11/30/2021 November 30, 2021November 30, 2021 ~ The Cyber Beat ~ Leave a comment MI6 Boss Warns of China ‘Debt Traps and Data Traps’Democrat Congressman Bobby Rush Pushes for Pipeline Reliability StandardsRansomware vs. Cities: A Cyber WarFinland Faces Blizzard of Flubot-Spreading Text Messages Targeting Android UsersLloyd’s Carves Out Cyber-Insurance Exclusions for State-Sponsored AttacksSmartwatches for Children Are a Privacy and Security NightmareTexas School District to Scan Children’s DevicesFBI Seized $2.2M From Affiliate of REvil, Gandcrab Ransomware GangsFinding Your Niche in CybersecurityDNA Testing Firm DNA Diagnostics Center Discloses Data Breach Affecting 2.1 Million PeopleQueensland Government Energy Generator Hit by RansomwareHackers Plant Card-Stealing Malware on Sealand Website That Sells Baron and Duke TitlesBoulder Neurosurgical & Spine Associates (CO) Hit With Data BreachYanluowang Ransomware Tied to Thieflock Threat ActorSabbath Ransomware Group Rebrands Multiple Times to Evade DetectionEwDoor Botnet Targets AT&T Network Edge Devices at U.S. FirmsVisiting a Booby-Trapped Webpage Could Give Attackers Code Execution Privileges on HP Network PrintersMicrosoft Defender Scares Admins With Emotet False Positives
11/29/2021 November 29, 2021November 29, 2021 ~ The Cyber Beat ~ Leave a comment North Korean APT ScarCruft (aka APT37) Mounts Desktop/Mobile Double-Pronged Spy Attacks with Chinotto MalwareLawmakers Take Aim At ‘Grinches’ Using Bots to Target Consumers During HolidaysCISA Seeks Extra Email ProtectionThe True Cost Of Rising Cyber Threats, According To A Cybersecurity CFOCybersecurity Graduates Are Doubling, but That’s Still Not Going to Fix the Skills CrisisPhishing Remains the Most Common Cause of Data BreachesInside Intel’s Secret Warehouse in Costa RicaDark Web Market Cannazon Shuts Down After Massive DDoS AttackAustralia Will Force Social Networks to Identify Trolls, so They Can Be Sued for DefamationStealthy WIRTE Hackers Target Governments in the Middle EastData Breach at PanasonicWind Turbine Maker Vestas Confirms Recent Security Incident Was RansomwareKentucky Energy and Environment Cabinet Suffered Data Breach in September on Mining Permit ApplicationsData Breaches at Huntington Hospital (NY) and Southwestern Vermont Medical CenterIn Addition to LCCC, Cyber Attack Closes RiverBend Growth Association (IL)4 Android Banking Trojan Campaigns Targeted Over 300,000 Devices in 2021Zoom Finally Adds Automatic Updates to Windows, macOS Clients
11/26-28/2021 November 28, 2021November 28, 2021 ~ The Cyber Beat ~ Leave a comment Beijing Presses Didi to Delist From U.S. Over Data Security FearsItaly’s Antitrust Regulator Fines Google and Apple for “Aggressive” Data PracticesIsrael Defense Ministry Slashes Cyber Export List, Drops Saudi Arabia, UAEKrebs: The Internet is Held Together With Spit & Baling WireMassive Hack Gave Police a Window on Cocaine, Cash and KillersInterpol Arrests Over 1,000 Suspects Linked to Cyber Crime‘AI Will Revolutionize Every Aspect of Connectivity,’ Argue Cyber ExpertsIsrael and Iran Broaden Cyberwar to Attack Civilian TargetsIKEA Email Systems Hit by Ongoing CyberattackSmall-Town Japanese Hospital to Resist Paying Ransom After CyberattackGoogle Warns Crypto Miners Are Using Compromised Cloud AccountsTrickBot Phishing Checks Screen Resolution to Evade ResearchersNew Windows 10 Zero-Day Gives Admin Rights, Gets Unofficial PatchCyber Monday Shoppers Warned of Attacks Where Scammers Try to Extort You
