3/30/2022 March 30, 2022March 30, 2022 ~ The Cyber Beat ~ Leave a comment Russian Hackers Targeted NATO, Eastern European Militaries – GoogleViasat Spills on the Russian Attack, Warns of Continued RisksMSHTML Flaw Exploited to Attack Russian DissidentsLapsus$ And SolarWinds Hackers Both Use the Same Old Trick to Bypass MFATwo-Factor Authentication Is a Great Idea, But Not Nearly Enough People Are Using ItU.S. National Emergency From 2015 Extended by Biden Due to Elevated Malicious Cyber ActivityHouse Sends Bipartisan Cyber Crime Bill to BidenNew Research Claims Biden’s Disclosure Deadlines Are UnrealisticFBI Disrupts BEC Cybercrime Gangs Targeting Victims WorldwideUbiquiti Sues Krebs on Security for DefamationLapsus$ Gang Claims New Hack With Data From Apple Health Partner…Globant Confirms Hack After Lapsus$ Leaks 70gb of Stolen DataBradley Int’l Airport (CT) Website Hit by DDoS Cyber Attack; No Breach Reported13 Apps Removed After Researchers Uncover Trojan Crypto Wallet SchemeHive Ransomware Uses New ‘IPfuscation’ Trick to Hide PayloadThis New Ransomware Targets Data Visualization Tool Jupyter NotebookRCE Bug in Spring Cloud Could Be Next Log4Shell, Researchers Warn: ‘Spring4Shell’QNAP Warns Severe OpenSSL Bug Affects Most of Its NAS Devices
3/29/2022 March 30, 2022March 30, 2022 ~ The Cyber Beat ~ Leave a comment Russia Accuses U.S. of Leading Massive Cyber CampaignPersonal Data of 620 FSB Officers Published OnlineData-Harvesting Code in Yandex Mobile Apps Sends User Data to “Russia’s Google”More Must Reconsider Russian Tech, Anti-virus Software Use, UK WarnsFBI Warns Election Officials of Credential Phishing AttacksCISA Warns of Attacks Targeting Internet-Connected UPS DevicesHackers Are Getting Faster at Exploiting Zero Day Flaws: That’s a Problem for EveryoneKrebs: Hackers Gaining Power of Subpoena Via Fake “Emergency Data Requests”European Police Bust Multimillion-Dollar Investment Fraud GangMnuchin’s Private Equity Firm Buys Security Startup Zimperium for $525MShutterfly Discloses Data Breach After Conti Ransomware Attack$620 Million in Crypto Stolen From Axie Infinity’s Ronin BridgeHive Ransomware Group Claims to Steal California Health Plan Patient DataOklahoma City Indian Clinic Suffers Cyber AttackNew Hacking Campaign by Transparent Tribe Hackers Targeting Indian OfficialsMars Stealer Malware Pushed via OpenOffice Ads on GoogleNew Malware Loader ‘Verblecon’ Infects Hacked PCs with Cryptocurrency MinersWyze Cam Flaw Lets Hackers Remotely Access Your Saved VideosLog4JShell Used to Swarm VMware Servers with Miners, Backdoors
3/28/2022 March 29, 2022March 29, 2022 ~ The Cyber Beat ~ Leave a comment Ukraine War: Major Internet Provider Ukrtelecom Suffers Cyber-AttackUkraine Dismantles 5 Disinformation Bot Farms, Seizes 10,000 SIM CardsHacked WordPress Sites Force Visitors to DDoS Ukrainian TargetsChina APT Group ‘Mustang Panda’ Using Russia Invasion, COVID-19 in Phishing AttacksNew Lapsus$ Hack Documents Make Okta’s Response Look More BizarreSecret World of Pro-Russia Hacking Group TrickBot Exposed in LeakSecurity Experts Say New EU Rules Will Damage WhatsApp EncryptionSatoshi Island: ‘Crypto Paradise’ Where Citizenship Costs $130,000Spokane Regional Health District (WA) Suffers Another Data BreachMaldives STELCO Hit with Ransomware Attack‘Purple Fox’ Hackers Spotted Using New Variant of FatalRAT in Recent Malware AttacksMuhstik Botnet Targeting Redis Servers Using Recently Disclosed VulnerabilitySunCrypt Ransomware Is Still Alive and Kicking In 2022Hackers Hijack Email Reply Chains on Unpatched Exchange Servers to Spread IcedID MalwareCritical SonicWall Firewall Patch Not Released for All DevicesSophos Fixes Critical Hijack Flaw in Firewall OfferingCISA Warns Orgs to Patch Actively Exploited Chrome, Redis Bugs
