6/30/2022

FCC Commissioner Urges Google, Apple to Drop TikTok App

North Korea Is Likely Culprit Behind $100 Million Horizon Crypto Heist, Researchers Say

Google Blocks Dozens of Malicious Domains Operated by Hack-for-Hire Groups

A Fintech Horror Story: How One Company Prioritizes Cybersecurity

Companies Are Desperate for Cybersecurity Workers

The Seven Best Secure Messaging Apps

Chrome Password Manager Update Will Let You Manually Add Credentials on All Platforms

Nevada Man Arrested for Alleged $45m Metaverse Investment Fraud
Macmillan Shuts Down Systems After Likely Ransomware Attack

OpenSea Phishing Threat After Rogue Insider Leaks Customer Email Addresses

Tennessee’s Unemployment Claims Website Goes Dark After Cyberattack

Microsoft Exchange Servers Worldwide Backdoored With New Malware

AstraLocker 2.0 Infects Users Directly from Word Attachments

XFiles Info-Stealing Malware Adds Support for Follina Delivery

Jenkins Warns of Security Holes in These 25 Popular Plugins

6/29/2022

Norway Hit With Cyberattack, Temporarily Suspending Service

Cyberattack Hits Russian Space Agency Site After Sharing NATO Photos

1Password Now Lets You Securely Share Files and Documents With Just a Link

1Password Will Help You Remember Which ‘Sign in With’ Service You Used

Google Workspace Now Alerts of Critical Changes to Admin Accounts

Cybersecurity Researchers Launch New Malware Hunting Tool YARAify

Cybersecurity Leaders Are Anticipating Mass Resignations Within the Year – Here’s Why

European, U.S. Groups Plan Salvo of Privacy Complaints Against Google

Ukraine Arrests Cybercrime Gang Operating Over 400 Phishing Sites

Avaya Sysadmin Indicted for Illegally Generating, Selling VoIP Licenses

Canadian Man Admits to Hacking Spree With Russian Cyber-Gang
California Gun Owner Personal Data Exposure More Extensive Than Previously Known

Cannabis Delivery Company Unrivaled Brands dba Silver Streak Data Breach

Phelps County Regional Medical Center (MO) Announces Data Breach

Jack Hughston Memorial Hospital (GA) Has Come Under Cyber Attack, CEO Confirms

Baton Rouge General Hospital Responds to Cyber Attack

Walmart Denies Being Yanluowang Ransomware Hit

New YTStealer Malware Aims to Hijack Accounts of YouTube Content Creators

New UnRAR Vulnerability Could Let Attackers Hack Zimbra Webmail Servers

New ‘FabricScape’ Bug in Microsoft Azure Service Fabric Impacts Linux Workloads

CISA Warns of Hackers Exploiting PwnKit Linux ?Vulnerability

Leaky Access Tokens Exposed Amazon Photos of Users

Thunderbird 102 Released With Highly Anticipated Features, Bug Fixes

6/28/2022

Evilnum Hackers Return in New Operation Targeting Migration Orgs

Hackers Deploy Shadowpad Backdoor and Target Industrial Control Systems in Asia

Tencent Admits to Poisoned QR Code Attack on QQ Chat Platform

Krebs: The Link Between AWM Proxy & the Glupteba Botnet

Ransomware Is the Biggest Global Cyber Threat: And the Attacks Are Still Evolving

Meet The Cybersecurity Zeros: Heroes And Villains

‘Supercookies’ Have Privacy Experts Sounding the Alarm

New Firefox Privacy Feature Strips URLs of Tracking Parameters

Axie Infinity NFT Game Reopens Transactions Months After $625 Million Theft

FBI: Stolen PII and Deepfakes Used to Apply for Remote Tech Jobs
AMD Targeted by RansomHouse, Cybercrims Claim to Have ‘450GB’ in Stolen Data

Frozen-Food Firm Apetito Hit by Cyber Attack

SLGA Clients’ Information Exposed on Dark Web Following Cyber Attack

Mason Tenders’ District Council (NY) Data Breach Affects 20,000+ Union Members and Dependents

Nearly One Million Misconfigured Kubernetes Exposed That Could Cause Data Breaches