11/25/2021 November 25, 2021November 25, 2021 ~ The Cyber Beat ~ Leave a comment Tencent Must Get Approval From Chinese Regulators Before Publishing New Apps and UpdatesHow Cybercriminals Adjusted Their Scams for Black Friday 2021…New Twists on Gift-Card Scams Flourish on Black Friday…Black Friday: How to Avoid Being Scammed by Cybersecurity Criminals Who Are Using CryptosUK and German Police Take Down 21 Jihadist WebsitesUK Government Transport Website Caught Showing PornCybersecurity Recruitment, Training Misses the MarkScammers Hack Mazda USA’s Official Instagram Page On ThanksgivingData Breach at True Health New Mexico Impacts 62,000 State ResidentsInternational Vessel Owner Swire Pacific Offshore Hit by Cybersecurity BreachDiscord Malware Campaign Targets Crypto and NFT CommunitiesNew Linux Malware Hides in Cron Jobs With Invalid DatesMicrosoft Defender for Endpoint Laid Low by Another Buggy Windows Patch
11/24/2021 November 25, 2021November 25, 2021 ~ The Cyber Beat ~ Leave a comment FBI: Online Shoppers Risk Losing Over $53M to Holiday ScamsApple’s Pegasus Lawsuit a ‘Declaration of War’ Against Offensive Software Developers, Says Kaspersky DirectorAPT C-23 Hackers Using New Android Spyware Variant to Target Middle East UsersHit by Ransomware? Make Sure You Don’t Make This First Obvious MistakeUkraine Arrests ‘Phoenix’ Hackers Behind Apple Phishing AttacksJoke Hitman Website Catches Plotting MichiganderGermany to Force ISPs to Give Discounts for Slow Internet SpeedsGoDaddy Breach Widens to Include Reseller SubsidiariesRansomware Attack Shuts Down Lewis and Clark Community College (IL) CampusesSeneca Family of Agencies Data Breach Impacts Thousands of Sonoma County (CA) RecipientsHackers Exploit Microsoft MSHTML Bug to Steal Google, Instagram CredsStealthy New Javascript Malware Infects Windows PCs With RATsEavesdropping Bugs in MediaTek Chips Affect 37% of All Smartphones and IoT Globally
11/23/2021 November 23, 2021November 23, 2021 ~ The Cyber Beat ~ Leave a comment Apple Sues NSO Group for Hacking iPhones on Behalf of GovernmentsPalantir CEO Says Companies Working With U.S. Adversaries Should Justify Their PositionRussian Cybersecurity Executive Appeals to Putin as Detention for Treason ExtendedTardigrade Hackers Target Big Pharma Vaccine Makers With Stealthy MalwareFBI Warns of Phishing Targeting High-Profile Brands’ CustomersNorsk Hydro Probe Shows Slow Pace of International Ransomware CasesCommon Cloud Misconfigurations Exploited in Minutes, ReportTelecommunications Industry Ombudsman Wants Telcos to Have 24-Hour Fraud HotlineThe Best Black Friday 2021 Security, IT, VPN, & Antivirus DealsUK Ministry of Justice Secures HVAC Systems ‘Protected’ by Passwordless Wi-Fi After TipoffFrench Firm Bureau Veritas Hit by Cyberattack on Cybersecurity SystemOhio Election Security Tested After Attempted Hack in Lake CountyOver Nine Million Android Devices Infected by Info-Stealing TrojanMalware Now Trying to Exploit New Windows Installer Zero-DayResearchers Warn of Severe Risks From ‘Printjack’ Printer AttacksMicrosoft Edge Adds Super Duper Secure Mode to Stable ChannelHow Tech Companies Can Help Solve The Cybersecurity Skills Shortage
11/22/2021 November 23, 2021November 23, 2021 ~ The Cyber Beat ~ Leave a comment Authorities Warn Organizations to Be on Guard Against Hackers During Thanksgiving Holiday…Increased Ransomware…Online Merchants: Prevent Fraudsters from Becoming Holiday GrinchesHackers Circle as Individual Investors Pour Cash Into CryptoBiomanufacturing Companies Getting Hit by Hackers Potentially Linked to RussiaInside Saint John’s Response to a ‘Devastating’ 2020 CyberattackKrebs: Arrest in ‘Ransom Your Employer’ Email SchemeBug Bounties Surge as Firms Compete for TalentBiometric Auth Bypassed Using Fingerprint Photo, Printer, and GlueCrowdStrike Tops List of Most Valuable Public Cybersecurity Companies On Deloitte’s Technology Fast 500Cybersecurity Startup