3/25-27/2022 March 28, 2022March 28, 2022 ~ The Cyber Beat ~ Leave a comment Russia Hacked Ukrainian Satellite Communications, Officials BelieveThe Hard Truth Behind Biden’s Cyber WarningsAnother Chinese Hacking Group ‘Scarab’ Spotted Targeting Ukraine Amid Russia InvasionExperts Seek Cyberwarfare Definition Following Recent Cyber WarningsIndictment of Russian National Offers Glimpse Into Methodical Targeting of Energy FirmFCC Adds Kaspersky to Its List of National Security ThreatsHackerOne Kicks Kaspersky’s Bug Bounty Program off Its PlatformRacoon Stealer Malware Suspends Operations Due to War in Ukraine‘Precursor Malware’ Infection May Be Sign You’re About to Get Ransomware, Says StartupPhishing Kits Constantly Evolve to Evade Security SoftwareKrebs: Estonian Tied to 13 Ransomware Attacks Gets 66 Months in PrisonU.S., EU Reach Preliminary Deal on Data PrivacyOkta: “We Made a Mistake” Delaying the Lapsus$ Hack DisclosureCISA Adds 66 Vulnerabilities to List of Bugs Exploited in AttacksPersonal Data of 820,000 NYC Students Compromised in HackMajor League Baseball Players’ Personal Data StolenMorgan Stanley Client Accounts Breached in Social Engineering AttacksCheyenne Regional Payroll (WY) Impacted by Ransomware AttackAmong Us DDoS Attack Brings Servers Offline All WeekendURL Rendering Trick Enabled WhatsApp, Signal, iMessage PhishingExperts Uncover Campaign Stealing Cryptocurrency from Android and iPhone UsersHive Ransomware Ports Its Linux VMware ESXI Encryptor to RustPublic Redis Exploit Used by Malware Gang to Grow BotnetHonda Bug Lets a Hacker Unlock and Start Your Car via Replay AttackCritical Sophos Firewall Vulnerability Allows Remote Code ExecutionGoogle Issues Urgent Chrome Update to Patch Actively Exploited Zero-Day VulnerabilityWestern Digital Fixes Critical Bug Giving Root on My Cloud NAS Devices
3/24/2022 March 24, 2022March 24, 2022 ~ The Cyber Beat ~ Leave a comment U.S. Charges Russian Gov’t Hackers With Campaign of Global Energy CyberattacksFBI Adds Russian Cybercrime Market Owner to Most Wanted ListChinese APT ‘Operation Dragon Castling’ Targeting Betting Companies in Southeast AsiaTax-Season Scammers Spoof Fintechs, Including Stash, PublicSouth Africa Wants to Fight SIM Swapping With Biometric ChecksOkta Under Fire Over Handling of Security IncidentKrebs: A Closer Look at the LAPSUS$ Data Extortion Group…7 Teenagers Arrested in Connection With Lapsus$ Hacking Group for Nvidia, Okta HacksIT Outage at Scotland’s Heriot-Watt University Enters Second WeekNorth Korean APT Hackers Exploit Chrome Zero-Day Weeks Before PatchJust-Released Dark Souls Game, Elden Ring, Includes Killer BugMalicious Microsoft Excel Add-Ins Used to Deliver Rat MalwareMicrosoft Help Files Disguise Vidar MalwareMicrosoft Azure Developers Awash in PII-Stealing npm PackagesWestern Digital My Cloud OS Update Fixes Critical VulnerabilityPandemic Leaves Firms Scrambling for Cybersecurity Specialists
3/23/2022 March 23, 2022March 23, 2022 ~ The Cyber Beat ~ Leave a comment Hackers Are Targeting European Refugee Charities -Ukrainian OfficialUkrainian Coders Are Splitting Their Time Between Work and Cyber WarfareWest Blocks Russia’s Access to Weather DataChinese ‘Mustang Panda’ Hackers Spotted Deploying New ‘Hodur’ MalwareHackers Steal From Hackers by Pushing Fake Malware on ForumsU.S. and Canada Collaborate to Tackle CybercrimeTen Ransomware Strains Put To the Encryption Speed TestHow Much the Average Conti Hacking Group Member Earns a Month: $1,800Italy’s State Railway May Have Been Target of Cyber AttackMedical Service Doctors Me Leaks 12,000 Sensitive Patient ImagesUMass Memorial Health Care Files Notice of Recent Data BreachRawlins Hospital (WY) Hit With Ransomware Attack Over WeekendNestlé Says It Leaked Its Own Test Data, Not AnonymousDeadBolt Ransomware Resurfaces to Hit QNAP AgainHackers Exploit New WPS Office Flaw to Breach Betting Firms
