4/28/2022

Ukraine Targeted by DDoS Attacks From Compromised WordPress Sites

Russia Sanctions Seriously Complicate Paying Ransomware Hackers

Experts Detail 3 Hacking Teams Working Under the Umbrella of TA410 Group

Beware: Onyx Ransomware Destroys Files Instead of Encrypting Them

EmoCheck Now Detects New 64-Bit Versions of Emotet Malware

Hollywood’s Fight Against VPNs Turns Ugly

Europol: Deepfakes Set to Be Used Extensively in Organized Crime

Twitter’s New Owner Elon Musk Wants DMs to be End-to-End Encrypted like Signal
Austin Peay State University Resumes After Ransomware Cyber Attack

Cyber Attack At Worcester Hospital (MA) Delays Emergency Room Services

Massy Stores Crippled by Cyber Attack

Cloudflare Stomps Huge DDoS Attack on Crypto Platform

Cybercriminals Using New Malware Loader ‘Bumblebee’ in the Wild

NPM Flaw Let Attackers Add Anyone as Maintainer to Malicious Packages

Synology Warns of Critical Netatalk Bugs in Multiple Products

Microsoft Fixes ExtraReplica Azure Bugs That Exposed User Databases

4/27/2022

Microsoft Uncovers Extensive Russian Cyber Operations in Ukraine

Chinese Hackers APT Bronze President Targeting Russian Military with Updated PlugX Malware

Russia Is Being Hacked at an Unprecedented Scale

Chinese Drone-Maker DJI Suspends Ops in Russia, Ukraine

1Password Syncing Went Down for a Few Hours Today During a Database Upgrade

How Industry Leaders Should Approach Open Source Security

Cyber Skills Gap Linked to Breaches

North Koreans Are Jailbreaking Phones to Access Forbidden Media

Google May Now Remove Search Results That Dox You

Krebs: Fighting Fake EDRs With ‘Credit Ratings’ for Police

Uber Ordered to Produce Records About 2016 Hack and Cover-Up
Smile Brands Breach from 2021 Impacts 2.5 Million Individuals

Columbus Housing Authority (OH) Suffers Data Breach; Client Personal Info Possibly Stolen

Battelle for Kids Exposes Student Info Across Ohio

Russian Gov’t Impersonators Target Telcos in Phishing Attacks

GitHub: How Stolen OAuth Tokens Helped Breach Dozens of Orgs

New Black Basta Ransomware Springs Into Action With a Dozen Breaches

RIG Exploit Kit Drops Redline Malware via Internet Explorer Bug

QNAP Warns Users to Disable Afp Until It Fixes Critical Bugs

New Nimbuspwn Linux Vulnerability Gives Hackers Root Privileges

Millions of Java Apps Remain Vulnerable to Log4Shell

4/26/2022

U.S. Offers $10 Million Reward for Information on Russian ‘Sandworm’ Intelligence Officers -State Dept

Coca-Cola Probes Pro-Kremlin Gang’s Claims of 161GB Data Theft

Data Breach Disrupts UK Army Recruitment

Firms Push for CVE-Like Cloud Bug System

Inside a Ransomware Incident: How a Single Mistake Left a Door Open for Attackers

Five Things to Watch on Musk’s Twitter Deal

Will Elon Musk’s Twitter Takeover Have Cybersecurity Implications?

EU Warns Elon Musk Over Twitter Moderation Plans

Google Play Store Now Forces Apps to Disclose What Data Is Collected

Tenable Acquires External Attack Surface Management Vendor for $44.5M
American Dental Association Hit by New Black Basta Ransomware

Tenet Health Investigating Cybersecurity Incident, IT Outage

Yuma Regional Medical Center (AZ) Faces Potential Cyber Attack

Gurnee-Based Doctor’s Group (IL) Reports Data Breach of Patients’ Personal, Financial Data