Malicious Messenger Chatbots Used to Steal Facebook Accounts

Raccoon Stealer Is Back With a New Version to Steal Your Passwords

ZuoRAT Malware Hijacking Home-Office Routers to Spy on Targeted Networks

OpenSSL to Release Security Patch for Remote Memory Corruption Vulnerability

MITRE Shares This Year’s List of Most Dangerous Software Bugs

6/27/2022

Russian-Backed Hackers Target Lithuanian Websites

How Bad Actors Are Using Tech Platforms to Sexually Exploit, Traffic Ukrainian Women

Beijing Probes Security at Academic Journal Database

Italy Data Protection Authority Warns Websites Against Use of Google Analytics

LockBit 3.0 Introduces the First Ransomware Bug Bounty Program

Man Loses USB Flash Drive With Data on Entire City’s Residents After Night Out

Hacking Gets Dangerously Real: 8 Cybersecurity Predictions to Watch Out For

UK Snoopers’ Charter Ruled Partially Unlawful
Iran’s Steel Industry Halted by Cyber Attack from Hacktivist Group Predatory Sparrow

Vice Society Claims Ransomware Attack on Medical University of Innsbruck

Android Malware ‘Revive’ Impersonates BBVA Bank’s 2FA App

Bank of the West Found Debit Card-Stealing Skimmers on ATMs

Cybersecurity Experts Warn of Emerging Threat of “Black Basta” Ransomware

Chinese Researchers Find Critical Security Flaws in CoDeSys Automation Software

Microsoft Exchange Bug Abused to Hack Building Automation Systems

6/24-26/2022

Google Says Attackers Worked With ISPs to Deploy Hermit Spyware on Android and iOS

Conti Ransomware Finally Shuts Down Data Leak, Negotiation Sites

Roe v. Wade Reversal Spurs Democrats’ Call for Data Privacy Protections

NetSec Goggle Shows Search Results Only From Cybersecurity Sites

CafePress Fined $500K for Breach Affecting 23 Million

Carnival Is Fined $5 Million by New York for Cybersecurity Violations

U.S. Watchdog Is Worried Cyber Insurance Won’t Cover ‘Catastrophic Cyberattacks’

Cybersecurity’s Bad and It’s Getting Worse

Why We’re Getting Vulnerability Management Wrong

Amsterdam Cyber Startup Hadrian Closes €10.5M Seed for Platform That Simulates Hacker Attacks
$100 Million Worth of Crypto Has Stolen From Harmony’s Blockchain Bridge Horizon

Fast Shop Brazilian Retailer Discloses “Extortion” Cyberattack

Automotive Fabric Supplier TB Kawashima Announces Cyberattack

TridentCare (MD) Confirms Data Breach After Criminal Breaks into Office and Steals Hard Drives

Clever Phishing Method Bypasses MFA Using Microsoft WebView2 Apps

Fake Copyright Infringement Emails Install LockBit Ransomware

LGBTQ+ Community Warned of Extortionists Abusing Dating Apps

Multiple Backdoored Python Libraries Caught Stealing AWS Secrets and Keys

Hackers Exploit Mitel VoIP Zero-Day in Likely Ransomware Attack

6/23/2022

NSO Confirms Pegasus Spyware Used by at least 5 European Countries

Google Warns of New Spyware from RCS Labs Targeting iOS and Android Users

Conti Ransomware Hacking Spree Breaches Over 40 Orgs in a Month

Businesses Risk ‘Catastrophic Financial Loss’ From Cyberattacks, U.S. Watchdog Warns

Less Than Half of Organizations Have Open Source Security Policy

Lithuania Warns of Rise in DDoS Attacks Against Government Sites

Scalper Bots Out of Control in Israel, Selling State Appointments
Halfords Suffers a Puncture in the Customer Details Department