3/22/2022 March 23, 2022March 23, 2022 ~ The Cyber Beat ~ Leave a comment Kremlin Dismisses U.S. Warning of Potential Russian Cyber Attacks…White House Shares Checklist to Counter Russian CyberattacksMicrosoft Confirms Lapsus$ Hackers Stole Source Code via ‘Limited’ AccessOkta ‘Hack’ Puts Thousands of Businesses on High Alert…Lapsus$ Gang Claims Okta Hack…Okta: Lapsus$ Attackers Had Access to Support Engineer’s LaptopThe Metaverse May Bring New Cyber Risks: Here’s What Companies Can DoSurveillance Risks Shape How Central Banks Test Digital CurrenciesKrebs: ‘Spam Nation’ Villain Vrublevsky Charged With FraudGreece’s Public Postal Service Offline Due to Ransomware AttackRussian Meat Producer Miratorg Agribusiness Holding Hit by BitLockerScottish Association for Mental Health Disrupted by ‘Sophisticated’ Cyber-AttackBexar County Appraisal District (TX) Hit With Ransomware Attack Shutting Down EmailCustom macOS Malware of Chinese Hackers ‘Storm Cloud’ ExposedNew Dell BIOS Bugs Affect Millions of Inspiron, Vostro, XPS, Alienware SystemsHundreds of HP Printer Models Vulnerable to Remote Code ExecutionTech Leaders Must Raise Awareness And Build Trust To Close The Cybersecurity Gap
3/21/2022 March 21, 2022March 21, 2022 ~ The Cyber Beat ~ Leave a comment Russia Is Exploring Options for Cyberattacks and Companies Must Be Ready, Says BidenAfter ‘Protestware’ Attacks, a Russian Bank Has Advised Clients to Stop Updating Software…Code-Sabotage Incident in Protest of Ukraine War Exposed Open Source RisksConti Ransomware V. 3, Including Decryptor, LeakedMicrosoft Investigating Claims of Hacked Source Code Repositories…Microsoft Investigating Potential LAPSUS$ Hack After Sensitive Screenshot LeakApple Services Including Maps, App Store and iCloud Go Down for 4+ Hours in Major Global OutageJDC Healthcare Management LLC (TX) Data Breach May Impact 1 MillionOver 40,000 London Voters Have Data Leaked to StrangersHubSpot Hack Leads to Data Breaches at BlockFi, Swan Bitcoin, NYDIG and CircleFacestealer Trojan Hidden in Google Play Plunders Facebook AccountsBitRAT Malware Now Spreading as a Windows 10 License ActivatorSerpent Malware Campaign Abuses Chocolatey Windows Package ManagerWindows Zero-Day Flaw Giving Admin Rights Gets Unofficial Patch, Again
3/18-20/2022 March 20, 2022March 20, 2022 ~ The Cyber Beat ~ Leave a comment Google: Chinese State Hackers Target Ukraine’s GovernmentLeaked Ransomware Docs Show Conti Helping Putin From the ShadowsRussian Hackers Allegedly Compromise Ukrainian News Sites, Displaying ‘Z’ SymbolSandworm APT Hunts for ASUS Routers With Cyclops Blink BotnetKrebs: Pro-Ukraine ‘Protestware’ Pushes Antiwar Ads, Geo-Targeted MalwareNew Phishing Toolkit Lets Anyone Create Fake Chrome Browser WindowsFree Decryptor Released for TrickBot Gang’s Diavol RansomwareClandestine Finance System Helped Iran Withstand Sanctions Crush, Documents ShowCybersecurity Stocks Could See Huge Growth as Russia-Ukraine War Spurs More CyberattacksDarkHotel APT Targets Wynn, Macao Hotels to Rip Off Guest DataBlockFi Confirms Unauthorized Access to Client Data Hosted on HubspotWheeling Health (WV) Right Victim of a CyberattackBitcoin Miners Breached Land Information NZ Cloud ServiceA Security Lapse Exposed India’s CISF Personnel Files and Health RecordsHackers Claim to Breach TransUnion South Africa With ‘Password’ PasswordNRA Confirms Last Year’s Ransomware AttackFBI: AvosLocker Ransomware Targets U.S. Critical InfrastructureWestern Digital App Bug Gives Elevated Privileges in Windows, macOS