Ballad Health Discovers Breach of Employee Email Account

Emotet Testing New Delivery Ideas After Microsoft Disables VBA Macros by Default

Who Is Exploiting VMware Right Now? Probably Iran’s Rocket Kitten, to Name One

CISA Adds 7 Vulnerabilities to List of Bugs Exploited in Attacks

Public Interest in Log4Shell Fades but Attack Surface Remains

4/25/2022

U.S. Wants Russia ‘Weakened’ So It Can Never Invade Again

Russia Bombs Five Railway Stations in Central and Western Ukraine

European Wind-Energy Sector Hit in Wave of Russian Hacks

Ukraine Invasion Driving DDoS Attacks to All-Time Highs

North Korean APT37 Hackers Targeting Journalists With Novel Malware

How Failing to Prioritize Cybersecurity Can Hurt Your Company

The US Saw a Spike in Child Sexual Abuse URLs in 2021

CSAM Creator Imprisoned for Life

Twitter Accepts Elon Musk’s Offer to Buy Company in $44 Billion Deal
French Hospital Group Disconnects Internet After Hackers Steal Data

Thief Steals $1 Million of Bored Ape Yacht Club NFTS With Instagram Hack

Adaptive Health Integrations (ND) Hit by Cyber Attack, More Than 500K Affected

Quantum Ransomware Seen Deployed in Rapid Network Attacks

Emotet Malware Infects Users Again After Fixing Broken Installer

New Powerful Prynt Stealer Malware Sells for Just $100 per Month

Critical Bug in Everscale Wallet Could’ve Let Attackers Steal Cryptocurrencies

Researchers Report Critical RCE Vulnerability in Google’s VirusTotal Platform

4/22-24/2022

Ukraine’s Postal Service Hit by Cyberattack After Sales of Warship Stamp Go Online

They’ve Leaked Terabytes of Russian Emails, but Who’s Reading?

Costa Rica’s Alvarado Says Cyber​​Attacks Seek to Destabilize Country as the Government Transitions

Russian Hackers Are Seeking Alternative Money-Laundering Options

A $3 Billion Silk Road Seizure Will Erase Ross Ulbricht’s Debt

Beanstalk Founders Dismissed Concerns About Governance Attacks Before Losing $182 Million

Wawa Sues Mastercard Over Data Breach Penalties

DOJ Probes Google’s $5.4B Mandiant Acquisition
Krebs: Leaked Chats Show LAPSUS$ Stole T-Mobile Source Code

T-Mobile Confirms

Rio de Janeiro Finance Department Hit With LockBit Ransomware

Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability

Windows 10 KB5012636 Cumulative Update Fixes Freezing Issues

‘Hack DHS’ Bug Hunters Find 122 Security Flaws in DHS Systems

U.S. Gov’t Grants Academics $12M to Develop Cyberattack Defense Tools

4/21/2022

U.S. Treasury Sanctions Russian Cryptocurrency Mining Companies

Binance Tells Russian Users With Over €10K to Withdraw Everything

Energy Department Invests $12 Million in Cyber Technology

House Introduces Cyber Bill Intended to Safeguard Energy Sectors

FBI: BlackCat Ransomware Breached at Least 60 Entities Worldwide

FBI Seeks Info on BlackCat

Cyber Chiefs Try New Tricks to Attract Talent

Hackers Sneak ‘More_Eggs’ Malware Into Resumes Sent to Corporate Hiring Managers

YouTube Terminates Account for Hong Kong’s Presumed Next Head of Government

GitHub Restores Popular Python Repo Hit by Bogus DMCA Takedown

Hackers Earn $400K for Zero-Day ICS Exploits Demoed at Pwn2Own
Cyber-Attackers Hit Sunwing Airlines

Natural Whole Grain Foods Company Bob’s Red Mill Reports Data Breach

International Data Corporation Confirms Recent Data Breach

Coventry Public Schools (CT) Student Data Breached Within Illuminate Education Product

