4/28/2022 April 28, 2022April 28, 2022 ~ The Cyber Beat ~ Leave a comment Ukraine Targeted by DDoS Attacks From Compromised WordPress SitesRussia Sanctions Seriously Complicate Paying Ransomware HackersExperts Detail 3 Hacking Teams Working Under the Umbrella of TA410 GroupBeware: Onyx Ransomware Destroys Files Instead of Encrypting ThemEmoCheck Now Detects New 64-Bit Versions of Emotet MalwareHollywood’s Fight Against VPNs Turns UglyEuropol: Deepfakes Set to Be Used Extensively in Organized CrimeTwitter’s New Owner Elon Musk Wants DMs to be End-to-End Encrypted like SignalAustin Peay State University Resumes After Ransomware Cyber AttackCyber Attack At Worcester Hospital (MA) Delays Emergency Room ServicesMassy Stores Crippled by Cyber AttackCloudflare Stomps Huge DDoS Attack on Crypto PlatformCybercriminals Using New Malware Loader ‘Bumblebee’ in the WildNPM Flaw Let Attackers Add Anyone as Maintainer to Malicious PackagesSynology Warns of Critical Netatalk Bugs in Multiple ProductsMicrosoft Fixes ExtraReplica Azure Bugs That Exposed User Databases
4/27/2022 April 27, 2022April 28, 2022 ~ The Cyber Beat ~ Leave a comment Microsoft Uncovers Extensive Russian Cyber Operations in UkraineChinese Hackers APT Bronze President Targeting Russian Military with Updated PlugX MalwareRussia Is Being Hacked at an Unprecedented ScaleChinese Drone-Maker DJI Suspends Ops in Russia, Ukraine1Password Syncing Went Down for a Few Hours Today During a Database UpgradeHow Industry Leaders Should Approach Open Source SecurityCyber Skills Gap Linked to BreachesNorth Koreans Are Jailbreaking Phones to Access Forbidden MediaGoogle May Now Remove Search Results That Dox YouKrebs: Fighting Fake EDRs With ‘Credit Ratings’ for PoliceUber Ordered to Produce Records About 2016 Hack and Cover-UpSmile Brands Breach from 2021 Impacts 2.5 Million IndividualsColumbus Housing Authority (OH) Suffers Data Breach; Client Personal Info Possibly StolenBattelle for Kids Exposes Student Info Across OhioRussian Gov’t Impersonators Target Telcos in Phishing AttacksGitHub: How Stolen OAuth Tokens Helped Breach Dozens of OrgsNew Black Basta Ransomware Springs Into Action With a Dozen BreachesRIG Exploit Kit Drops Redline Malware via Internet Explorer BugQNAP Warns Users to Disable Afp Until It Fixes Critical BugsNew Nimbuspwn Linux Vulnerability Gives Hackers Root PrivilegesMillions of Java Apps Remain Vulnerable to Log4Shell
4/26/2022 April 26, 2022April 27, 2022 ~ The Cyber Beat ~ Leave a comment U.S. Offers $10 Million Reward for Information on Russian ‘Sandworm’ Intelligence Officers -State DeptCoca-Cola Probes Pro-Kremlin Gang’s Claims of 161GB Data TheftData Breach Disrupts UK Army RecruitmentFirms Push for CVE-Like Cloud Bug SystemInside a Ransomware Incident: How a Single Mistake Left a Door Open for AttackersFive Things to Watch on Musk’s Twitter DealWill Elon Musk’s Twitter Takeover Have Cybersecurity Implications?EU Warns Elon Musk Over Twitter Moderation PlansGoogle Play Store Now Forces Apps to Disclose What Data Is CollectedTenable Acquires External Attack Surface Management Vendor for $44.5MAmerican Dental Association Hit by New Black Basta RansomwareTenet Health Investigating Cybersecurity Incident, IT OutageYuma Regional Medical Center (AZ) Faces Potential Cyber AttackGurnee-Based Doctor’s Group (IL) Reports Data Breach of Patients’ Personal, Financial DataBallad Health Discovers Breach of Employee Email AccountEmotet Testing New Delivery Ideas After Microsoft Disables VBA Macros by DefaultWho Is Exploiting VMware Right Now? Probably Iran’s Rocket Kitten, to Name OneCISA Adds 7 Vulnerabilities to List of Bugs Exploited in AttacksPublic Interest in Log4Shell Fades but Attack Surface Remains