Avamere Health Services Breach Impacts Nursing and Senior Living Employees

Chinese Hackers Use Ransomware as Decoy for Cyber Espionage

Fancy Bear Uses Nuke Threat Lure to Exploit 1-Click Bug

New MetaMask Phishing Campaign Uses KYC Lures to Steal Passphrases

Malicious Windows ‘LNK’ Attacks Made Easy With New Quantum Builder

CISA: Log4Shell Exploits Still Being Used to Hack VMware Servers

6/22/2022

Israeli Air Raid Sirens Triggered in Possible Cyberattack

Microsoft: Russia Stepped up Cyberattacks Against Ukraine’s Allies

Tech Executives Urge Government to Share Cyber Threat Intel

Tech Firms Cut Staff Amid Recession Fears

Cyber Funding, Plentiful for Years, Faces a Reckoning

80% of Firms Suffered Identity-Related Breaches in Last 12 Months

Gamification of Ethical Hacking and Hacking Esports

Krebs: Meet the Administrators of the RSOCKS Proxy Botnet

Brave Now Lets You Customize Search Results—for Better or Worse

‘Mysterious’ Company Sued to Expose Billionaire’s Twitter Critic
Chinese Hackers ‘Tropic Trooper’ Target Script Kiddies With Info-Stealer Trojan

Japanese Automotive Hose Maker Nichirin Hit by Ransomware Attack

Yale New Haven Hospital Research File Implicated in Healthcare Data Breach

Guardian Fueling Technologies (FL) Announces Data Breach

Hot Tub Crime Machine: Jacuzzi Smart Tubs Left Personal Info Exposed

RIG Exploit Kit Now Infects Victims’ PCs With Dridex Instead of Raccoon Stealer

Critical PHP Flaw Exposes QNAP NAS Devices to RCE Attacks

Researchers Uncover Ways to Break the Encryption of ‘MEGA’ Cloud Storage Service

MEGA Fixes Critical Flaws That Allowed the Decryption of User Data

NSA Shares Tips on Securing Windows Devices With PowerShell

6/21/2022

Biden Signs Cyber Bills Into Law

Former NSA Chief Warns of Russian Cyberattacks Against U.S. Financial Sector

Russian Gov’t Hackers Hit Ukraine With Cobalt Strike, CredoMap Malware

Kazakhstan Gov’t Used Spyware Against Protesters

Report: Daycare Monitoring Apps Are ‘Dangerously Insecure’

Magecart Attacks Are Still Around: And They Are Becoming More Stealthy

HPE Tackles Cyber Skills Shortage with Hands-On Experience

Phishing Gang Behind Millions in Losses Dismantled by Police

Twitter Board Recommends Elon Musk Takeover Bid
Cloudflare Outage Knocks Hundreds of Websites Offline

Yodel Parcel Company Confirms Cyberattack Is Disrupting Delivery

Acorda Therapeutics (NY) Announces Data Breach After Compromised Emails

Robert Half International Reports Data Breach Affecting Consumers’ SSNs

Brooks County (TX) Pays off Hacker With Tax Dollars After Ransomware Attack

New Toddycat Apt Targets MS Exchange Servers in Europe and Asia

7-Zip Now Supports Windows ‘Mark-Of-The-Web’ Security Feature

Adobe Acrobat May Block Antivirus Tools From Monitoring PDF Files

6/20/2022

What the Russia-Ukraine War Means for the Future of Cyber Warfare

Security Flaw In Strava, A Social Fitness App, Exposed Identities Of Israeli Soldiers At Military Bases

Krebs: Why Paper Receipts are Money at the Drive-Thru

New ‘BidenCash’ Site Sells Your Stolen Credit Card for Just 15 Cents

Ransomware Attacks: This Is the Data That Cyber Criminals Really Want to Steal

Google Chrome Extensions Could Be Used to Track Users Online

The Ghost of Internet Explorer Will Haunt the Web for Years

Voicemail Phishing Emails Steal Microsoft Credentials
Flagstar Bank Discloses Data Breach Impacting 1.5 Million Customers

81,000+ Social Security Numbers Leaked in Quality Temporary Services (MI) Data Breach

Baptist Health (TX) Announces Data Breach Affecting Patients

Simpson University (CA) Confirms Data Breach Leaked Information of 6,000+ Students

New DFSCoerce NTLM Relay Attack Allows Windows Domain Takeover

Google Researchers Detail 5-Year-Old Apple Safari Vulnerability Exploited in the Wild

CISA and Friends Raise Alarm on Critical Flaws in Industrial Equipment, Infrastructure

6/17-19/2022

Leaked Audio From 80 Internal TikTok Meetings Shows That U.S. User Data Has Been Repeatedly Accessed From China