Lincoln College Was Already Struggling: Then Came Ransomware in December

Docker Servers Hacked in Ongoing Cryptomining Malware Campaign

Critical Chipset Bugs Open Millions of Android Devices to Remote Spying

Unpatched Bug in RainLoop Webmail Could Give Hackers Access to all Emails

Cisco Umbrella Default SSH Key Allows Theft of Admin Credentials

QNAP Asks Users to Mitigate Critical Apache HTTP Server Bugs

3 Ways We Can Improve Cybersecurity

4/20/2022

Federal Agencies, International Partners Issue Warning on Russian Cyber Threats

Russian-Linked Shuckworm Crew Ramps up Ukraine Attacks

How Russia Is Isolating Its Own Cybercriminals

UN Panel Coordinator Urges Stepped up Focus on North Korea Cyber Crime

FBI Warns of Ransomware Attacks Targeting U.S. Agriculture Sector

Most Email Security Approaches Fail to Block Common Threats

Google Project Zero Detects a Record Number of Zero-Day Exploits in 2021

CISA Expands Its Cyber Defense Division to Include Control Systems Expertise

Israeli Charged in Global Hacker-For-Hire Scheme Pleads Guilty
Israeli Sites Under Cyber Attack by Iraqi Hacker Group ‘Altahrea Team’

REvil’s TOR Sites Come Alive to Redirect to New Ransomware Operation

Puerto Rico Toll Collection System Hit by Cyberattack

NJ Law Firm McCarter & English Experiences Data Breach

Okta Ends Lapsus$ Hack Investigation, Says Breach Lasted Just 25 Minutes

Microsoft Exchange Servers Hacked to Deploy Hive Ransomware

Researchers Detail Bug That Could Paralyze Snort Intrusion Detection System

AWS’s Log4j Patches Blew Holes in Its Own Security

Microsoft Defender Flags Google Chrome Updates as Suspicious

4/19/2022

Rethinking Cyber-Defense Strategies in the Public-Cloud Age

LinkedIn Becomes the Most Impersonated Brand for Phishing Attacks

Real-Time Voice Concealment Algorithm Blocks Microphone Spying

Secret Service Seizes More Than $102 Million in Crypto Assets

The Fake Federal Agents Case Baffling US Intelligence Experts

Microsoft Disables SMB1 by Default for Windows 11 Home Insiders
Funky Pigeon Suspends Orders Following Cyber-Attack

GitHub Notifies Victims Whose Private Data Was Accessed Using OAuth Tokens

Emotet Botnet Switches to 64-Bit Modules, Increases Activity

New Stealthy BotenaGo Malware Variant Targets DVR Devices

New Lenovo UEFI Firmware Vulnerabilities Affect Millions of Laptops

QNAP Urges Customers to Disable UPnP Port Forwarding on Routers

CISA Warns of Attackers Now Exploiting Windows Print Spooler Bug

4/18/2022

No 10 Network Targeted With NSO’s Pegasus Spyware, Says Group

Spyware Use on Separatists in Spain “Extensive”

Newly Found Zero-Click iPhone Exploit Used in Multiple Newly Disclosed NSO Spyware Attacks

U.S. Officials Ramp up Warnings About Russian Cyberattacks

NATO Simulated Cyber Game Tests Defenses Amid War in Ukraine

Krebs: Conti’s Ransomware Toll on the Healthcare Industry

Free Decryptor Released for Yanluowang Ransomware Victims

Ransomware Is Getting “User Friendly” To Victims

Security-as-Code Gains More Support, but Still Nascent
Beanstalk Cryptocurrency Project Robbed After Hacker Votes to Send Themself $182 Million

MetaMask Advises Users to Disable Automatic iCloud Backups of Its Wallet Data

U.S. Warns of Lazarus Hackers Using Malicious Cryptocurrency Apps

Wyandotte County (KS) Government Hit by Cyber Attack

Newman Regional Health (KS) Notifies Patients of Breach That Exposed Personal Info

A Single Email Account Hack Spurs Breach Notice for 503K Christie Clinic (IL) Patients

Deaconess Health (IN) & Blue Earth County (MN) Notify Patients About Insider Data Breaches