4/25/2022 April 25, 2022April 25, 2022 ~ The Cyber Beat ~ Leave a comment U.S. Wants Russia ‘Weakened’ So It Can Never Invade Again…Russia Bombs Five Railway Stations in Central and Western Ukraine…European Wind-Energy Sector Hit in Wave of Russian Hacks…Ukraine Invasion Driving DDoS Attacks to All-Time HighsNorth Korean APT37 Hackers Targeting Journalists With Novel MalwareHow Failing to Prioritize Cybersecurity Can Hurt Your CompanyThe US Saw a Spike in Child Sexual Abuse URLs in 2021…CSAM Creator Imprisoned for LifeTwitter Accepts Elon Musk’s Offer to Buy Company in $44 Billion DealFrench Hospital Group Disconnects Internet After Hackers Steal DataThief Steals $1 Million of Bored Ape Yacht Club NFTS With Instagram HackAdaptive Health Integrations (ND) Hit by Cyber Attack, More Than 500K AffectedQuantum Ransomware Seen Deployed in Rapid Network AttacksEmotet Malware Infects Users Again After Fixing Broken InstallerNew Powerful Prynt Stealer Malware Sells for Just $100 per MonthCritical Bug in Everscale Wallet Could’ve Let Attackers Steal CryptocurrenciesResearchers Report Critical RCE Vulnerability in Google’s VirusTotal Platform
4/22-24/2022 April 25, 2022April 25, 2022 ~ The Cyber Beat ~ Leave a comment Ukraine’s Postal Service Hit by Cyberattack After Sales of Warship Stamp Go OnlineThey’ve Leaked Terabytes of Russian Emails, but Who’s Reading?Costa Rica’s Alvarado Says CyberAttacks Seek to Destabilize Country as the Government TransitionsRussian Hackers Are Seeking Alternative Money-Laundering OptionsA $3 Billion Silk Road Seizure Will Erase Ross Ulbricht’s DebtBeanstalk Founders Dismissed Concerns About Governance Attacks Before Losing $182 MillionWawa Sues Mastercard Over Data Breach PenaltiesDOJ Probes Google’s $5.4B Mandiant AcquisitionKrebs: Leaked Chats Show LAPSUS$ Stole T-Mobile Source Code…T-Mobile ConfirmsRio de Janeiro Finance Department Hit With LockBit RansomwareAtlassian Drops Patches for Critical Jira Authentication Bypass VulnerabilityWindows 10 KB5012636 Cumulative Update Fixes Freezing Issues‘Hack DHS’ Bug Hunters Find 122 Security Flaws in DHS SystemsU.S. Gov’t Grants Academics $12M to Develop Cyberattack Defense Tools
4/21/2022 April 21, 2022April 21, 2022 ~ The Cyber Beat ~ Leave a comment U.S. Treasury Sanctions Russian Cryptocurrency Mining CompaniesBinance Tells Russian Users With Over €10K to Withdraw EverythingEnergy Department Invests $12 Million in Cyber TechnologyHouse Introduces Cyber Bill Intended to Safeguard Energy SectorsFBI: BlackCat Ransomware Breached at Least 60 Entities Worldwide…FBI Seeks Info on BlackCatCyber Chiefs Try New Tricks to Attract TalentHackers Sneak ‘More_Eggs’ Malware Into Resumes Sent to Corporate Hiring ManagersYouTube Terminates Account for Hong Kong’s Presumed Next Head of GovernmentGitHub Restores Popular Python Repo Hit by Bogus DMCA TakedownHackers Earn $400K for Zero-Day ICS Exploits Demoed at Pwn2OwnCyber-Attackers Hit Sunwing AirlinesNatural Whole Grain Foods Company Bob’s Red Mill Reports Data BreachInternational Data Corporation Confirms Recent Data BreachCoventry Public Schools (CT) Student Data Breached Within Illuminate Education ProductLincoln College Was Already Struggling: Then Came Ransomware in DecemberDocker Servers Hacked in Ongoing Cryptomining Malware CampaignCritical Chipset Bugs Open Millions of Android Devices to Remote SpyingUnpatched Bug in RainLoop Webmail Could Give Hackers Access to all EmailsCisco Umbrella Default SSH Key Allows Theft of Admin CredentialsQNAP Asks Users to Mitigate Critical Apache HTTP Server Bugs3 Ways We Can Improve Cybersecurity