U.S., EU Plan Joint Foreign Aid for Cybersecurity to Counter China

NSO Group’s Reported Sale to U.S. Defense Contractor Alarms Cybersecurity Experts

Android-wiping BRATA Malware is Evolving Into a Persistent Threat

YouTube Removes Video From Jan 6 Panel Including Trump’s Election Misinformation

Former Amazon Employee Paige Thompson Convicted Over 2019 Capital One Hack

Cookie Consent Crumbles Under Fresh UK Data Law Proposals

UK Approves Assange Extradition to U.S., WikiLeaks Says It Will Appeal
Personal Details of 15,000 Memorial University (NL) Students Leaked in Accidental Data Breach to Other Students

Wilkins Recreational Vehicles (NY) Reports Data Breach Following Conti Ransomware Attack

New Phishing Attack Infects Devices With Cobalt Strike

Atlassian Confluence Flaw Being Used to Deploy Ransomware and Crypto Miners

Over a Dozen Flaws Found in Siemens’ Industrial Network Management System

QNAP NAS Devices Targeted by Surge of eCh0raix Ransomware Attacks

QNAP ‘Thoroughly Investigating’ New DeadBolt Ransomware Attacks

Cisco Says It Won’t Fix Zero-Day RCE in End-Of-Life VPN Routers

6/16/2022

U.S., Partners Dismantle Russian Hacking ‘RSOCKS’ Botnet, Justice Dept Says

Cyber-Criminals Smuggle Ukrainian Men Across Border

Iran State-Sponsored Phishing Attack Targeted Israeli Military Officials

Police Linked to Hacking Campaign to Frame Indian Activists

Corporate Network Access Selling for Under $1000 on Dark Web

Californian Man iCloud Hacker Gets 9 Years in Prison for Stealing Nude Photos

White House to Tackle Online Harassment, Abuse With New Task Force

Microsoft Defender Launches on Windows, macOS, iOS, and Android

RSAC Branded a ‘Super Spreader Event’ as Attendees Share COVID-19 Test Results
India’s Allahabad University Website Crashes During Exam, Cyber Attack Suspected

NakedPages Phishing Toolkit is Now Available on Cybercrime Forums

Android Spyware ‘Hermit’ Discovered in Targeted Attacks

MetaMask, Phantom Warn of Flaw That Could Steal Your Crypto Wallets

Anker Eufy Smart Home Hubs Exposed to RCE Attacks by Critical Flaw

High-Severity RCE Vulnerability Reported in Popular Fastjson Library

Sophos Firewall Zero-Day Bug Exploited Weeks Before Fix

A Microsoft Office 365 Feature Could Help Ransomware Hackers Hold Cloud Files Hostage

730K WordPress Sites Force-Updated to Patch Critical Plugin Bug

Democratizing Cybersecurity

6/15/2022

Russia Is Taking Over Ukraine’s Internet

Babushka Z: The Woman Who Became a Russian Propaganda Icon

Travel-related Cybercrime Takes Off as Industry Rebounds

Allison Inn & Spa (OR) Hit by Unusual Cyberattack; Employee Data, Guests’ Names Posted on Internet

Heineken Says There’s No Free Beer, Warns of Phishing Scam

Hit by a Cyberattack? Hackers Will Probably Come After You Again – Within a Year

Ransomware Negotiation Evolves, as Victims Hope for Discounts

Musk Predicts ‘Massive Red Wave‘, Teases Creation of ‘Super Moderate Super PAC’

Flashpoint Announces Cybersecurity Platform for K-12

Interpol Seizes $50 Million, Arrests 2000 Social Engineers

24+ Billion Credentials Circulating on the Dark Web in 2022 — So Far
Data Breach at U.S. Ambulance Billing Service Comstar Exposed Patients’ Healthcare Info

Goodman Campbell Brain and Spine (IN) Announces Data Breach After Ransomware Attack

Panchan: A New Golang-based Peer-To-Peer Botnet Targeting Linux Servers

MaliBot: A New Android Banking Trojan Spotted in the Wild

Hackers Exploit Three-Year-Old Telerik Flaws to Deploy Cobalt Strike

Critical Flaw in Cisco Secure Email and Web Manager Lets Attackers Bypass Authentication