XM Cyber Acquired for $700 Million by Schwarz Group10 Stocking Stuffers for Security GeeksGoDaddy Discloses Security Breach That Exposed 1.2 Million WordPress Customer AccountsU.S. Education Software Company SmarterSelect Exposed Personal Data of 1.2M StudentsWind Turbine Giant Vestas Wind System Offline After Cyber IncidentAccounting Firm PKF and Queensland Rugby Union Hit by Hackers as Landmark Bill LoomsData From Millions of Brazilians Exposed in Wi-Fi Management Software Firm WSpot LeakUK Gov’t Warns Thousands of SMBs Their Online Stores Were HackedDorset Council Suspected Data Breach to Be InvestigatedAttackers Hijack Email Threads Using ProxyLogon/ProxyShell FlawsImunify360 Bug Leaves Linux Web Servers Open to Code Execution, TakeoverNew Windows Zero-Day With Public Exploit Lets You Become an AdminExploit Released for Microsoft Exchange RCE Bug, Patch Now
11/19-21/2021 November 21, 2021November 21, 2021 ~ The Cyber Beat ~ Leave a comment Lawmakers Increasingly Anxious About U.S. Efforts Against Russian HackersU.S. Regulators Order Banks to Report Cyberattacks Within 36 HoursMore Than $500M for Cybersecurity Included in Sweeping House-Passed PackageU.S. SEC Warns Investors of Ongoing Gov’t Impersonation Attacks…Fake TSA PreCheck Sites Scam U.S. Travelers With Fake RenewalsKrebs: The ‘Zelle Fraud’ Scam; How it Works, How to Fight BackCriminals Have Made off With Over $10 Billion in ‘DeFi’ Scams and Thefts This YearLess than Half of Consumers Change Passwords Post-BreachIndonesia Probe Police Hack in Latest Cyber BreachCanadian Teen Nabbed in $36.5m Crypto Heist – Possibly the Biggest Haul Yet by a Single IndividualBrit Admits Role in International Movie Piracy RingAttempted Data Breach of Lake County (OH) Board of Elections Used to Fuel Voter-Fraud LiesPremier Property Lawyers: Police Investigate Firm’s IT IncidentRadiology Center Utah Imaging Associates Hit by Data Breach Affecting 582k PatientsRiviera Utilities (AL) Hit by Cyber Attack Affecting Email SystemsIran’s Mahan Air Says It Foiled Cyber Attack on SystemsEmotet Botnet Comeback Orchestrated by Conti Ransomware Gang6M Sky Routers Left Exposed to Attack for Nearly 1.5 YearsMicrosoft Exchange Servers Hacked in Internal Reply-Chain AttacksMicrosoft Authenticator Gets New Enterprise Security FeaturesMicrosoft: Office 365 Will Boost Default Protection for All Users
11/18/2021 November 19, 2021November 19, 2021 ~ The Cyber Beat ~ Leave a comment EPA’s Cybersecurity Oversight of Water Sector Falls Short, Report SaysHundreds Participate in Electric Grid Cyberattack Simulation Amid Increasing ThreatsNorth Korean Cyberspies Target Gov’t Officials With Custom MalwareIran Is ‘Leapfrogging Our Defenses’ in a Cyber War ‘My Gut Is We Lose’: Hacking Expert Kevin MandiaChina’s APT41 Manages Library of Breached CertificatesDOJ Charges Two Iranians With Interference in 2020 ElectionBoffins Find Way to Use a Standard Smartphone to Find Hidden Spy Cams70% Of Security and IT Pros Find Security Hygiene and Posture Increasingly Challenging Over the Past 2 YearsHeavy Workloads Are Taking Their Toll For Those On Frontlines Of Cybersecurity WarsDark Web Crooks Are Now Teaching Courses on How to Build BotnetsRansomware Phishing Emails Sneak Through SEGsThousands of Firefox Users Accidentally Commit Login Cookies on GithubHackers Deploy Linux Malware, Web Skimmer on E-commerce ServersAndroid Malware BrazKing Returns as a Stealthier Banking TrojanNew Memento Ransomware Switches to WinRar After Failing at EncryptionRedCurl Corporate Espionage Hackers Resume Attacks With Updated ToolsSpear-Phishing Campaign Exploits Glitch Platform to Steal CredentialsFBI: FatPipe VPN Zero-Day Exploited by APT for 6 MonthsCritical Root RCE Bug Affects Multiple Netgear SOHO Router Models