4/20/2022 April 20, 2022April 20, 2022 ~ The Cyber Beat ~ Leave a comment Federal Agencies, International Partners Issue Warning on Russian Cyber ThreatsRussian-Linked Shuckworm Crew Ramps up Ukraine AttacksHow Russia Is Isolating Its Own CybercriminalsUN Panel Coordinator Urges Stepped up Focus on North Korea Cyber CrimeFBI Warns of Ransomware Attacks Targeting U.S. Agriculture SectorMost Email Security Approaches Fail to Block Common ThreatsGoogle Project Zero Detects a Record Number of Zero-Day Exploits in 2021CISA Expands Its Cyber Defense Division to Include Control Systems ExpertiseIsraeli Charged in Global Hacker-For-Hire Scheme Pleads GuiltyIsraeli Sites Under Cyber Attack by Iraqi Hacker Group ‘Altahrea Team’REvil’s TOR Sites Come Alive to Redirect to New Ransomware OperationPuerto Rico Toll Collection System Hit by CyberattackNJ Law Firm McCarter & English Experiences Data BreachOkta Ends Lapsus$ Hack Investigation, Says Breach Lasted Just 25 MinutesMicrosoft Exchange Servers Hacked to Deploy Hive RansomwareResearchers Detail Bug That Could Paralyze Snort Intrusion Detection SystemAWS’s Log4j Patches Blew Holes in Its Own SecurityMicrosoft Defender Flags Google Chrome Updates as Suspicious
4/19/2022 April 19, 2022April 19, 2022 ~ The Cyber Beat ~ Leave a comment Rethinking Cyber-Defense Strategies in the Public-Cloud AgeLinkedIn Becomes the Most Impersonated Brand for Phishing AttacksReal-Time Voice Concealment Algorithm Blocks Microphone SpyingSecret Service Seizes More Than $102 Million in Crypto AssetsThe Fake Federal Agents Case Baffling US Intelligence ExpertsMicrosoft Disables SMB1 by Default for Windows 11 Home InsidersFunky Pigeon Suspends Orders Following Cyber-AttackGitHub Notifies Victims Whose Private Data Was Accessed Using OAuth TokensEmotet Botnet Switches to 64-Bit Modules, Increases ActivityNew Stealthy BotenaGo Malware Variant Targets DVR DevicesNew Lenovo UEFI Firmware Vulnerabilities Affect Millions of LaptopsQNAP Urges Customers to Disable UPnP Port Forwarding on RoutersCISA Warns of Attackers Now Exploiting Windows Print Spooler Bug
4/18/2022 April 18, 2022April 18, 2022 ~ The Cyber Beat ~ Leave a comment No 10 Network Targeted With NSO’s Pegasus Spyware, Says Group…Spyware Use on Separatists in Spain “Extensive”…Newly Found Zero-Click iPhone Exploit Used in Multiple Newly Disclosed NSO Spyware AttacksU.S. Officials Ramp up Warnings About Russian CyberattacksNATO Simulated Cyber Game Tests Defenses Amid War in UkraineKrebs: Conti’s Ransomware Toll on the Healthcare IndustryFree Decryptor Released for Yanluowang Ransomware VictimsRansomware Is Getting “User Friendly” To VictimsSecurity-as-Code Gains More Support, but Still NascentBeanstalk Cryptocurrency Project Robbed After Hacker Votes to Send Themself $182 MillionMetaMask Advises Users to Disable Automatic iCloud Backups of Its Wallet DataU.S. Warns of Lazarus Hackers Using Malicious Cryptocurrency AppsWyandotte County (KS) Government Hit by Cyber AttackNewman Regional Health (KS) Notifies Patients of Breach That Exposed Personal InfoA Single Email Account Hack Spurs Breach Notice for 503K Christie Clinic (IL) PatientsDeaconess Health (IN) & Blue Earth County (MN) Notify Patients About Insider Data BreachesUnofficial Windows 11 Upgrade Installs Info-Stealing Malware