Citrix Warns Critical Bug Can Let Attackers Reset Admin Passwords

SAP Patches Critical NetWeaver and ABAP Platform Vulnerabilities

Krebs: Microsoft Patch Tuesday, June 2022 Edition

Microsoft: June Windows Server Updates May Cause Backup Issues

6/14/2022

Ukraine Has Begun Moving Sensitive Data Outside Its Borders

The War in Ukraine Has Exposed a Critical American Vulnerability

Cybersecurity in the Pacific: How Island Nations Are Building Their Online Defences

Veterans Explain How Military Service Prepared Them for Cybersecurity Careers

The Unrelenting Threat of Ransomware Is Pushing Cybersecurity Workers to Quit

Hacker Advertises ‘Crappy’ Ransomware on Instagram

Krebs: Ransomware Group Debuts Searchable Victim Data

Why a Bipartisan Data Privacy Proposal Faces Uphill Battle

Lawmakers Make Bipartisan Push for New Government Powers to Block U.S. Investments in China

Brazil’s Data Protection Authority to Gain Independence From Presidential Office

Shanghai’s Censors Can’t Hide Stories of the Dead

Former U.S. State Agency CIO, IT Exec Plead Guilty to Bribery and Extortion Scheme

Microsoft to Acquire Foreign Cyberthreat Analysis Vendor Miburo

Firefox Now Blocks Cross-Site Tracking by Default for All Users
Malaysia-Linked DragonForce Hacktivists Attack Indian Targets

Cloudflare Saw Record-Breaking DDoS Attack Peaking at 26 Million Request Per Second

Large Southern Africa Supermarket Chain Shopright Hit With Ransomware

Allaire Health Services Announces Data Breach

CHI Health (WA) Says Cybersecurity Breach May Have Exposed Some Patients’ Data

Android Malware on the Google Play Store Gets 2 Million Downloads

Unpatched Travis CI API Bug Exposes Thousands of Secret User Access Tokens

New Hertzbleed Side-Channel Attack Affects Intel, AMD CPUs

New Zimbra Email Vulnerability Could Let Attackers Steal Your Login Credentials

Technical Details Released for ‘SynLapse’ RCE Vulnerability Reported in Microsoft Azure

Microsoft June 2022 Patch Tuesday Fixes 1 Zero-Day, 55 Flaws

Microsoft’s Final Patch Tuesday Fixes Follina Bug

Botched and Silent Patches From Microsoft Put Customers at Risk, Critics Say

6/13/2022

Russian Hackers Start Targeting Ukraine With Follina Exploits

Top Cyber Official Says Transformation Needed in Cyberspace

World Economic Forum Wants a Global Map of Online Crime

Cybersecurity Skills Gap a Mounting Concern in Asia

In Security, Less Is More

FDNY Calls for Digital Firewall to Protect Rescue Workers From Cyber-Attacks

Apple CEO Tim Cook Pushes Senate For Privacy Legislation

Apple Wants to End Passwords for Everything: Here’s How It Would Work

CISA Recommends Organizations Update to the Latest Version of Google Chrome

Googler Suspended After Claiming AI Became Sentient

Krebs: “Downthem” DDoS-for-Hire Boss Gets 2 Years in Prison

Questions to Improve Enterprise Cybersecurity Awareness
Kaiser Permanente Data Breach Exposes Health Data of 69K People

India’s Farmers Exposed by New Aadhaar Data Leak

700 Patients’ Private Information Stolen in Avera Data Breach

Perkins & Co. Announces Data Breach Related to Incident at Cloud-Hosting Company Netgain

Hackers Clone Coinbase, MetaMask Mobile Wallets to Steal Your Crypto

Chinese ‘Gallium’ Hackers Using New PingPull Malware in Cyberespionage Attacks

New Syslogk Linux Rootkit Uses Magic Packets to Trigger Backdoor

HelloXD Ransomware Installing Backdoor on Targeted Windows and Linux Systems

Microsoft: Exchange Servers Hacked to Deploy Blackcat Ransomware

PyPI Package ‘Keep’ Mistakenly Included a Password Stealer

Researchers Disclose Rooting Backdoor in Mitel IP Phones for Businesses

Metasploit 6.2.0 Improves Credential Theft, SMB Support Features, More

6/10-12/2022

Conti’s Attack Against Costa Rica Sparks a New Ransomware Era

Job Cuts Hit Cybersecurity Industry Despite Surging Growth From Ransomware Attacks