11/17/2021 November 18, 2021November 18, 2021 ~ The Cyber Beat ~ Leave a comment Russian Ransomware Gangs Start Collaborating With Chinese HackersVaccine Research Among Cyber Attack TargetsPhishing Scam Aims to Hijack TikTok ‘Influencer’ AccountsCISA Releases Cybersecurity Response Plans for Federal AgenciesOrganizations More Susceptible to Ransomware Attacks During Weekends and HolidaysKrebs: Tech CEO Pleads to Wire Fraud in IP Address SchemeU.S. to Sell $56M in Seized CryptocurrencyUK Government Publishes Guidance on Security Rules for Tech TakeoversSouth Korean Privacy Watchdog Apologises for Violating Privacy While Mediating Privacy LawsuitOfficials Warn That Hackers Linked to Iranian Government Are Targeting Critical SectorsIsrael’s Candiru Spyware Found Linked to Watering Hole Attacks in UK and Middle EastEskenazi (IN) Patients Receive Letters Alerting Them of Cyber Security Breach 6 Months AgoPlumas County (CA) Administrator Addresses Cyber AttackCalifornia Pizza Kitchen Data Breach Exposes Personal Information: Murphy Law Firm Most SS7 Exploit Service Providers on Dark Web Are ScammersNetflix Bait: Phishers Target Streamers with Fake Service SignupsHackers Targeting Myanmar Use Domain Fronting to Hide Malicious Activities
11/16/2021 November 17, 2021November 17, 2021 ~ The Cyber Beat ~ Leave a comment Biden, Xi Hold Virtual Summit Amid Rising U.S.-China TensionsReport Implicates Belarus in Anti-NATO ‘Ghostwriter’ Cyber CampaignFacebook Disrupts Pakistani Hacking Group Targeting Afghan UsersMicrosoft Warns of the Evolution of Six Iranian Hacking GroupsOversight Finds ‘Small Lapses’ in Security Led to Colonial Pipeline, JBS HacksFBI Calls For Firms to Report Hacks Directly to Law EnforcementThese Are the Cryptomixers Hackers Use to Clean Their RansomsEvil Corp: ‘My Hunt for the World’s Most Wanted Hackers’FBI Email Hoaxer ID’ed by the Guy He Allegedly Loves to TormentIn Alabama, Training for Cyber Crime and Competing in War GamesEthical Hackers Stymie $27B of Cybercrime200M Adult Cam Model, User Records Exposed in Stripchat BreachHackers Compromised Middle East Eye News Website to Hack Visitors, Researchers SayBurnie City (Tas) Council Hackers Left Their Contact Details: MayorDelta-Montrose Electric Association (CO) Grapples With ‘Targeted Effort’ on Its Internal NetworkHere Are the New Emotet Spam Campaigns Hitting Mailboxes WorldwideWordPress Sites Are Being Hacked in Fake Ransomware AttacksInside Story of Ransomware Repeatedly Masquerading as a Popular JS Library for Roblox GamersGitHub Fixes Authorisation Vulnerability in the NPM JavaScript Package RegistryMicrosoft Adds AI-Driven Ransomware Protection to DefenderResearchers Demonstrate New Way to Detect MitM Phishing Kits in the WildRansomware Gangs Are Now Rich Enough to Buy Zero-Day Flaws, Say Researchers
11/15/2021 November 16, 2021November 16, 2021 ~ The Cyber Beat ~ Leave a comment Bipartisan Commission Urges U.S. Take Immediate Steps to Curb Online MisinformationMoses Staff Hackers Wreak Havoc on Israeli Orgs With Ransomless EncryptionsCyber Attack Victims Won’t Be Allowed to Pay More Than $100K in Ransom Under New BillHow to Negotiate With Ransomware AttackersThe Best Ransomware Response, According to the DataScam Spotter Campaign Flags Gift Card FraudDHS Announces New Program to Attract and Retain Cybersecurity TalentDemand for Qualified Cybersecurity Workers Is SoaringU.S. Journalist Danny Fenster Imprisoned for Spreading False Information is Freed in Myanmar7 Million Robinhood User Email Addresses for Sale on Hacker ForumHackers Leak Kent School Files in ‘Highly Sophisticated’ Cyber AttackCenter for Human Development (CHD) Warns of Data Breach Exposing Employees, Individuals ServedCybercriminals Target Alibaba Cloud for Cryptomining, MalwareRowhammer Attacks: DDR4 Ram Defenses Broken AgainEmotet Malware Is Back and Rebuilding Its Botnet via TrickBotHigh-Severity Intel Processor Bug Exposes Encryption KeysNew Microsoft Emergency Updates Fix Windows Server Auth Issues