Unofficial Windows 11 Upgrade Installs Info-Stealing Malware

4/15-17/2022

GitHub Suspends Accounts of Russian Devs at Sanctioned Companies

Karakurt Ensnares Conti, Diavol Ransomware Groups in Its Web

Feds Offer $5M Reward for Info on North Korean Cyber Crooks

Lazarus Targets Chemical Sector With ‘Dream Jobs,’ Then Trojans

New Industrial Spy Stolen Data Market Promoted Through Cracks, Adware

Cryptocurrency DeFi Platforms Are Now More Targeted Than Ever

‘Mute’ Button in Conferencing Apps May Not Actually Mute Your Mic

Remote Working Has Changed the Rules of the Workplace, so Watch Out

Boards, Security Chiefs Face Challenges Over New Cyber Rules

Surprising Cybersecurity Weak Points Business Owners Should Look Out For

Microsoft: Office 2013 Will Reach End of Support in April 2023
GitHub: Attacker Breached Dozens of Orgs Using Stolen OAuth Tokens

Royal Spanish Football Federation (RFEF) Reports Cyber Attack After Email Accounts, Private Texts Stolen

Contra Costa County (CA) Reports Data Breach That May Have Exposed Personal Information

Maui County (HI) Contains Attempted Cyber Attack on Network

Ozarks Technical Community College (MO) Announces It Was a Victim of Cyber Fraud

Second Round of Patients Receives Ransomware Breach Notices Nearly One Year After Scripps Health (CA) Attack

Wind Turbine Firm Nordex Hit by Conti Ransomware Attack

T-Mobile Customers Warned of Unblockable Sms Phishing Attacks

Haskers Gang Gives Away ZingoStealer Malware to Other Cybercriminals for Free

Cisco Vulnerability Lets Hackers Craft Their Own Login Credentials

JekyllBot:5 Flaws Let Attackers Take Control of Aethon TUG Hospital Robots

CISA Orders Agencies to Fix Actively Exploited VMware, Chrome Bugs

4/14/2022

Hackers Target Ukrainian Govt With IcedID Malware, Zimbra Exploits

OldGremlin Ransomware Gang Targets Russia With New Malware

Midterms Raise Fears of Russian Cyberattacks

U.S. Blames North Korean Hacker Group Lazarus for $625 Million Axie Infinity Theft

Clueless Hackers Spent Months Inside a Network and Nobody Noticed. Then a Ransomware Gang Turned Up

Ransomware: These Two Gangs Are Behind Half of All Attacks

Data Scientists, Watch Out: Attackers Have Your Number

WhatsApp Doubles Down With End-to-End Encrypted ‘Communities’

FBI: Payment App Users Targeted in Social Engineering Attacks

Instagram Beyond Pics: Sexual Harassers, Crypto Crooks, ID Thieves

5 Things to Know About Elon Musk’s Twitter Bid

Elon Musk Explains What He Wants to Change About Twitter

Microsoft Increases Awards for High-Impact Microsoft 365 Bugs
MetroHealth (OH) Data Breach Involved 1700 Patients

Hetzner Lost Customer Data and Gave 20€ as Compensation

Oil India Suffers Cyber Attack, Receives Rs 57 Crore Ransom Demand

New ZingoStealer Infostealer Drops More Malware, Cryptominers

African Banks Heavily Targeted in RemcosRAT Malware Campaigns

Windows 11 Tool to Add Google Play Secretly Installed Malware

Cisco’s Webex App Phoned Home Audio Telemetry Even When Muted

Rarible NFT Marketplace Flaw Could’ve Let Attackers Hijack Crypto Wallets

Google Chrome Emergency Update Fixes Zero-Day Used in Attacks

Critical Windows RPC CVE-2022-26809 Flaw Raises Concerns — Patch Now

CISA Warns Orgs to Patch Actively Exploited Windows LPE Bug

4/13/2022

Russia Is Leaking Data Like a Sieve

Huawei Reportedly Furloughs Russian Staff and Stops Taking Orders

Feds Uncover ‘Pipedream’, a ‘Swiss Army Knife’ for Hacking Industrial Systems

Microsoft Disrupts Zloader Malware in Global Operation

Why Every Cybersecurity Leader Should ‘Assume Breach’

Tim Cook Delivers Speech Railing Against “Data Industrial Complex,” Sideloading

Taiwan, China Square Off Over Chip Tech Espionage Laws

Neurodiverse Candidates Find Niche in Remote Cybersecurity Jobs
Lakeview Loan Servicing Hit by Data Breach, Exposing Clients’ Personal Information