Cybersecurity Courses Ramp up Amid Shortage of Professionals

In an Ever Evolving Landscape, CISOs Shift Their Priorities

Introducing ‘Hack Me if You Can,’ a New Podcast Series

Researchers Find Bluetooth Signals Can be Fingerprinted to Track Smartphones

Krebs: Adconion Execs Plead Guilty in Anti-Spam Case
Iranian Lycaeum APT Target Energy Sector With New DNS Backdoor

Pyramid Consulting Group (NY) Data Breach Leaked 3,000 Social Security Numbers

Vulns Targeting InfiRay Thermal Cameras May Result in Industrial Process Hacking

Hackers Exploit Recently Patched Confluence Bug for Cryptomining

Confluence Servers Hacked to Deploy AvosLocker, Cerber2021 Ransomware

Pacman: MIT Researchers Discover New Flaw in Apple M1 CPUs That Can’t Be Patched

6/9/2022

Russia Says West Risks ‘Direct Military Clash’ Over Cyber Attacks

Dark Web Sites Selling Alleged Western Weapons Sent to Ukraine

Feds Forced Travel Firms to Share Surveillance Data on Hacker

New Privacy Framework for IoT Devices Gives Users Control Over Data Sharing

How Poor Communication Opens the Door to Ransomware and Extortion

YouTube Accused of Failing to Tackle Fake Elon Musk Livestream Scams

Twitter Set to Agree to Elon Musk Request For Data on Fake Accounts

Bizarre Ransomware Sells Decryptor on Roblox Game Pass Store
Chinese Hacking Group Aoqin Dragon Quietly Spied Orgs for a Decade

Ellsworth (KS) Warns Residents of Ransomware Attack

Fred Hutch Center Center (WA) Data Breach: Unauthorized Hack of Employee Email

AdviceOne (CT) Announces Data Breach

Vice Society Ransomware Claims Attack on Italian City of Palermo

New Ultra-Stealthy Linux Backdoor ‘Symbiote’ Isn’t Your Everyday Malware Discovery

Hackers Can Steal Your Tesla by Creating Their Own Keys

Microsoft Defender Now Isolates Hacked, Unmanaged Windows Devices

Xage Releases New Tool to Battle MFA Bombing in Critical Infrastructure

6/8/2022

Disinfo and Hate Speech Flood TikTok Ahead of Kenya’s Elections

Ukraine’s Secret Cyber-Defense That Blunts Russian Attacks: Excellent Backups

How a Saxophonist Tricked the KGB by Encrypting Secrets in Music

Beware of Scams Involving Jobs, Stimulus Checks and Tax Refunds, IRS Warns

Work Remains in Fight Against Ransomware

Paying Ransomware Paints Bigger Bullseye on Target’s Back

Ransomware Pressure Forces UK CISOs to Consider Quitting

Kali Linux Team to Stream Free Penetration Testing Course on Twitch

Bipartisan Antitrust Bill Sponsors Push for Floor Vote This Month
Massive Facebook Messenger Phishing Operation Generates Millions

Australian Chinese News Site Hit by Cyber Attack, Media Reports

Tenafly Public Schools (NJ) Final Exams Canceled After Ransomware Cripples Computers

OnDeck Breach of Social Security Numbers and Financial Account Info

Poisoned CCleaner Search Results Spread Information-Stealing Malware

Emotet Malware Now Steals Credit Cards From Google Chrome Users

Cuba Ransomware Returns to Extorting Victims With Updated Encryptor

Linux Botnets Now Exploit Critical Atlassian Confluence Bug

Intel Offers ‘Server on a Card’ Reference Design for Network Security

6/7/2022

U.S.: Chinese Gov’t Hackers Breached Telcos to Snoop on Network Traffic

KrebsOnSecurity in New Netflix Series on Cybercrime

Cyber-Attack Surface “Spiralling Out of Control”

Elevated Cyber Threats Are the ‘New Normal’