4/15-17/2022 April 17, 2022April 17, 2022 ~ The Cyber Beat ~ Leave a comment GitHub Suspends Accounts of Russian Devs at Sanctioned CompaniesKarakurt Ensnares Conti, Diavol Ransomware Groups in Its WebFeds Offer $5M Reward for Info on North Korean Cyber CrooksLazarus Targets Chemical Sector With ‘Dream Jobs,’ Then TrojansNew Industrial Spy Stolen Data Market Promoted Through Cracks, AdwareCryptocurrency DeFi Platforms Are Now More Targeted Than Ever‘Mute’ Button in Conferencing Apps May Not Actually Mute Your MicRemote Working Has Changed the Rules of the Workplace, so Watch OutBoards, Security Chiefs Face Challenges Over New Cyber RulesSurprising Cybersecurity Weak Points Business Owners Should Look Out ForMicrosoft: Office 2013 Will Reach End of Support in April 2023GitHub: Attacker Breached Dozens of Orgs Using Stolen OAuth TokensRoyal Spanish Football Federation (RFEF) Reports Cyber Attack After Email Accounts, Private Texts StolenContra Costa County (CA) Reports Data Breach That May Have Exposed Personal InformationMaui County (HI) Contains Attempted Cyber Attack on NetworkOzarks Technical Community College (MO) Announces It Was a Victim of Cyber FraudSecond Round of Patients Receives Ransomware Breach Notices Nearly One Year After Scripps Health (CA) AttackWind Turbine Firm Nordex Hit by Conti Ransomware AttackT-Mobile Customers Warned of Unblockable Sms Phishing AttacksHaskers Gang Gives Away ZingoStealer Malware to Other Cybercriminals for FreeCisco Vulnerability Lets Hackers Craft Their Own Login CredentialsJekyllBot:5 Flaws Let Attackers Take Control of Aethon TUG Hospital RobotsCISA Orders Agencies to Fix Actively Exploited VMware, Chrome Bugs
4/14/2022 April 15, 2022April 15, 2022 ~ The Cyber Beat ~ Leave a comment Hackers Target Ukrainian Govt With IcedID Malware, Zimbra ExploitsOldGremlin Ransomware Gang Targets Russia With New MalwareMidterms Raise Fears of Russian CyberattacksU.S. Blames North Korean Hacker Group Lazarus for $625 Million Axie Infinity TheftClueless Hackers Spent Months Inside a Network and Nobody Noticed. Then a Ransomware Gang Turned UpRansomware: These Two Gangs Are Behind Half of All AttacksData Scientists, Watch Out: Attackers Have Your NumberWhatsApp Doubles Down With End-to-End Encrypted ‘Communities’FBI: Payment App Users Targeted in Social Engineering AttacksInstagram Beyond Pics: Sexual Harassers, Crypto Crooks, ID Thieves5 Things to Know About Elon Musk’s Twitter Bid…Elon Musk Explains What He Wants to Change About TwitterMicrosoft Increases Awards for High-Impact Microsoft 365 BugsMetroHealth (OH) Data Breach Involved 1700 PatientsHetzner Lost Customer Data and Gave 20€ as CompensationOil India Suffers Cyber Attack, Receives Rs 57 Crore Ransom DemandNew ZingoStealer Infostealer Drops More Malware, CryptominersAfrican Banks Heavily Targeted in RemcosRAT Malware CampaignsWindows 11 Tool to Add Google Play Secretly Installed MalwareCisco’s Webex App Phoned Home Audio Telemetry Even When MutedRarible NFT Marketplace Flaw Could’ve Let Attackers Hijack Crypto WalletsGoogle Chrome Emergency Update Fixes Zero-Day Used in AttacksCritical Windows RPC CVE-2022-26809 Flaw Raises Concerns — Patch NowCISA Warns Orgs to Patch Actively Exploited Windows LPE Bug
4/13/2022 April 13, 2022April 13, 2022 ~ The Cyber Beat ~ Leave a comment Russia Is Leaking Data Like a SieveHuawei Reportedly Furloughs Russian Staff and Stops Taking OrdersFeds Uncover ‘Pipedream’, a ‘Swiss Army Knife’ for Hacking Industrial SystemsMicrosoft Disrupts Zloader Malware in Global OperationWhy Every Cybersecurity Leader Should ‘Assume Breach’Tim Cook Delivers Speech Railing Against “Data Industrial Complex,” SideloadingTaiwan, China Square Off Over Chip Tech Espionage LawsNeurodiverse Candidates Find Niche in Remote Cybersecurity JobsLakeview Loan Servicing Hit by Data Breach, Exposing Clients’ Personal InformationNew EnemyBot DDoS Botnet Recruits Routers and IoTs Into Its ArmyNew Fodcha DDoS Botnet Targets Over 100 Victims Every DayHackers Exploit Critical VMware CVE-2022-22954 Bug, Patch NowCritical Flaw in Elementor WordPress Plugin May Affect 500K SitesApache Says Struts 2 Security Bug Wasn’t Fully Fixed in 2020Krebs: Microsoft Patch Tuesday, April 2022 Edition