New EnemyBot DDoS Botnet Recruits Routers and IoTs Into Its Army

New Fodcha DDoS Botnet Targets Over 100 Victims Every Day

Hackers Exploit Critical VMware CVE-2022-22954 Bug, Patch Now

Critical Flaw in Elementor WordPress Plugin May Affect 500K Sites

Apache Says Struts 2 Security Bug Wasn’t Fully Fixed in 2020

Krebs: Microsoft Patch Tuesday, April 2022 Edition

4/12/2022

Russia’s Sandworm Hackers Attempted a Third Blackout in Ukraine

‘Lucky’ to Avert Hack

Biden Announces Ban on Unlicensed Ghost Gun Kits

DuckDuckGo’s Privacy-Centric Browser Arrives on Mac

Consumers Increasingly Numb to Data Breach Risks

Krebs: RaidForums Gets Raided, Alleged Admin Arrested

A Series of Patent Lawsuits Is Challenging to Uproot the History of Malware Detection

Google Sues Scammer for Running ‘Puppy Fraud Scheme’ Website

Ethereum Dev Imprisoned for Helping North Korea Evade Sanctions

Florida Man Ethical Hacker Steals $600,000 Worth of Crypto
LockBit Ransomware Gang Lurked in a U.S. Gov Network for Months

Shiseido UK Branch Reportedly Suffers Data Breach

Microsoft: New Hafnium Group Malware Uses Windows Bug to Hide Scheduled Tasks

Critical LFI Vulnerability Reported in Hashnode Blogging Platform

Critical HP Teradici PCoIP Flaws Impact 15 Million Endpoints

NGINX Shares Mitigations for Zero-Day Bug Affecting LDAP Implementation

AWS Fixes Local File Vuln on Internal Credential Access for Relational Database Service

Microsoft April 2022 Patch Tuesday Fixes 119 Flaws, 2 Zero-Days

Microsoft Zero-Days, Wormable Bugs Spark Concern

4/11/2022

EU Officials Targeted with Pegasus Spyware

CISA Warns Orgs of WatchGuard Bug Exploited by Russian State Hackers

Rise in NPM Protestware: Another Open Source Dev Calls Russia Out

The Tricky Aftermath of Source Code Leaks

Krebs: Double-Your-Crypto Scams Share Crypto Scam Host

Explaining Crypto’s Billion-Dollar Bridge Problem

New U.K. Privacy Regulator Plans Quick Action Against Privacy Violators

Thoma Bravo Buys SailPoint For $6.9 Billion

Creating a Security Culture Where People Can Admit Mistakes
Panasonic Says Canadian Operations Hit by ‘Targeted’ Cyberattack

BlackCat Ransomware Group Claims Attack on Florida International University

SuperCare Health (CA) Data Breach Involves More Than 300,000 Individuals

East Tennessee Children’s Hospital IT Incident Leads to Patient Data Exposure

Luxury Fashion House Zegna Confirms August 2021 Ransomware Attack

Android Banking Malware Intercepts Calls to Customer Support

Qbot Malware Switches to New Windows Installer Infection Vector

XSS Vulnerability Patched in Directus Data Engine Platform

4/8-10/2022

Microsoft Seized Russian APT28 Domains Targeting Ukrainian Media Organizations

Microsoft: Nearly All Russian State Actors Now Targeting Ukraine

Krebs: Actions Target Russian Govt. Botnet, Hydra Dark Market

U.S. Eases Sanctions That May Lead To Russia’s Internet Isolation

Hackers Use Conti’s Leaked Ransomware to Attack Russian Companies

Ransomware Damage: Are You Forgetting About Your Reputation?