3/17/2022 March 18, 2022March 18, 2022 ~ The Cyber Beat ~ Leave a comment Russia Gets Triggered by Ukraine Joining NATO Cyberdefense HubRussian Ministry Says It’s ‘Recording Unprecedented Attacks’ on Government WebsitesRussian Pipeline Company Transneft Hit by Data Leak Dedicated to Hillary ClintonDev Sabotages Popular NPM Package to Protest Russian InvasionCrypto an Unlikely Route for Russian Sanctions Evasion, Experts SayEurope Warns of Aircraft GPS Outages Tied to Russian InvasionHow CAPTCHAs Can Cloak Phishing URLs in EmailsA Big Bet to Kill the Password for GoodGoogle Exposes Tactics of a Conti Ransomware Access BrokerCISA, FBI Warn U.S. Critical Orgs of Threats to SATCOM NetworksMisconfigured Firebase Databases Exposing Data in Mobile AppsSchuylkill (PA) Counters Data Breach; Begins to Notify PeopleNew Unix Rootkit Used to Steal ATM Banking DataUnsecured Microsoft SQL, MySQL Servers Hit by Gh0stCringe MalwareASUS Warns of Cyclops Blink Malware Attacks Targeting RoutersDirtyMoe Botnet Gains New Exploits in Wormable Module to Spread RapidlyTrickBot Malware Abusing MikroTik Routers as Proxies for Command-and-Control
3/16/2022 March 16, 2022March 16, 2022 ~ The Cyber Beat ~ Leave a comment Zelenskyy Invokes 9/11 in Pressing Congress for HelpU.S. Has ‘Significant’ Cyber Vulnerabilities, but a Sweeping Russian Cyberattack Is UnlikelyAnonymous Declared a ‘Cyber War’ Against Russia. Here Are the ResultsBad Deepfake of Zelenskyy Shared on Ukraine News Site in Reported HackThe Workaday Life of the World’s Most Dangerous Ransomware GangMicrosoft Defender Tags Office Updates as Ransomware ActivityResearcher Uses 379-Year-Old Algorithm to Crack Crypto Keys Found in the WildEmotet Malware Campaign Impersonates the IRS for 2022 Tax SeasonU.S. Bars Ex-spies From Becoming ‘Mercenaries’Krebs: Lawmakers Probe Early Release of Top RU CybercrookHundreds of GoDaddy-Hosted Sites Backdoored in a Single DayEast Tennessee Children’s Hospital Responding to Cyber IncidentPhony Instagram ‘Support Staff’ Emails Hit Insurance CompanySolarWinds Warns of Attacks Targeting Web Help Desk Instances‘CryptoRom’ Crypto-Scam is Back via Side-Loaded AppsLokiLocker Ransomware Family Includes Wiper FunctionOpenSSL Cert Parsing Bug Causes Infinite Denial of Service LoopCISA Adds 15 Vulnerabilities to List of Flaws Exploited in AttacksAustralia’s Big Four Banks Tackling Cybersecurity With a Team Sport MentalityIrish Watchdog Fines Meta $19m Over Data Breach
3/15/2022 March 15, 2022March 15, 2022 ~ The Cyber Beat ~ Leave a comment Germany Warns Against Russian Anti-virus UseRussia Faces IT Crisis With Just Two Months of Data Storage LeftA Phone Relay Capture May Be the Latest of Russia’s Comms Woes in UkraineSatellite Outage Caused ‘Huge Loss in Communications’ at War’s Outset: Ukrainian OfficialCyberattacks Rising as Hackers Use Russia-Ukraine War as a Distraction: CrowdStrike CEOHackerOne Apologizes to Ukrainian Hackers for Mistakenly Blocking PayoutsThe Lapsus$ Hacking Group Is Off to a Chaotic StartStaff Think Conti Group Is a Legit EmployerNearly 34 Ransomware Variants Observed in Hundreds of Cyberattacks in Q4 2021UK Blocks Assange’s Extradition AppealMassive Phishing Campaign Uses 500+ Domains to Steal CredentialsLabette Health (KS), Capital Region Medical Center (MO) Confirm Data BreachesNuna Baby Essentials Data BreachAndroid Trojan Persists on the Google Play Store Since JanuaryMobile App Developers Leave Behind 2,100 Open DatabasesFBI Warns of MFA Flaw Used by State Hackers for Lateral MovementNew Linux Botnet Exploits Log4J, Uses DNS Tunneling for CommsIntel’s AMD Bug Find Proves That Spectre Is Still Looming Over UsOpenSSL Patches Crash-Me Bug Triggered by Rogue CertsCyber Firm SentinelOne to Buy Attivo Networks for $616.5 MillionFTC to Fine CafePress for Cover up of Massive Data Breach