An Emerging Threat: Attacking 5G Via Network Slices

Senators Gillibrand, Lummis Introduce Major Cryptocurrency Bill

IBM Buys Startup Randori to Address Multicloud Security Messes

Apple’s Rapid Security Response Will Push Faster Updates That Install on Macs Without a Reboot

Apple’s Safety Check Combats Domestic Abuse but Timing Its Use Is Critical

U.S. Seizes SSNDOB Market for Selling Personal Info of 24 Million People
Shields Health Care Group Data Breach Affects 2 Million Patients

Online U.S. Gun Shops, Including Numrich Gun Parts, Hacked to Steal Credit Cards

Prothena Corporation, PLC Confirms Data Breach Following Compromised Employee Email Account

Researchers Warn of Spam Campaign Targeting Victims with SVCReady Malware

Linux Version of Black Basta Ransomware Targets VMware ESXi Servers

Follina Exploited by State-Sponsored Hackers

QBot Malware Now Uses Windows MSDT Zero-Day in Phishing Attacks

Android June 2022 Updates Bring Fix for Critical RCE Vulnerability

New ‘DogWalk’ Windows Zero-Day Bug Gets Free Unofficial Patches

6/6/2022

Ukrainian Officials’ Phones Targeted by Hackers -Cyber Watchdog

At Least Three Russian Ministry Website Reportedly Hacked

Costa Rican Government Held up by Ransomware … Again… This Time by Hive

Ransomware Gangs Now Give Victims Time to Save Their Reputation

Ransomware Attacks Have Dropped. And Gangs Are Attacking Each Other’s Victims

Meet the Vigilantes Who Hack Millions in Crypto to Save It From Thieves

AlphaBay Is Taking Over the Dark Web—Again

LastPass’ Mobile App Offers Access to Your Desktop Vault Without a Master Password

Apple Demos Safari’s ‘Passkeys’ Support in macOS Ventura That Will Help Bring an End to Passwords

Elon Musk Threatens to Pull Out of Twitter Deal Without More Information About Fake Accounts
Windows Zero-Day Exploited in U.S. Local Gov’t Phishing Attacks

Italian City of Palermo Shuts Down All Systems to Fend Off Cyberattack

Texas Gulf Bank Confirms Data Breach From Unauthorized Access to Employee Email Accounts

Rainier Arms Reports Data Breach Impacting the Credit Card Numbers of 46K+ Customers

‘Move-to-Earn’ Application Stepn Suffers Cyber Attack After Upgrade

Mandiant: “No Evidence” We Were Hacked by LockBit Ransomware

QBot Now Pushes Black Basta Ransomware in Bot-Powered Attacks

CISA Warned About Critical Vulnerabilities in Illumina’s DNA Sequencing Devices

Unpatched Critical Flaws Disclosed in U-Boot Bootloader for Embedded Devices

The U.S. Isn’t Getting Ahead on Cyber Security Threats

6/3-5/2022

A Digital Conflict Between Russia and Ukraine Rages on Behind the Scenes of War

Microsoft Disrupts Bohrium Hackers’ Spear-Phishing Operation

Apple Blocked 1.6 Millions Apps From Defrauding Users in 2021

Americans Report Losing Over $1 Billion to Cryptocurrency Scams

Business Email Compromise: The Hacker Gold Rush That’s Poised to Eclipse Ransomware

Evasive Phishing Mixes Reverse Tunnels and URL Shortening Services

Krebs: What Counts as “Good Faith Security Research?”

Tim Hortons Coffee App Broke Law by Constantly Recording Users’ Movements

Google Settles Lawsuit With Illinois Residents for $100M: May 1, 2015, and April 25, 2022

Key Congressional Lawmakers Draft Competing Data Privacy Bills
Louisiana Authorities Investigating Ransomware Attack on City of Alexandria