11/12-14/2021 November 14, 2021November 14, 2021 ~ The Cyber Beat ~ Leave a comment Hacker Sends Spam to 100,000 From FBI Email Address…Fake Cybersecurity Warnings…FBI Says Hackers Got No Data After Compromising Email Server…Krebs: Hoax Email Blast Abused Poor Coding in FBI WebsiteSenate Democrats Urge Government to Do More to Protect K-12 Schools Against HackersFTC Shares Ransomware Defense Tips for Small U.S. BusinessesU.S. To Partner With Israel to Combat Ransomware AttacksChina Regulator Proposes Cybersecurity Review for Some Hong Kong IPOsChina’s Next Generation of Hackers Won’t Be Criminals: That’s a ProblemBitcoin’s Biggest Upgrade in Four Years Just Happened – Here’s What ChangesSecurity Company Randori Faces Backlash for Waiting 12 Months to Disclose Palo Alto 0-DaySurveillance Firm WiSpear Pays $1 Million Fine After ‘Spy Van’ ScandalU.S. Accuses Russian of Money Laundering for Ryuk Ransomware GangCostco Confirms: A Data Skimmer’s Been Ripping Off CustomersSpanish Brewery Sociedad Anónima Damm, Maker of Estrella Damm, Paralyzed by Cyber-AttackWest Virginia Parkways Authority Hit by Cyber-AttackRansomware Experts Question Massive Pysa/Mespinoza Victim DumpHackers Increasingly Using HTML Smuggling in Malware and Phishing AttacksQBot Returns for a New Wave of Infections Using SquirrelwaffleFake End-To-End Encrypted Chat App Distributes Android SpywareMac Zero Day Targets Apple Devices in Hong KongCISA Warns of Equipment Vulnerabilities From Multiple VendorsAMD Reveals an Epyc 50 Flaws – 23 of Them Rated High Severity; Intel Has 25 Bugs, TooZero-Day Bug in All Windows Versions Gets Free Unofficial PatchThese Are the Top-Level Domains Threat Actors Like the MostOpen Source Project Aims to Detect Living-Off-the-Land Attacks
11/11/2021 November 11, 2021November 11, 2021 ~ The Cyber Beat ~ Leave a comment Biden Signs Into Law Bill to Secure Telecommunications Systems Against Foreign ThreatsHarris Calls for Global Action on Cyber Threats After U.S. Joins International EffortDutch Newspaper Accuses U.S. Spy Agencies of Orchestrating 2016 booking.com BreachChina Still Steals Commercial Secrets for Its Own Firms’ ProfitCongress Mulls Ban on Big Ransom Payouts Unless Victims Get Official Say-SoCEO of Blacklisted Spyware Firm NSO Group QuitsCyberVetsUSA Pilots Nebraska ProjectGmail Accounts Are Used in 91% Of All Baiting Email AttacksRussian ‘King of Fraud’ Sentenced to 10 Years for Methbot SchemeExpect 2022 to Be the Year of CybersecurityDallas Police Surveillance Footage LeakedSouthern Ohio Medical Center Diverting Ambulances After Apparent Cyber AttackBack-to-Back PlayStation 5 Hacks Hit on the Same DayTiny Font Size Fools Email Filters in BEC PhishingCareful: ‘Smart TV Remote’ Android App on Google Play Is MalwareMagniber Ransomware Gang Now Exploits Internet Explorer Flaws in AttacksBotenaGo Botnet Targets Millions of IoT Devices With 33 ExploitsWindows 10 App Installer Abused in BazarLoader Malware AttacksAMD Fixes Dozens of Windows 10 Graphics Driver Security BugsGoogle Debuts ClusterFuzzLite Security Tool for CI, CD Workflows