4/12/2022 April 12, 2022April 12, 2022 ~ The Cyber Beat ~ Leave a comment Russia’s Sandworm Hackers Attempted a Third Blackout in Ukraine…‘Lucky’ to Avert HackBiden Announces Ban on Unlicensed Ghost Gun KitsDuckDuckGo’s Privacy-Centric Browser Arrives on MacConsumers Increasingly Numb to Data Breach RisksKrebs: RaidForums Gets Raided, Alleged Admin ArrestedA Series of Patent Lawsuits Is Challenging to Uproot the History of Malware DetectionGoogle Sues Scammer for Running ‘Puppy Fraud Scheme’ WebsiteEthereum Dev Imprisoned for Helping North Korea Evade SanctionsFlorida Man Ethical Hacker Steals $600,000 Worth of CryptoLockBit Ransomware Gang Lurked in a U.S. Gov Network for MonthsShiseido UK Branch Reportedly Suffers Data BreachMicrosoft: New Hafnium Group Malware Uses Windows Bug to Hide Scheduled TasksCritical LFI Vulnerability Reported in Hashnode Blogging PlatformCritical HP Teradici PCoIP Flaws Impact 15 Million EndpointsNGINX Shares Mitigations for Zero-Day Bug Affecting LDAP ImplementationAWS Fixes Local File Vuln on Internal Credential Access for Relational Database ServiceMicrosoft April 2022 Patch Tuesday Fixes 119 Flaws, 2 Zero-Days…Microsoft Zero-Days, Wormable Bugs Spark Concern
4/11/2022 April 11, 2022April 11, 2022 ~ The Cyber Beat ~ Leave a comment EU Officials Targeted with Pegasus SpywareCISA Warns Orgs of WatchGuard Bug Exploited by Russian State HackersRise in NPM Protestware: Another Open Source Dev Calls Russia OutThe Tricky Aftermath of Source Code LeaksKrebs: Double-Your-Crypto Scams Share Crypto Scam HostExplaining Crypto’s Billion-Dollar Bridge ProblemNew U.K. Privacy Regulator Plans Quick Action Against Privacy ViolatorsThoma Bravo Buys SailPoint For $6.9 BillionCreating a Security Culture Where People Can Admit MistakesPanasonic Says Canadian Operations Hit by ‘Targeted’ CyberattackBlackCat Ransomware Group Claims Attack on Florida International UniversitySuperCare Health (CA) Data Breach Involves More Than 300,000 IndividualsEast Tennessee Children’s Hospital IT Incident Leads to Patient Data ExposureLuxury Fashion House Zegna Confirms August 2021 Ransomware AttackAndroid Banking Malware Intercepts Calls to Customer SupportQbot Malware Switches to New Windows Installer Infection VectorXSS Vulnerability Patched in Directus Data Engine Platform
4/8-10/2022 April 10, 2022April 10, 2022 ~ The Cyber Beat ~ Leave a comment Microsoft Seized Russian APT28 Domains Targeting Ukrainian Media Organizations…Microsoft: Nearly All Russian State Actors Now Targeting UkraineKrebs: Actions Target Russian Govt. Botnet, Hydra Dark MarketU.S. Eases Sanctions That May Lead To Russia’s Internet IsolationHackers Use Conti’s Leaked Ransomware to Attack Russian CompaniesRansomware Damage: Are You Forgetting About Your Reputation?Security Nihilism Is Putting Your Company — and Its Employees — at RiskThe U.S. Is Trying to Fix Medical Devices’ Big Cybersecurity ProblemWatchGuard Didn’t Explicitly Disclose a Flaw Exploited by HackersNew Meta Information Stealer Distributed in Malspam CampaignYouTube Fraudsters Steal $1.7m in Crypto ‘Giveaway’Ukrainian FIN7 Hacker Gets 5-Year Sentence in the United StatesFinland Government Sites Forced Offline by DDoS AttacksNorthern Ireland TrustFord Sites Hit by Ransomware GangSnap-on