3/14/2022 March 14, 2022March 14, 2022 ~ The Cyber Beat ~ Leave a comment Intel Chair ‘Amazed’ Russia Hasn’t Launched Full-Scale CyberwarfareBipartisan Group of Senators Press Mayorkas on U.S. Readiness for Russian CyberthreatU.S., EU Cyber Investments in Ukraine Pay Off Amid WarRussian Ransomware Gang Retool Custom Hacking Tools of Other APT GroupsResearchers Find New Destructive Wiper Malware ‘CaddyWiper’ in UkraineFake Antivirus Updates Used to Deploy Cobalt Strike in UkraineCybercrooks’ Political In-Fighting Threatens the WestUkraine War Has Insurers Worried About Cyber PoliciesChina Thrilled It Captured Already-Leaked NSA Cyber-Weapon NOPENIsrael Says Its Government Websites Were Hit by Cyber AttackPersonal Info From 287K Patients Compromised in Hack of South Denver CardiologyLake Shore Savings Bank (NY) Reports Data BreachTrinity Home Care (MA) Reports Hack Exposed Patient RecordsCity of Amarillo (TX) Prevents Attempted Data Breach, Email Down Until Further NoticeQNAP Warns Severe Linux Bug Affects Most of Its NAS Devices2021 Mobile Security: Android More Vulnerabilities, iOS More Zero-DaysCanada Cops Arrests Teen Cyber-Attack Suspect
3/11-13/2022 March 13, 2022March 14, 2022 ~ The Cyber Beat ~ Leave a comment Russian Prosecutors Warn Western Companies of Arrests, Asset SeizuresVPN Use in Russia Is Surging as Citizens Try to Bypass Government’s Tightening Internet ControlRussia Issues Its Own TLS CertsRussia Wants to Label Meta an ‘Extremist Organization’WHO, U.S. Worry Ukrainian Biological Lab Samples Could Spill, Go to RussiansReport: Recent 10x Increase in Cyberattacks on Ukraine (Krebs)Russian Defense Firm Rostec Shuts Down Website After DDoS AttackAnonymous Claims to Have Leaked Over 360,000 Files From Russian Federal AgencyDuckDuckGo Down-Ranks Sites Spreading Russian PropagandaGoogle-Facebook Ad Deal Is Investigated by EU, UKSpending Bill Includes Large Funding Increase to Boost CybersecurityVPN Provider Bans BitTorrent After Getting Sued by Film StudiosUbisoft Says It Experienced a ‘Cyber Security Incident’, Purported Nvidia Hackers Take CreditWightlink Customers’ Details Stolen in Cyber AttackRosneft’s German Unit Reports Cyber AttackJapan’s Denso Hit by Apparent Ransomware AttackBridgestone Americas Confirms Ransomware Attack, LockBit Leaks DataNew ONE PIECE Anime Episodes Delayed After Toei CyberattackFake Valorant Cheats on YouTube Infect You With RedLine StealerRaccoon Stealer Crawls Into TelegramAndroid Malware Escobar Steals Your Google Authenticator MFA CodesSingapore Uncovers Four Critical Vulnerabilities in Riverbed SoftwareMultiple Security Flaws Discovered in Popular Software Package ManagersHow to Combat the No. 1 Cause of Security Breaches: Complexity
3/10/2022 March 11, 2022March 11, 2022 ~ The Cyber Beat ~ Leave a comment Malware Posing as Russia DDoS Tool Bites Pro-Ukraine HackersIranian Hackers Targeting Turkey and Arabian Peninsula in New Malware CampaignMost Orgs Would Take Security Bugs Over Ethical Hacking HelpOver 40% of Log4j Downloads Are Vulnerable Versions of the SoftwareEx-Canadian Government Official Extradited to Face Charges Over ‘NetWalker’ Ransomware AttacksColorado Elections Clerk Charged with Identity TheftVodafone Investigating Threat From Hackers Behind Samsung Breach to Leak Source CodeMontrose Regional Health (CO) Email Breach Exposed 52,632 Patients’ Protected InformationCorporate Website Contact Forms Used to Spread BazarBackdoor MalwareQakbot Botnet Sprouts Fangs, Injects Malware into Email ThreadsCISA Updates Conti Ransomware Alert With Nearly 100 Domain NamesWhatsApp Emits Extension to Detect Tampering With Desktop Web Apps