11/10/2021 November 11, 2021November 11, 2021 ~ The Cyber Beat ~ Leave a comment Letter From Former High-Ranking National Security Officials To Congress: Election Subversion Poses National Security ThreatHarris, Macron Unveil New Initiatives on Space, Cybersecurity After MeetingStates Try to ‘Parallel’ Federal Orders on Cybersecurity, Officials SayFBI Warns of Iranian Hackers Looking to Buy Us Orgs’ Stolen DataLazarus Hackers Target Researchers With Trojanized IDA ProHacker-for-Hire Group ‘Void Balaur’ Spied on More Than 3,500 Targets in 18 MonthsNew Android Spyware ‘PhoneSpy’ Found in South Korea Poses Pegasus-Like ThreatTrickBot Teams up With Shatak Phishers for Conti Ransomware AttacksCyber Agency Beefing up Disinformation, Misinformation TeamKrebs: SMS About Bank Fraud as a Pretext for Voice PhishingBusinesses Don’t Know How to Manage VPN Security Properly – And Cyber Criminals Are Taking AdvantageHow to Spot and Block Cryptominers on Your NetworkFirms Will Struggle to Secure Extended Attack Surface in 2022These Industries Were the Most Affected by the Past Year of Ransomware AttacksIn Ransomware Fight, FBI Balances Unlocking Victims’ Data and Chasing AttackersFormer Broadcom Engineer Accused of Pinching Chip Tech to Share With New Chinese EmployerIn a Quantum Future, Our Economy Needs to Be Protected: A Cybersecurity Expert Explains WhyBrittany Ferries ‘Fesses up to Leaks Caused by Routine Website UpdateStor-a-File Hit by Ransomware After Crooks Target SolarWinds Serv-U FTP SoftwareHPE Says Hackers Breached Aruba Central Using Stolen Access KeyTelnyx Is the Latest VoIP Provider Hit With DDoS AttacksCritical Citrix DDoS Bug Shuts Down Network, Cloud App AccessQueensland Water Supplier Sunwater Targeted by Hackers in Months-Long Undetected Cyber Security BreachSummer Data Breach at Lander University (SC) Caught Before Paychecks DivertedCentral Health (NL) Also Impacted by Cyber Attack, Investigation OngoingCity of Moline (IL) Falls Victim of Cyber Attack Now Under Federal InvestigationNew Android Malware ‘MasterFred’ Targets Netflix, Instagram, and Twitter UsersMassive Zero-Day Hole Found in Palo Alto Security Appliances13 New Flaws in Siemens Nucleus TCP/IP Stack Impact Safety-Critical EquipmentWP Reset PRO Bug Lets Hackers Wipe WordPress SitesMicrosoft Patches Excel Zero-Day Used in Attacks, Asks Mac Users to WaitThese Invisible Characters Could Be Hidden Backdoors in Your JS CodeResearchers Show That Apple’s CSAM Scanning Can Be Fooled Easily
11/9/2021 November 9, 2021 ~ The Cyber Beat ~ Leave a comment State and Local Officials Celebrate Passage of Infrastructure Bill With $1 Billion in Cyber FundsIranian State Hackers ‘Lyceum’ Use Upgraded Malware in Attacks on ISPs, TelcosCash In, Fraud Out: Criminals Target Bitcoin ATMs as Crypto Popularity SurgesAuto-Sector Cybersecurity Group Expands to Europe Amid Rising Threats, New RegulationShotgun Targeting of Malware Attacks Will Be the Defining Infosec Theme of 2022, Reckons SophosMcAfee Sold to Investor Group for $14BTor Browser 11 Removes v2 Onion URL Support, Adds New UIKrebs: REvil Ransom Arrest, $6M Seizure, and $10M RewardIndian Securities Depository Exposed 44 Million Investors’ Personal Info – TwiceMedical Software Firm Medatixx Urges Password Resets After Ransomware AttackClop Gang Exploiting SolarWinds Serv-U Flaw in Ransomware AttacksTeamTNT Hackers Target Your Poorly Configured Docker ServersMultiple BusyBox Security Bugs Threaten Embedded Linux DevicesKrebs: Microsoft Patch Tuesday, November 2021 Edition…Urges Exchange Admins to Patch Bug Exploited in the Wild