Tools Discloses Data Breach Claimed by Conti Ransomware GangWellstar (GA) Releases Statement to Patients After Data BreachCentral Vermont Eye Care Files Notice of Recent Data BreachBLK + BRWN Bookstore (MO) Recovering After Cyber AttackNew Octo Banking Trojan Spreading via Fake Apps on Google Play StoreResearchers Connect BlackCat Ransomware with Past BlackMatter Malware ActivityHackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet MalwareAdobe Creative Cloud Experience Makes It Easier to Run MalwareRaspberry Pi Removes Default User to Hinder Brute-Force AttacksGitHub Can Now Alert of Supply-Chain Bugs in New Dependencies
4/7/2022 April 7, 2022April 7, 2022 ~ The Cyber Beat ~ Leave a comment Hacking Group Posted Fake Ukrainian Surrender Messages, Says MetaMeta Is Reportedly Making ‘Zuck Bucks’The Original APT: Advanced Persistent Teenagers (Krebs)Hamas-linked Hackers Targeting High-Ranking Israelis Using ‘Catfish’ LuresChinese Hackers Reportedly Target India’s Power GridBroader Investment in Cybersecurity Beginning to Pay DividendsGoogle Boosts Android Security With New Set of Dev Policy Changes‘Axie Infinity’ Publisher Raises Funds to Reimburse Users After $625 Million HackWebsite of Russian Oil Giant Gazprom Neft Down After Alleged HackEmployee Info Among 13 Million Records Leaked by FoxFirst Malware Targeting AWS Lambda Serverless Platform DiscoveredMalicious Web Redirect Service Infects 16,500 Sites to Push MalwareAndroid Apps With 45 Million Installs Used Data Harvesting SDKSSRF Flaw in Fintech Platform Allowed for Compromise of Bank AccountsPalo Alto Networks Firewalls, VPNs Vulnerable to OpenSSL Bug
4/6/2022 April 6, 2022April 6, 2022 ~ The Cyber Beat ~ Leave a comment FBI Says It Disrupted ‘Cyclops Blink’ Botnet From Russian HackersU.S. Sanctions Crypto-Exchange Garantex for Aiding Hydra MarketUkraine Warns of Cyber attack Aiming to Hack Users’ Telegram Messenger AccountsDemand for Cyber Threat Intel Growing, White House Official SaysHackers Stole More Than $600 Million in Crypto: Laundering It Is the Tricky PartConti Gang Is Still in Business, Despite Its Own Massive Data LeakAustralia Warns of Money Recovery Phishing Luring Past VictimsEurope Is Building a Huge International Facial Recognition SystemGoogle Bans Apps With Hidden Data-Harvesting SoftwareHackers Distributing Fake Shopping Apps to Steal Banking Data of Malaysian UsersThousands Of Indians Exposed In Data Breach Affecting Money Lending App CashMamaNew FFDroider Malware Steals Facebook, Instagram, Twitter AccountsElectric Vehicle Chargers in Isle of Wight Hacked to Show PornVevo to ‘Review’ Security After YouTube Feeds for Lil Nas X, Justin Bieber, and Others HackedVMware Warns of Critical Vulnerabilities in Multiple ProductsResearchers Identify ‘Master Problem’ Underlying All Cryptography
4/5/2022 April 5, 2022April 6, 2022 ~ The Cyber Beat ~ Leave a comment Zelenskyy at the UN Accuses Russian Military of War CrimesU.S. Sanctions Russia-Based Darknet Market…Germany Shuts Down Servers for Russian Darknet Marketplace HydraRussian Cyberattacks Increase on Ukraine’s Critical Infrastructure: ReportUkraine Spots Russian-Linked ‘Armageddon’ Phishing AttacksCyber Experts Warn Against Government Overreach in Defending Against Russian ThreatsHow Hackers Target Bridges Between Blockchains for Crypto HeistsMicrosoft Adds On-Premises Exchange, Sharepoint to Bug Bounty ProgramMicrosoft Announces New Windows 11 Security, Encryption FeaturesBlock Confirms Cash App Breach After Former Employee Accessed U.S. Customer DataRetailer The Works Closes Stores After Cyber-AttackScripps Health (CA) Says Patient Information Exposed in 2021 HackNSP Hacked New Pegasus Victims Weeks After Apple Sought InjunctionJustin Bieber, Drake, Eminem Among Artists Hacked on YouTubeResearchers Trace Widespread Espionage Attacks Back to Chinese ‘Cicada’ HackersWhatsApp Voice Message Phishing Emails Push Info-Stealing MalwareSpring4Shell Attacks Target About One in Six Vulnerable OrgsMicrosoft Detects Spring4Shell Attacks Across Its Cloud Services