3/9/2022 March 10, 2022March 10, 2022 ~ The Cyber Beat ~ Leave a comment The Secret U.S. Mission to Bolster Ukraine’s Cyber Defenses Ahead of Russia’s InvasionRussian APTs Furiously Phish Ukraine – GoogleRussian Government Sites Hacked in Supply Chain AttackKrebs: Internet Backbone Giant Lumen Shuns .RUU.S. Treasury: Russia May Bypass Sanctions Using Ransomware PaymentsSEC to Vote on New Cybersecurity Disclosure Rules as Ukraine Crisis Gives Them ‘Special Relevance’Ukrainian Man Charged in Major Ransomware Spree Extradited to U.S. – Justice DeptClearview AI Fined €20M for Collecting Italians’ Biometric DataChinese Phishing Actors Consistently Targeting EU DiplomatsMost ServiceNow Instances Misconfigured, ExposedNorwood Clinic (AL) and Central Indiana Orthopedics Incidents Affect 310K PatientsHackers Fork Open-Source Reverse Tunneling Tool for PersistenceCritical RCE Bugs Found in Pascom Cloud Phone System Used by BusinessesIntel, AMD, Arm Warn of New Speculative Execution CPU BugsNearly 30% Of Critical WordPress Plugin Bugs Don’t Get a PatchKrebs: Microsoft Patch Tuesday, March 2022 EditionDell Opts Out of Microsoft’s Pluton Security for Windows
3/8/2022 March 9, 2022March 9, 2022 ~ The Cyber Beat ~ Leave a comment Mandiant: China-Backed Hackers APT41 Breached Government Networks in at Least Six U.S. StatesGoogle: Chinese Hackers APT31 Target Gmail Users Affiliated With U.S. Gov’tAngry Putin Set to ‘Double Down’ in Ukraine, Intel Chiefs Warn LawmakersUkraine and U.S. Targeted by Cybersecurity Attacks in Run-up to Russian InvasionBelarus Targeted Ukraine, Poland in Phishing Campaigns: GoogleProtonMail Urges Russian Users to Renew as Payment Options Dry UpCloudflare to Auto-Brick Servers That Go Offline in Ukraine, RussiaWar Is Calling Crypto’s ‘Neutrality’ Into QuestionGig App Gathering Data for U.S. Military, Others Prompts Safety ConcernsKrebs: Conti Ransomware Group Diaries, Part IV: CryptocrimePrison for Man Who Scammed U.S. Government to Buy Rare Charizard Pokémon CardE-Commerce Giant Mercado Libre Confirms Source Code Data BreachEmotet Growing Slowly but Steadily Since November ResurgenceDDoS Attacks Now Use New Record-Breaking Amplification VectorZero-Click Flaws in Widely Used UPS Devices Threaten Critical InfrastructureAccess:7 Vulnerabilities Impact Medical and IoT DevicesNew 16 High-Severity UEFI Firmware Flaws Discovered in Millions of HP DevicesMicrosoft Addresses 3 Zero-Days & 3 Critical Bugs for March Patch TuesdayAndroid’s March 2022 Security Updates Fix Three Critical BugsGoogle to Buy Cybersecurity Firm Mandiant in $5.4 Billion Deal…Google’s Mandiant Deal Aims to Automate More Cybersecurity Services
3/7/2022 March 7, 2022March 8, 2022 ~ The Cyber Beat ~ Leave a comment U.S., Spain Join Forces in Cyberwarfare Amid Russia-Ukraine WarUN Mulls Russia’s Pitch for Cybercrime TreatyMusk Warns Starlink Could Attract Russian BombsAnonymous Claims It Hacked Into Russian TVs and Showed the True Devastation of Putin’s Ukraine InvasionWhat Russia’s Ongoing Cyberattacks in Ukraine Suggest About the Future of Cyber WarfareUkrainian CERT Warns Citizens of Phishing Attacks Using Compromised AccountsFBI Warns of Online Scammers Impersonating Government Officials, Law EnforcementFBI: Ransomware Gang Breached 52 U.S. Critical Infrastructure OrgsCoinbase Blocks Over 25,000 Russian-Linked Crypto AddressesPiracy OK: Russia to Ease Software Licensing Rules After SanctionsSamsung Confirms Lapsus$ Hackers Stole Galaxy Source CodePressReader Suffers Cyber-AttackRompetrol Gas Station Network Hit by Hive RansomwareHilliard City Schools (OH) Acknowledges Data Breach of Student InformationCritical Bugs in TerraMaster TOS Could Open NAS Devices to Remote HackingNew Linux Bug Gives Root on All Major Distros, Exploit ReleasedMicrosoft Fixes Critical Azure Bug That Exposed Customer DataHow Police Abuse Phone Data to Persecute LGBTQ PeopleDozens of COVID Passport Apps Put User’s Privacy at Risk