Security Nihilism Is Putting Your Company — and Its Employees — at Risk

The U.S. Is Trying to Fix Medical Devices’ Big Cybersecurity Problem

WatchGuard Didn’t Explicitly Disclose a Flaw Exploited by Hackers

New Meta Information Stealer Distributed in Malspam Campaign

YouTube Fraudsters Steal $1.7m in Crypto ‘Giveaway’

Ukrainian FIN7 Hacker Gets 5-Year Sentence in the United States
Finland Government Sites Forced Offline by DDoS Attacks

Northern Ireland TrustFord Sites Hit by Ransomware Gang

Snap-on Tools Discloses Data Breach Claimed by Conti Ransomware Gang

Wellstar (GA) Releases Statement to Patients After Data Breach

Central Vermont Eye Care Files Notice of Recent Data Breach

BLK + BRWN Bookstore (MO) Recovering After Cyber Attack

New Octo Banking Trojan Spreading via Fake Apps on Google Play Store

Researchers Connect BlackCat Ransomware with Past BlackMatter Malware Activity

Hackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet Malware

Adobe Creative Cloud Experience Makes It Easier to Run Malware

Raspberry Pi Removes Default User to Hinder Brute-Force Attacks

GitHub Can Now Alert of Supply-Chain Bugs in New Dependencies

4/7/2022

Hacking Group Posted Fake Ukrainian Surrender Messages, Says Meta

Meta Is Reportedly Making ‘Zuck Bucks’

The Original APT: Advanced Persistent Teenagers (Krebs)

Hamas-linked Hackers Targeting High-Ranking Israelis Using ‘Catfish’ Lures

Chinese Hackers Reportedly Target India’s Power Grid

Broader Investment in Cybersecurity Beginning to Pay Dividends

Google Boosts Android Security With New Set of Dev Policy Changes

‘Axie Infinity’ Publisher Raises Funds to Reimburse Users After $625 Million Hack
Website of Russian Oil Giant Gazprom Neft Down After Alleged Hack

Employee Info Among 13 Million Records Leaked by Fox

First Malware Targeting AWS Lambda Serverless Platform Discovered

Malicious Web Redirect Service Infects 16,500 Sites to Push Malware

Android Apps With 45 Million Installs Used Data Harvesting SDK

SSRF Flaw in Fintech Platform Allowed for Compromise of Bank Accounts

Palo Alto Networks Firewalls, VPNs Vulnerable to OpenSSL Bug

4/6/2022

FBI Says It Disrupted ‘Cyclops Blink’ Botnet From Russian Hackers

U.S. Sanctions Crypto-Exchange Garantex for Aiding Hydra Market

Ukraine Warns of Cyber attack Aiming to Hack Users’ Telegram Messenger Accounts

Demand for Cyber Threat Intel Growing, White House Official Says

Hackers Stole More Than $600 Million in Crypto: Laundering It Is the Tricky Part

Conti Gang Is Still in Business, Despite Its Own Massive Data Leak

Australia Warns of Money Recovery Phishing Luring Past Victims

Europe Is Building a Huge International Facial Recognition System
Google Bans Apps With Hidden Data-Harvesting Software

Hackers Distributing Fake Shopping Apps to Steal Banking Data of Malaysian Users

Thousands Of Indians Exposed In Data Breach Affecting Money Lending App CashMama

New FFDroider Malware Steals Facebook, Instagram, Twitter Accounts

Electric Vehicle Chargers in Isle of Wight Hacked to Show Porn

Vevo to ‘Review’ Security After YouTube Feeds for Lil Nas X, Justin Bieber, and Others Hacked

VMware Warns of Critical Vulnerabilities in Multiple Products

Researchers Identify ‘Master Problem’ Underlying All Cryptography

4/5/2022

Zelenskyy at the UN Accuses Russian Military of War Crimes

U.S. Sanctions Russia-Based Darknet Market

Germany Shuts Down Servers for Russian Darknet Marketplace Hydra

Russian Cyberattacks Increase on Ukraine’s Critical Infrastructure: Report

Ukraine Spots Russian-Linked ‘Armageddon’ Phishing Attacks

Cyber Experts Warn Against Government Overreach in Defending Against Russian Threats

How Hackers Target Bridges Between Blockchains for Crypto Heists

Microsoft Adds On-Premises Exchange, Sharepoint to Bug Bounty Program

Microsoft Announces New Windows 11 Security, Encryption Features
Block Confirms Cash App Breach After Former Employee Accessed U.S. Customer Data

