OneLoginTelegraph Newspaper Bares 10TB of Subscriber Data and Server LogsHackers Threaten Allen Independent School District (TX) Families After CyberattackRansomware Gang Encrypts VMware ESXi Servers With Python ScriptIP Surveillance Bugs in Axis Gear Allow RCE, Data TheftNew UEFI Bootkit Used to Backdoor Windows Devices Since 2012Apache Warns of Zero-Day Exploit in the WildAndroid October Patch Fixes Three Critical Bugs, 41 Flaws in TotalGoogle to Auto-Enroll 150 Million User Accounts Into 2FAWhat, Exactly, Is Cybersecurity? And Why Does It Matter?
10/4/2021 October 4, 2021October 4, 2021 ~ The Cyber Beat ~ Leave a comment Some Facebook, Instagram, WhatsApp Services Restored After Hourslong Global Outage…Krebs: What Happened to Facebook, Instagram, & WhatsApp?…Facebook Whistleblower to Testify Before SenateSenators Warn of Chinese Technology Threats Ahead of International MeetingUK Plans to Invest £5 Billion in Retaliatory Cyber-AttacksEncrypted & Fileless Malware Sees Big GrowthResearcher Refuses Telegram’s Bounty Award, Discloses Auto-Delete BugLargest Mobile SMS Routing Firm Syniverse Discloses Five-Year-Long BreachPoorly Configured Apache Airflow Instances Leak Credentials for Popular ServicesTesuque Casino (NM) Reopens Tuesday After September Cyber AttackNew Atom Silo Ransomware Targets Vulnerable Confluence ServersRaidForums Forced to Use Mirror After Brazilian Gov’t Contacts RegistrarUkrainian Cops Cuff Two Over $150m Ransomware Gang Allegations, Seize $1.3m in Cryptocurrency
10/1-3/2021 October 4, 2021October 4, 2021 ~ The Cyber Beat ~ Leave a comment Pandora Papers: Secret Wealth and Dealings of World Leaders Exposed…Key Findings From the Pandora Papers InvestigationWhite House Plans 30-Country Meeting on Cyber Crime and RansomwareKrebs: FCC Proposal Targets SIM Swapping, Port-Out FraudFalse Election Claims Undermine Efforts to Increase SecurityEl Salvador Has Just Started Mining Bitcoin Using the Energy From VolcanoesA Hospital Hit by Hackers, a Baby in Distress: The Case of the First Alleged Ransomware DeathThe Facebook Whistleblower, Frances Haugen, Says She Wants to Fix the Company, Not Harm ItDeFi Bug Accidentally Gives $90 Million to Users, Founder Begs Them to Return It…Bug Puts $162 Million up for Grabs, Says Founder of DeFi Platform CompoundUK National Cyber Force to be based in SamlesburyBiden ‘Confident’ in the Nation’s Cybersecurity Efforts as Cybersecurity Awareness Month BeginsMFA Glitch Leads to 6K+ Coinbase Customers Getting RobbedSandhills Online Machinery Markets Shut Down by Ransomware AttackMoneyLion Locks Customer Accounts After Credential Stuffing AttacksWashington Adventist University Hit By Ransomware AttackJohnson Memorial Health (IN) Struck by Cyberattack SaturdayIKEA: Cameras Were Hidden in the Ceiling Above Warehouse Toilets for ‘Health and Safety’Transnational Fraud Ring Stole Millions From Army Members, VeteransNew APT ChamelGang Targets Russian Energy, Aviation OrgsHydra Malware Targets Customers of Germany’s Second Largest BankFlubot Malware Targets Androids With Fake Security Updates
9/30/2021 October 1, 2021October 1, 2021 ~ The Cyber Beat ~ Leave a comment U.S. Lawmakers Push for New Controls on Ex-Spies Working OverseasData-Privacy Impasse Hangs Over U.S.-EU Trade and Technology SummitHouse Approves Legislation to Protect K-12 Schools Against CyberattacksThousands of University Wi-Fi Networks Expose Log-In CredentialsMilitary’s RFID Tracking of Guns May Endanger TroopsBaby’s Death Alleged to Be Linked to RansomwareScammers Capitalize on Release of New Bond MovieRansomEXX Ransomware Linux Encryptor May Damage Victims’ FilesWireX DDoS Botnet Admin Charged for Attacking Hotel ChainArctic Wolf Acquires ‘Hollywood-Style’ Cybersecurity Training Startup Habitu8How Yahoo Built a Culture of CybersecurityJVCKenwood Hit by Conti Ransomware Claiming Theft of 1.5TB DataNeiman Marcus Says Notified 4.6 Million Customers About Data BreachSchneck Medical Center (IN) Suspends IT Systems in Response to Ongoing CyberattackStonington Public School System (CT) Targeted by Ransomware HackersInnovative Proxy Phantom ATO Fraud Ring Haunts eCommerce AccountsGhostEmperor Hackers Use New Windows 10 Rootkit in AttacksFake Amnesty International Pegasus Scanner Used to Infect WindowsNew Azure AD Bug Lets Hackers Brute-Force Passwords Without Getting CaughtQNAP Fixes Bug That Let Attackers Run Malicious Commands RemotelyGoogle Emergency Update Fixes Two Chrome Zero Days