3/4-6/2022 March 6, 2022March 6, 2022 ~ The Cyber Beat ~ Leave a comment Ukrainian Websites Under ‘Nonstop’ Attack – Cyber Watchdog AgencyUkraine to Join NATO Intel-Sharing Cyberdefense HubHow the West Unplugged Russia From the World’s Financial SystemsSecurity News This Week: A Major Internet Backbone Company Cuts Off RussiaTech Companies Seek to Choke Out Russian State MediaRussia Says It’s Blocking Facebook in Alarming New Censorship PushRussia Weighs Risks of Launching Cyberattacks Against the WestAmazon: Charities, Aid Orgs in Ukraine Attacked With MalwareRussia Shares List of 17,000 IPs Allegedly DDoSing Russian OrgsKrebs: Conti Ransomware Group Diaries, Part III: WeaponryExperts Urge EU Not to Force Insecure Certificates in Web BrowsersWhite House Sides With Congress Over Contentious Cyber BillCISA Pledges to Share Incident Reports With FBI After DOJ Backlash to Bipartisan Cybersecurity ActCyber-Criminals Exploit Invasion of UkraineAdafruit Discloses Data Leak From Ex-employee’s Github RepoHackers Leak 190GB of Alleged Samsung Data, Source CodeAuthorities Investigate Ransomware Attack in Fleetwood Area School District (PA)Duncan Regional Hospital (OK) Patient Information Exposed in Data Security IncidentAscension Michigan Data Breach May Have Exposed Some Patients’ Social Security NumbersT-Mobile Data Breach Victims at Risk For Identity TheftSharkBot Malware Hides as Android Antivirus in Google PlayMassive Meris Botnet Embeds Ransomware Notes from REvilMalware Now Using NVIDIA’s Stolen Code Signing CertificatesSocial Media Phishing Attacks Are at an All Time HighNew Linux Kernel cgroups Vulnerability Could Let Attackers Escape ContainerMozilla Firefox 97.0.2 Fixes Two Actively Exploited Zero-Day Bugs
3/3/2022 March 3, 2022March 3, 2022 ~ The Cyber Beat ~ Leave a comment Ukrainian Cities Hit With Blackouts After Attacks on Energy InfrastructureUkraine Says Local Gov’t Sites Hacked to Push Fake Capitulation NewsFree Decryptor Released for Hermeticransom Victims in UkraineWhy Russia Hasn’t Launched Major Cyber Attacks Since the Invasion of UkraineAnonymous-Linked Group Hacks Russian Space Research Site, Claims to Leak Mission FilesRussia Denies Satellite Hacking and Warns of Wider WarRussia Leaks Data From a Thousand Cuts–PodcastUkraine Cyber Group to Strike at Russia’s Critical InfrastructureSwitzerland’s SWIFT Data Centre Under Guard After Russian Banks ExcludedSpyware From Israeli NSO GroupDOJ Officials Criticize Senate-Passed Cyber BillNVIDIA Data Breach Exposed Credentials of Over 71,000 EmployeesCyberattack Strikes Bridgestone Plants in Tennessee — And All of North and South AmericaMonongalia Health (WV) Suffers Second Healthcare Data BreachMichigan Medicine Data Breach May Have Exposed Some Patients’ Health InformationData Breach May Have Exposed Personal Information of Oklahomans on Disability Aid List‘Vuxner’ Malware Campaign Impersonates VC Firm Looking to Buy SitesAmazon Alexa Can Be Hijacked via Commands From Own SpeakerResearchers Demonstrate New Side-Channel Attack on Homomorphic EncryptionCritical Patches Issued for Cisco Expressway Series, TelePresence VCS ProductsHacktivists, Cybercriminals Switch to Telegram After Russian Invasion
3/2/2022 March 3, 2022March 3, 2022 ~ The Cyber Beat ~ Leave a comment Russia Steps up Attacks on Key Ukrainian Cities, Biden Warns Putin Will Pay a ‘High Price’…Russia Confirms Casualties in Ukraine Ahead of the Next Round of Talks…Russian Space Agency Says Hacking Satellites Is an Act of War…Ukraine’s Tech Workers Log Off, Take Shelter…Apple and Google Turn Off Map Features to Help Ukraine…Phishing Attacks Target Countries Aiding Ukrainian Refugees…Ukrainian Sites Saw a 10x Increase in Attacks When Invasion Started…Senate Passes Cybersecurity Bill Amid Fears of Russian Cyberattacks…Details of ‘120,000 Russian Soldiers’ Leaked by Ukraine…Swiss Bank Requests