Retailer The Works Closes Stores After Cyber-Attack

Scripps Health (CA) Says Patient Information Exposed in 2021 Hack

NSP Hacked New Pegasus Victims Weeks After Apple Sought Injunction

Justin Bieber, Drake, Eminem Among Artists Hacked on YouTube

Researchers Trace Widespread Espionage Attacks Back to Chinese ‘Cicada’ Hackers

WhatsApp Voice Message Phishing Emails Push Info-Stealing Malware

Spring4Shell Attacks Target About One in Six Vulnerable Orgs

Microsoft Detects Spring4Shell Attacks Across Its Cloud Services

4/4/2022

State Department Formally Launches New Cyber Bureau

Harris County Jail (TX) Releases 300 Suspects Due to Computer “Glitch”

FIN7 Hackers Evolve Toolset, Work With Multiple Ransomware Gangs

Cadbury Warns of Easter Egg Scam

Beware of These 5 Tax Scams

SEC Chair Gensler Says Agency Is Planning Greater Oversight of Crypto Markets to Protect Investors
Emma Sleep Company Admits Checkout Cyber Attack

Hackers Breached MailChimp to Phish Cryptocurrency Wallets

Iberdrola Cyber Attack Compromises Data of 1.3 Million in Spain

Denver Center for the Performing Arts Internal Network, Phone System Impacted by Massive Computer Issue

VMware Patches Spring4Shell RCE Flaw in Multiple Products

GitHub Can Now Block Commits Containing API Keys, Auth Tokens

3/31-4/3/2022

Data Leak From Russian Delivery App Yandex Shows Dining Habits of the Secret Police

Russia Using Disinformation to Back Ukraine Invasion, Canadian Agency Says

Viasat Confirms Satellite Modems Were Wiped With AcidRain Malware

Ukraine Intelligence Accuses China of Hacking Days Before Invasion

Chinese Hacking Group ‘Deep Panda’ Uses New ‘Fire Chili’ Windows Rootkit

Eric Schmidt Sounds China Alarm on Tech

DPRK Hackers Go After Crypto Assets Using Trojanized DeFi Wallet App

LockBit Victim Estimates Cost of Ransomware Attack to Be $42 Million

FBI: Ransomware Attacks Are Piling up the Pressure on Public Services

Beastmode Botnet Boosts DDoS Power With New Router Exploits

Krebs: Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

Researchers Used a Decommissioned Satellite to Broadcast Hacker TV

Blockchains Have a ‘Bridge’ Problem, and Hackers Know It

EU Draft Law Adds Security Checks to All Crypto Transactions

Writing Google Reviews About Patients Is Actually a HIPAA Violation

NSA Employee Accused of Sharing National Defense Secrets

2 More Teens Charged in UK Lapsus$ Investigation

Hackers’ Path Eased as 600,000 U.S. Cybersecurity Jobs Sit Empty
Palo Alto Networks Error Exposed Customer Support Cases, Attachments

Ciox Health (NY) Data Breach Exposed Phi of 1,300 Catholic Health Patients

Nordex Impacted By Cyber Security Incident

American Express Down in Outage: Users Report Login and Payment Issues

Belarusian ‘Ghostwriter’ Actor Picks Up BitB for Ukraine-Related Attacks

Fake Trezor Data Breach Emails Used to Steal Cryptocurrency Wallets

Russian-Linked Turla Android Malware Records Audio, Tracks Your Location

New BlackGuard Password-Stealing Malware Sold on Hacker Forums

Calendly Actively Abused in Microsoft Credentials Phishing

New Borat Remote Access Malware Is No Laughing Matter

15-Year-Old Bug in PEAR PHP Repository Could’ve Enabled Supply Chain Attacks

Critical Bugs in Rockwell PLC Could Allow Hackers to Implant Malicious Code

Spring Patches Leaked Spring4Shell Zero-Day RCE Vulnerability

Zyxel Patches Critical Bug Affecting Firewall and VPN Devices

Trend Micro Fixes Actively Exploited Remote Code Execution Bug

GitLab Releases Patch for Critical Vulnerability That Could Let Attackers Hijack Accounts

Apple Rushes Out Patches for 0-Days in MacOS, iOS

Microsoft Now Lets You Enable the Windows App Installer Again, Here’s How