11/8/2021 November 8, 2021November 8, 2021 ~ The Cyber Beat ~ Leave a comment Biden Takes Shot at Putin as He Touts REvil Ransom Seizure, New Criminal Cyberattack Cases…U.S. Seizes $6 Million in Ransom Payments and Charges Ukrainian Over Major Cyberattack…International Coalition Arrests Hackers Linked to Thousands of Ransomware Attacks…U.S. Sanctions Chatex Cryptoexchange Used by Ransomware GangsHackers Have Breached Organizations in Defense and Other Sensitive Sectors, Security Firm SaysZebra2104 Initial Access Broker Supports Rival Malware Gangs, APTsAmnesty Says NSO’s Pegasus Used to Hack Phones of Palestinian Rights WorkersAnti-Israel Activists Publish Information of Israeli Security OfficialsPassport Scammers Spoof Texas HSIChinese Spy Faces Decades in Jail After ConvictionCriminal Group Dismantled After Forcing Victims to Be Money MulesRobinhood Discloses Data Breach Impacting 7 Million Customers…Nobody Lost Any MoneyMediaMarkt Hit by Hive Ransomware, Initial $240 Million RansomComics Distributor Diamond Hit by Ransomware Attack; Some Shipments DelayedFishing Gear Seller Angling Direct Hacked to Show PornographyMaxim Healthcare Group Reports Data Breach$55m Stolen From DeFi Lending Protocol bZxExperts Detail Malicious Code Dropped Using ManageEngine ADSelfService ExploitZoho Password Manager Flaw Torched by Godzilla WebshellSitecore XP RCE Flaw Patched Last Month Now Actively ExploitedGoogle Will Kill Chrome Sync Support on Chrome 48 and Earlier
11/5-7/2021 November 8, 2021November 8, 2021 ~ The Cyber Beat ~ Leave a comment Lawmakers Call on Biden Administration to Take Further Steps Against Spyware Groups…Israeli Foreign Minister Distances Government From Blacklisted NSO GroupSenators Move to Include 72 Hour Timeline for Cyber Incident Reporting in Defense BillNative Tribal Casinos Taking Millions in Ransomware LossesCybersecurity Companies Are Raking in Millions. Many Don’t Turn Profits.FBI Warns of Increased Use of Cryptocurrency ATMs, QR Codes for FraudOperation Cyclone Deals Blow to Clop Ransomware OperationHow InfoSec Should Use the Minimum Viable Secure Product ChecklistU.S. Defense Contractor Electronic Warfare Hit by Data BreachRansomware Attack on Nationwide Laboratory Services946 UNC Patients’ Billing Info Potentially Exposed by Unauthorized Account AccessRansomware Compromises Patient Information at Victory Health Partners (AL)Proofpoint Phish Harvests Microsoft O365, Google LoginsPhilips Healthcare Infomatics Solution Vulnerable to SQL InjectionMozilla Thunderbird 91.3 Released to Fix High Impact FlawsPwn2Own: Printer Plays AC/DC, Samsung Galaxy S21 Hacked Twice
11/4/2021 November 4, 2021November 4, 2021 ~ The Cyber Beat ~ Leave a comment Ukraine Links Members of Gamaredon Hacker Group to Russian FSBBeijing Lashes USA’s China Telecom Ban – But Quite GentlyTop DOJ Official Predicting More Arrests in Crackdown on Ransomware, Cyber CrimeIndustry Pushes Back on Federal, Congressional Cybersecurity Mandate EffortsUK Labour Party Blames Breach of Members’ Data on Third-Party CyberattackKrebs: ‘Tis the Season for the Wayward Package PhishAmazon Spoofed in New AttackCall Center Scammers Using Justin Bieber Tickets, the Weeknd Concerts and Fake Gun Purchases to Spread MalwarePhishing Emails Deliver Spooky Zombie-Themed MirCop RansomwareWhy Ransomware Attackers Are Moving Towards Insider Attacks and What To Do About ItState Dept. Offering $10 Million Reward to Bring Colonial Pipeline Hackers to JusticeIranian Hacking Group BlackShadow Leaks Patient and LGBTQ InfoCrypto Investors Lose $500,000 to Google Ads Pushing Fake WalletsLockean Multi-Ransomware Affiliates Linked to Attacks on French OrgsBehavioral Health Services Business Seneca Family of Agencies (CA) Possibly Exposed Personal DataPopular ‘coa’ NPM Library Hijacked to Steal User PasswordsMicrosoft Exchange ProxyShell Exploits Used to Deploy Babuk RansomwareCritical Linux Kernel Bug Allows Remote TakeoverCode Compiled to WebAssembly May Lack Standard Security DefensesCisco Fixes Hard-Coded Credentials and Default SSH Key IssuesCISA Urges Vendors to Patch BrakTooth Bugs After Exploits ReleaseSamsung Galaxy S21 Hacked on Second Day of Pwn2Own Austin