EMC National Life Company Announces Data Breach

Medicare Issuing New Cards to Residents of the Villages (FL) After Data Breach

Novartis Says No Sensitive Data Was Compromised in Cyberattack

Bored Ape Yacht Club, Otherside NFTs Stolen in Discord Server Hack

WatchDog Hacking Group Launches New Docker Cryptojacking Campaign

SMSFactory Android Malware Sneakily Subscribes to Premium Services

Exploit Released for Atlassian Confluence RCE Bug, Patch Now

Atlassian Releases Patch for Confluence Zero-Day Flaw Exploited in the Wild

GitLab Issues Security Patch for Critical Account Takeover Vulnerability

6/2/2022

Tehran Municipality Websites Hit by Possible Hacking, Iranian Agency Says

Chinese LuoYu Hackers Deploy Cyber-Espionage Malware via App Updates

South Korean Special Forces Captain Charged With Spying for North Korea

Russian Linked Ransomware Groups Rebrand to Dodge Sanctions

Ransomware Gang Now Hacks Corporate Websites to Show Ransom Notes

U.S. Technology, a Longtime Tool for Russia, Becomes a Vulnerability

ExpressVPN Removes Servers in India After Refusing to Comply with Government Order

45% Of Cybersecurity Professionals Have Considered Quitting
Foxconn Confirms Ransomware Attack Disrupted Production in Mexico

Owner of Dodge’s Southern Stores, D&H Company, Reports Data Breach

Scammers Target NFT Discord Channel

Clipminer Malware Gang Stole $1.7M by Hijacking Crypto Payments

Top 10 Android Banking Trojans Target Apps With 1 Billion Downloads

Conti Spotted Working on Exploits for Intel Management Engine Flaws

Critical UNISOC Chip Vulnerability Affects Millions of Android Smartphones

Microsoft Blocks Polonium Hackers From Using Onedrive in Attacks

6/1/2022

Cyber Command Chief Confirms U.S. Took Part in Offensive Cyber Operations

Line Between Criminal Hackers and Nation-State Threats Blurs, U.S. Officials Say

Cloud Computing Dominates. But Security Is Now the Biggest Challenge

U.S. Gov’t: Paying Karakurt Extortion Ransoms Won’t Stop Data Leaks

Ransomware Attacks Need Less Than Four Days to Encrypt Systems

What if Ransomware Evolved to Hit IoT in the Enterprise?

Sheryl Sandberg Steps Down From Meta

Authorities Seize Domain Names After Probe Into Sales of Stolen Personal Information

Europol Confirms Takedown of SMS-based FluBot Spyware

Former OpenSea Head of Product Charged With NFT Insider Trading
FBI Thwarted Cyberattack Against Boston Children’s Hospital

Hundreds of Elasticsearch Databases Targeted in Ransom Attacks

Telegram’s Blogging Platform Abused in Phishing Attacks

RuneScape Phishing Steals Accounts and In-Game Item Bank PINs

SideWinder Hackers Plant Fake Android VPN App in Google Play Store

New Unpatched Horde Webmail Bug Lets Hackers Take Over Server by Sending Email

New Windows Search Zero-Day Added to Microsoft Protocol Nightmare

Windows MSDT Zero-Day Vulnerability Gets Free Unofficial Patch

Cybersecurity Startup Ordr Nabs $40M to Monitor Connected Devices for Anomalies

The Race to Hide Your Voice

5/31/2022

Ukrainian Officials Report ‘Shutdown of All Communications’ in Kherson Region

Latest Cyberattack in Costa Rica Targets Hospital System

Krebs: Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade Sanctions

Cyber Defense Confidence Ebbs as Ransomware Attacks Multiply

New Research: Increase in Cyber Vulns for Small and Medium Sized Businesses

Windows MSDT Zero-Day Now Exploited by Chinese APT Hackers

FBI Warns of Ukrainian Charities Impersonated to Steal Donations

Hackers Steal WhatsApp Accounts Using Call Forwarding Trick

Supreme Court Temporarily Blocks Texas Social Media Law
Turkish Airline Exposes Flight and Crew Info in 6.5TB Leak

Over 3.6 Million MySQL Servers Found Exposed on the Internet

After Hive Cyberattack, Partnership HealthPlan of California Confirms Data Theft Affecting 855K

Albany Bank & Trust Co. (IL) Reports Data Breach Following Data Security Incident

Christiana Spine Center (DE) Latest Spine Practice to Suffer Ransomware Attack

Mirror Protocol $2M Hack; Here’s What Happened

Magniber Ransomware Now Targets Windows 11 Machines

New XLoader Botnet Uses Probability Theory to Hide Its Servers

Microsoft Shares Mitigation for Office Zero-Day Exploited

You Need to Update iOS, Chrome, Windows, and Zoom ASAP