Destruction of DocumentsData Breach at OK Department of Human Services May Have Leaked Personal InformationHackers Begin Weaponizing TCP Middlebox Reflection for Amplified DDoS AttacksOver 100,000 Medical Infusion Pumps Vulnerable to Years Old Critical BugLog4shell Exploits Now Used Mostly for DDoS Botnets, CryptominersAttacks Abusing Programming Apis Grew Over 600% In 2021Companies’ Code Leaking More Passwords and SecretsAMD, Intel, TSMC, Microsoft and Others Establish Universal Chiplet StandardAs War Escalates in Europe, It’s ‘Shields up’ for the Cybersecurity IndustryEU, U.S. Close to Replacing Defunct Privacy Shield IIKrebs: Conti Ransomware Group Diaries, Part II: The Office
3/1/2022 March 1, 2022March 1, 2022 ~ The Cyber Beat ~ Leave a comment Ukraine Asked the Internet’s Governing Body to Remove Russian SitesHow Ukraine’s Internet Can Fend Off Russian AttacksUkraine Conflict Shows Wartime Norms Don’t Exist for Cyber OperationsKrebs: Conti Ransomware Group Diaries, Part I: EvasionMicrosoft Accounts Targeted by Russian-Themed Credential HarvestingRussia-Ukraine Crisis: How to Avoid Fundraising ScamsEugene Kaspersky’s Statement Provokes Controversy Within Cybersecurity IndustryReality Winner’s Twitter Account Was Hacked to Target JournalistsThis Is What Happens When Two Ransomware Gangs Hack the Same Target – At the Same TimeRansomware Attackers Begin to Eye Midmarket Acquisition TargetsViasat Attributes Outage to “Cyber Event”Second New ‘IsaacWiper’ Data Wiper Targets Ukraine After Russian InvasionNVIDIA Confirms Data Was Stolen in Recent CyberattackLogan Health (MT) Reports Data BreachTeaBot Malware Slips Back Into Google Play Store to Target U.S. UsersHundreds of eBike Phishing Sites Abuse Google Ads to Push ScamsContent Filtering Devices Abused for 65x DDoS AmplificationRCE Bugs in WhatsApp, Other Hugely Popular VoIP Apps: Patch Now!Microsoft Rolling Out New Endpoint Security Solution for SMBsCybersecurity Experts: Everyone Should Be Taking Precautions
2/28/2022 March 1, 2022March 1, 2022 ~ The Cyber Beat ~ Leave a comment Putin Puts Nuclear Deterrent Forces on ‘High Alert’ Amid Spiraling Tensions Over Ukraine…‘Unhinged’…Peace Talks Ended Between Russia and Ukraine, No Breakthrough as Shelling Continues…Switzerland Joins EU Sanctions on Russia, Breaking Neutral Posture…Liquidity Vanishes Across Russia Assets With Ruble Plunging…Microsoft Finds FoxBlade Malware on Ukrainian Systems, Removes RT From Windows App StoreMeta: Ukrainian Officials, Military Targeted by GhostWriter Hackers…Facebook Cracks Down on Disinformation, Hacked Accounts in Ukraine…Twitter Labeling Links to Russian State Media…Namecheap Terminates Services for Russians, Asks Them to Move Domains…Ukraine-Russia Cyber Warzone Splits Cyber Underground…Moscow Exchange Downed by Cyber-Attack…Russian TV Stations Hacked…Conti Ransomware Gang Sided With Putin and Had Its Chat Logs Leaked Soon AfterwardToyota Suspends Production in Japan Following Possible CyberattackInsurance Giant AON Hit by a Cyberattack Over the WeekendHackers to NVIDIA: Remove Mining Cap or We Leak Hardware DataAxis Communications Shares Details on Disruptive CyberattackCalifornia Bar Says ‘Hack’ Exposed 1,000s of Attorney Discipline CasesNew York State Ethics Commission Hit by Cyber AttackIsle of Man Kettle-Parts Firm Strix Group Hit by Cyber AttackWorkers Say Des Moines Bridgestone Americas Plant Part of Cyber Attack InvestigationChinese Cyberspies Target Gov’ts With Their ‘Most Advanced’ Backdoor ‘Daxin’CISA Warns of High-Severity Flaws in Schneider and GE Digital’s SCADA Software…CISA and FBI Warn of Potential Data Wiping Attacks Spillover From Ukrainian TargetsCybersecurity Stocks Rally as Investors Focus on Attack RiskU.S. Indicts BitConnect Founder For $2.4 Billion Ponzi Scheme