11/3/2021 November 4, 2021November 4, 2021 ~ The Cyber Beat ~ Leave a comment NSO Group: Israeli Spyware Company Added to U.S. Trade Blacklist…Three OthersTop Cyber Official Reports ‘Decrease’ in Russian Cyberattacks Against U.S. GroupsReport: BlackMatter Ransomware Gang Goes Dark, Again…BlackMatter Ransomware Moves Victims to LockBit After ShutdownPrivate Sector Urged to Review New Government Cyber DirectiveFederal Agencies Ordered to Patch Hundreds of VulnerabilitiesStudent Loans Company Dismissals Highlight Insider RiskAlleged Twitter Hacker ‘PlugWalkJoe’ Charged With Theft of $784k in Crypto via Sim SwapsLabour Party Members’ Data Hit by Cyber IncidentGreek Shipowners Cyber Tricked Over Halloween WeekendCalgary Real Estate Developer Ronmor Holdings (Ronmor Developers) Hit by RansomwareBeware: Free Discord Nitro Phishing Targets Steam GamersMekotio Banking Trojan Resurges with Tweaked Code, Stealthy Campaign‘Tortilla’ Wraps Exchange Servers in ProxyShell AttacksSonos, HP, and Canon Devices Hacked at Pwn2Own Austin 2021
11/2/2021 November 3, 2021November 3, 2021 ~ The Cyber Beat ~ Leave a comment Krebs: The ‘Groove’ Ransomware Gang Was a HoaxSquid Game Crypto Scammers Rips Off Investors for MillionsThird Stimulus Checks Still Available — And Scammers Are on the ProwlRansomware Gangs Target Corporate Financial ActivitiesPhishing Attacks Are Harder to Spot on Your Smartphone: That’s Why Hackers Are Using Them MoreCybersecurity Awareness Must Extend Beyond the “Month”FTC’s Effort to Strengthen Online Privacy Protections Faces HurdlesFacebook Deletes 1 Billion Faceprints in Face Recognition ShutdownChina Says It Applied to Join Digital Free Trade Deal Days After Proposing Law Against Cross-Border Data FlowBowser Pleads Guilty, Ordered to Pay $4.5m to NintendoNational Bank of Pakistan (NBP) System Restored After Cyber AttackViverant Physical Therapy (MI) Data Breach Impacts More Than 6,500 PatientsToledo Lucas County (OH) Public Library Experiencing Targeted Cybersecurity AttackCybercriminals Sell Access to International Shipping, Logistics GiantsHackers Exploiting GitLab Unauthenticated RCE Flaw in the WildAndroid Patches Actively Exploited Zero-Day Kernel BugMITRE Shares List of Most Dangerous Hardware WeaknessesMicrosoft Announces New Endpoint Security Solution for SMBs
11/1/2021 November 2, 2021November 2, 2021 ~ The Cyber Beat ~ Leave a comment Krebs: ‘Trojan Source’ Bug Threatens the Security of All CodeOfficials on Alert for Cyber Threats Ahead of Election DayFacebook Targets Nicaraguan Government for Alleged ‘Troll Farm’ CampaignSignal Now Lets You Report and Block Spam MessagesVenmo to Reimburse Hacking VictimsMicrosoft Defender for Windows Is Getting a Massive OverhaulCyber Attack Preparation Is A Team SportUnderstanding the Human Communications Attack SurfaceYour Passwords Could Be On the Dark Web: How to See What Leaked After a Data BreachThe Demise of White House Market Will Shake Up the Dark WebBlackShadow Hackers Breach Israeli Hosting Firm Cyberserve and Extort CustomersCanadian Province of Newfoundland and Labrador Health Care System Disrupted by CyberattackNonprofit Community Medical Centers (CA) Reports Data BreachRansomware Attack Targets Las Vegas Cancer Center Patients’ Personal InformationSouth Korean Shipbuilder Daewoo Shipbuilding & Marine Engineering (DSME) Confirms New Possible Cyber AttackCyber-Incident at Colleton County School District (SC)FBI: HelloKitty Ransomware Adds DDoS Attacks to Extortion TacticsKaspersky’s Stolen Amazon Ses Token Used in Office 365 PhishingResearchers Uncover ‘Pink’ Botnet Malware That Infected Over 1.6 Million DevicesCritical Flaws Uncovered in Pentaho Business Analytics Software