4/4/2022 April 4, 2022April 4, 2022 ~ The Cyber Beat ~ Leave a comment State Department Formally Launches New Cyber BureauHarris County Jail (TX) Releases 300 Suspects Due to Computer “Glitch”FIN7 Hackers Evolve Toolset, Work With Multiple Ransomware GangsCadbury Warns of Easter Egg ScamBeware of These 5 Tax ScamsSEC Chair Gensler Says Agency Is Planning Greater Oversight of Crypto Markets to Protect InvestorsEmma Sleep Company Admits Checkout Cyber AttackHackers Breached MailChimp to Phish Cryptocurrency WalletsIberdrola Cyber Attack Compromises Data of 1.3 Million in SpainDenver Center for the Performing Arts Internal Network, Phone System Impacted by Massive Computer IssueVMware Patches Spring4Shell RCE Flaw in Multiple ProductsGitHub Can Now Block Commits Containing API Keys, Auth Tokens
3/31-4/3/2022 April 3, 2022April 3, 2022 ~ The Cyber Beat ~ Leave a comment Data Leak From Russian Delivery App Yandex Shows Dining Habits of the Secret PoliceRussia Using Disinformation to Back Ukraine Invasion, Canadian Agency SaysViasat Confirms Satellite Modems Were Wiped With AcidRain MalwareUkraine Intelligence Accuses China of Hacking Days Before InvasionChinese Hacking Group ‘Deep Panda’ Uses New ‘Fire Chili’ Windows RootkitEric Schmidt Sounds China Alarm on TechDPRK Hackers Go After Crypto Assets Using Trojanized DeFi Wallet AppLockBit Victim Estimates Cost of Ransomware Attack to Be $42 MillionFBI: Ransomware Attacks Are Piling up the Pressure on Public ServicesBeastmode Botnet Boosts DDoS Power With New Router ExploitsKrebs: Fake Emergency Search Warrants Draw Scrutiny from Capitol HillResearchers Used a Decommissioned Satellite to Broadcast Hacker TVBlockchains Have a ‘Bridge’ Problem, and Hackers Know ItEU Draft Law Adds Security Checks to All Crypto TransactionsWriting Google Reviews About Patients Is Actually a HIPAA ViolationNSA Employee Accused of Sharing National Defense Secrets2 More Teens Charged in UK Lapsus$ InvestigationHackers’ Path Eased as 600,000 U.S. Cybersecurity Jobs Sit EmptyPalo Alto Networks Error Exposed Customer Support Cases, AttachmentsCiox Health (NY) Data Breach Exposed Phi of 1,300 Catholic Health PatientsNordex Impacted By Cyber Security IncidentAmerican Express Down in Outage: Users Report Login and Payment IssuesBelarusian ‘Ghostwriter’ Actor Picks Up BitB for Ukraine-Related AttacksFake Trezor Data Breach Emails Used to Steal Cryptocurrency WalletsRussian-Linked Turla Android Malware Records Audio, Tracks Your LocationNew BlackGuard Password-Stealing Malware Sold on Hacker ForumsCalendly Actively Abused in Microsoft Credentials PhishingNew Borat Remote Access Malware Is No Laughing Matter15-Year-Old Bug in PEAR PHP Repository Could’ve Enabled Supply Chain AttacksCritical Bugs in Rockwell PLC Could Allow Hackers to Implant Malicious CodeSpring Patches Leaked Spring4Shell Zero-Day RCE VulnerabilityZyxel Patches Critical Bug Affecting Firewall and VPN DevicesTrend Micro Fixes Actively Exploited Remote Code Execution BugGitLab Releases Patch for Critical Vulnerability That Could Let Attackers Hijack AccountsApple Rushes Out Patches for 0-Days in MacOS, iOSMicrosoft Now Lets You Enable the Windows App Installer Again, Here’s How